SECURITY Q&A - They Want You for a Safer Infrastructure

By Sarah D. Scalet

Sat, June 15, 2002CIO It’s a quarter to noon on a muggy Thursday in the nation’s capital, and Richard Clarke is offering milk and cookies to visitors on the 10th floor of the old Secret Service building, two blocks west of the White House. There’s a simple reason for his snack choice. Earlier in the morning, Clarke (whom headline writers like to call President Bush’s cybersecurity czar) hosted an event for schoolchildren about staying safe online?this decade’s version of just saying no to drugs. Even so, leftover sandwich cookies seem an appropriate offering from a man whose job is to persuade bureaucrats, businesspeople and technology vendors to do two things they might not have thought about since kindergarten: share and cooperate.

It’s a lofty goal?to get executives not only to tell the federal government about attacks on their computer networks but to work with competitors to protect the country from all manner of electronic threats, from website defacements to information warfare. But that’s why President Bush recruited Clarke last October as chairman of the newly created Critical Infrastructure Protection Board, now part of the Office of Homeland Defense. And it’s why in February, Clarke got Howard Schmidt, then chief security officer of Microsoft, to become vice chairman of the board.

Despite the duo’s high profile, it wouldn’t take a pessimist to call theirs an impossible task. Thus far, their work has had a dogged Washington flair?hold meetings, issue reports, beg Congress for attention and most important, recruit volunteers. One way to improve critical infrastructure protection would be for Clarke and Schmidt to advocate legislation that would give them a hammer to force companies to work with the government and report information about attacks. But the two have been staunch opponents of such legislation. "We don’t want to regulate because we don’t think we do it very well," says Clarke, age 51, who made his name as President Clinton’s counterterrorism adviser for most of the 1990s and is the political counterweight to Schmidt, age 52, whose sympathies lie more with the private sector and vendor community. The process of improving security "works better if people think they’re doing it in their own best interest," Clarke says.

To hear Clarke and Schmidt tell it, people are joining the fight in their own best interest, and any perceived reluctance on the part of corporate America is merely a marketing problem. The duo make themselves out to be patriots as well as consummate political insiders?Schmidt with the obligatory American flag pin on the lapel of a jacket draped over his chair, Clarke sipping from a blue and gold coffee mug from the White House Situation Room. But as much as anything, they are the chief publicists of a vision for improved cybersecurity around the world. CIO caught up with them for an interview about how far critical infrastructure protection has?and hasn’t?come since Sept. 11, and how they’re trying to coax corporate and vendor leaders into playing a greater role.


CIO: A recent survey shows fewer companies reporting cybercrimes than a year ago. Does that affect your mission?
Richard Clarke: We don’t think about [critical infrastructure protection] primarily as a criminal justice problem. If you discovered break-ins in your town but most of the houses didn’t have locks, would you hire more police or buy more locks? Criminal justice plays a very important role here, especially in terms of deterrence. We have to arrest people and prosecute them in order to deter others. But fundamentally, cyberspace security is about buying and using door locks.

Loading...
Security MarketSpace
White Papers
5 Tips for Data Loss Prevention Solutions
RSA® The Security Division of EMC has identified 5 key considerations to help organizations simplify the evaluation process for selecting a DLP solution that is right for their business. Learn more »
Secure Training Videos to Prevent Theft
Learn how Dream Force extended their marketing reach without being constricted. Learn more »
Prevent Intellectual Property Theft
Learn what the key components were in Hock International's purchasing decision. Learn more »
Webcasts
Maximizing the Business Value of the PC Infrastructure
Reduced IT budgets have CIOs hunting for ways to maximize their PC infrastructure, while saving money and IT staff time. Diane Bryant, CIO of Intel Corp., talks with CIO magazine's Gary Beach about how her organization is addressing these challenges. Learn more »
 
SPONSORED LINKS
 

Data Loss Prevention: A Better Way to Approach Security

Software Executives: Take Control of Your Organization's Code Quality

Delivering Secure and Reliable Data through Spreadsheet Automation

Taking the Service Desk to the Next Level

Why Data Loss is Increasing--and What You Can Do About It

Communications and Collaboration Needs at Business Organizations

Using Open Source to Deploy Web Applications

Mid-Sized Company CIO Community: infoBOOM!

Enterprise PBX Comparison Guide

Getting Value from Outdated Networking Equipment

Accenture IT Consulting: Logical meets technological. More . . .

White Paper: 8 Key Ingredients to Building an Internal Cloud

Read about virtualization and consolidation effort best practices

Building the Virtualized Enterprise with VMware Infrastructure

Top 10 Business and IT Drivers for the Wealth Management Sector

Bottom-Line Benefits of Virtualization

White Paper: The Building Blocks for Cloud Computing

Oracle's Application Grid Technical Demo

Next-Generation Application Servers and Infrastructure

Application Infrastructure at Enterprise Organizations

Achieving Business Agility with Application Grid

Learn about The Information Technology Infrastructure Library.

Achieving Pervasive Performance Management

Gartner Shares Predictions for 2009

64-page prescriptive guide to security, compliance, and IT operations.

Stop Application Fraud at the Source with Device Reputation

Ready to Act: 3 Recommendations for Agile Processes

Automating the Generation and Secure Distribution of Excel Reports

Seven Ways ITIL Can Help You in an Economic Downturn

Maximizing the Business Value of the PC Infrastructure

Learn how to managing client systems in the enterprise.

Cloud Computing: Read about VMware's compelling vision & set of products

Enterprise PBX Buyer's Guide

Secondary Market Primer: Your Network at Half Price

Top-line Performance that's Bottom-line Efficient

Accenture: Outsourcing for uncertain times. Click to learn more.

Learn about the VMware vSphere (TM) & Intel (R) Xeon (R) Processor 5500 Series

Learn how a virtualized enterprise can help your company reduce costs

Why Isn't Server Virtualization Saving Us More?

8 Key Ingredients to Building an Internal Cloud

Data Center Optimization: Three Key Strategies

A CIO Executive Guide: Cloud Computing Looms Big on the Horizon

Oracle WebLogic Server Technical Demo

Data Grids and Service-Oriented Architecture

Achieving the Impossible: Unlimited Application Scalability

A Middleware Foundation for Application Grid

Tips for successful virtualization management.

Smart Decisions: The Role of Key Performance Indicators

Reduce risk, gain agility. See how Progress can help your business.

Improve ROI, lower TCO and reduce energy consumption.

 
 
RESOURCE CENTER