Security

IT professionals continue to cite security concerns as one of the largest barriers to cloud migration. Uniform government standards specific to cloud computing have yet to be finalized, leaving important questions regarding data availability and integrity unanswered. SafeGov.org aims to provoke discussion related to these concerns as well as raise awareness of the ways in which cloud computing could ultimately strengthen existing security measures.

Digital Security Requires a Legislative Overhaul

Michael Chertoff by Michael Chertoff, Chertoff Group
Friday, February 12, 2016

Building on the EU-U.S. Privacy Shield and the U.S.-U.K. negotiations, we must continue to move beyond a system in which critical digital privacy issues are governed in an ad hoc manner. This system is broken. The time is ripe for a comprehensive legislative overhaul of the antiquated laws that currently govern when and how law enforcement officials may access citizens’ private electronic communications.

Spy law needs significant changes, says UK parliamentary committee

BBC.com,  Thursday, February 11, 2016

Ministers say the changes will help to catch terrorists and tackle organised crime by updating laws to fit the new technology being used by criminals. But civil liberties campaigners claim the measures contained in it amount to mass surveillance of UK citizens - and that the committee's report meant the home secretary needed to go "back to the drawing board".

Cybersecurity Workforce Handbook Released

Center for Internet Security,  Thursday, February 11, 2016

Along with the ongoing refinement of cybersecurity roles at the individual level, the Center for Internet Security (CIS) supports workforce management at the enterprise level. In line with that goal, CIS produced the Cybersecurity Workforce Handbook: A Practical Guide to Managing Your Workforce." This handbook is designed to be a ready reference for executives, hiring managers often in information technology (IT) and security functions and human resources (HR) professionals charged with managing the planning, sourcing, hiring, training, development, career progression, and sustainment of the cybersecurity workforce.

Key privacy bill heads to president's desk

Cory Bennett, the Hill,  Thursday, February 11, 2016

The Judicial Redress Act has long been a stated requirement of a law enforcement data-sharing “umbrella agreement" that would allow the U.S. and EU to exchange more information during criminal and terrorism investigations.

Senate passes privacy bill key to two international agreements

Katie Bo Williams, The Hill,  Wednesday, February 10, 2016

The Senate late on Tuesday passed a privacy bill that is considered integral to a pending transatlantic data transfer pact with the European Union. The so-called Judicial Redress Act, which gives EU citizens the right to challenge misuse of their personal data in U.S. court, is also a prerequisite of a law enforcement data-sharing “umbrella” agreement reached last fall.

Surfing the body-worn camera wave

Paul Rosenzweig by Paul Rosenzweig, The Chertoff Group
Wednesday, February 10, 2016

In mid-January, the International Association of Chiefs of Police, the Major Cities Chiefs Association, SafeGov.org and the Police Foundation hosted a day-long review of the current state of deployment of BWCs at the Newseum in Washington, D.C. If the expert recommendations from that event could be summarized in a single phrase it would be: “Proceed with caution.” The move to BWC deployment occurs in the context of a broader discussion of the proper role of police forces around the world and, at least in the United States, the nature of the interaction between police and the citizens they are sworn to protect. How will that change occur and what are some of the pitfalls? The key takeaway from the conference was that, first and foremost, agencies must have a plan. Many experts report departments that have moved to purchase and use BWCs without giving significant consideration to all aspects of the change. Agences that rush ahead without preparation risk being drowned in a wave of new implementation and policy contradictions. Some of the pitfalls are obvious; others have come as a shock to many who are moving toward implementation. Here are just a few of the issues that experts identified:

Facebook Told by France to Stop Collecting Non-User Data

Stephanie Bodoni, Bloomberg Business,  Tuesday, February 09, 2016

Facebook Inc. was given three months by France’s privacy watchdog to stop storing data on people who don’t have an account with the social network as the company continues to draw objections from regulators throughout Europe. The operator of the world’s largest social network can track online users across all the sites they visit without obtaining clear consent, France’s data protection regulator, CNIL, said in a statement late Monday. “The seriousness of the failures” and the company’s more than 30 million Facebook users in France forced it to make the decision public, the regulator said.

Four 2016 federal IT predictions: It’s all about the data

Rob Stein, Federal News Radio,  Tuesday, February 09, 2016

Cloud computing has changed the speed and the efficiency at which data can be processed. But it has also changed the way in which data is moved, stored and managed. Make no mistake: Data is any agency’s most important asset and managing that data most effectively is vital. Based on our work with government agencies over the past year, we have developed four federal IT predictions for 2016 and beyond.

Data isolationism will hold back the cloud

David Linthicum, InfoWorld,  Tuesday, February 09, 2016

Politicians and government want to keep data in the country of origin, but doing so will make the cloud less viable. The essence of cloud computing is to provide utility-based computing services that use any cloud resource available. If it's in another country, so be it. But the data-management laws come from a very different perspective: that of data isolation.

Cloud Storage for Camera Data?

Julie Anderson by Julie Anderson, AG Strategy Group
Monday, February 08, 2016

To secure sensitive information, U.S. law enforcement agencies must adhere to the FBI’s Criminal Justice Information Services (CJIS) security policy, which establishes guidelines for the creation, viewing, transmission and storage of criminal justice data. Recently the International Association of Chiefs of Police issued guiding principles for cloud computing that recommend data collected through body-worn cameras be stored at the highest level of security: the FBI CJIS standard. Moving forward, departments that use CJIS-compliant cloud technology will be able to minimize risk and keep video data safe. While safe and secure data storage is not cheap, it’s an investment that law enforcement agencies must make. Only when police departments take the TCO into account will they protect their video data as well as minimize their liability and safeguard the people they serve.