| Description |
1 online resource (iii, 71 p.) |
| System Details |
System requirements: Adobe Reader. |
|
Mode of access: World Wide Web. |
| Note |
Title from cover screen (viewed on Jan. 27, 2012). |
|
"December 2011." |
| Summary |
Critical infrastructures are systems and assets critical to the nation's security, economy, and public health and safety, most of which are owned by the private sector. These assets rely on networked computers and systems, thus making them susceptible to cyber-based risks. Managing such risk involves the use of cybersecurity guidance that promotes or requires actions to enhance the confidentiality, integrity, and availability of computer systems. For seven critical infrastructure sectors, GAO was asked to identify (1) cybersecurity guidance for entities within the sectors, (2) the extent to which implementation of this guidance is enforced and promoted, and (3) areas of commonalities and differences between sector cybersecurity guidance and guidance applicable to federal agencies. To do this, GAO collected and analyzed information from responsible private sector coordinating councils; federal agencies, including sector-specific agencies that are responsible for coordinating critical infrastructure protection efforts; and standards-making bodies. In addition, GAO compared a set of guidance in each of three subsectors with guidance applicable to federal agencies. GAO is recommending that the Department of Homeland Security (DHS), in collaboration with public and private sector partners, determine whether it is appropriate to have cybersecurity guidance listed in sector plans. DHS concurred with GAO's recommendation. |
| Bibliography |
Includes bibliographical references. |
| Note |
"GAO-12-92." |
| Subject |
Infrastructure (Economics) -- Security measures -- United States.
|
|
Computer networks -- Security measures -- Government policy -- United States.
|
|
Cyberterrorism -- United States -- Prevention.
|
|
National security -- United States.
|
|
Computer security -- Government policy -- United States.
|
| Indexed Term |
Security guidance Cybersecurity sector infrastructure 'Cybersecurity Guidance' federal critical |
| Added Author |
Wilshusen, Gregory C.
|
| Added Title |
Cybersecurity guidance is available, but more can be done to promote its use |
| Gpo Item No. |
0546-D (online) |
| Sudoc No. |
GA 1.13:GAO-12-92 |
|
