Chapter 2: Cross-Sector Security Priorities and Issues

Overview

There are many challenges to face as the government and private-sector organizations implement new measures to improve homeland security. All organizations need to train employees on what to watch for and how to report threats or suspicious activities. This is important because, as the terrorist attacks of September 11, 2001, demonstrated, this is a new type of war in which the adversary will exploit opportunities that many citizens may consider harmless.

This chapter presents the results of a cross-sector survey of managers and IT staff across 100 name-brand organizations about the state of IT security policies, plans, and training. It also examines some perceptions of professionals that may well play a role in the implementation of the national strategies to improve homeland security. (Note: In cases where survey respondents did not answer a question, they were not included in the analysis, and to avoid repetitiveness in the text, the percentages that did not respond are not indicated.) This data will allow IT managers to compare the status of several homeland security-related issues in their organizations, including:

• Changes in IT management practices that resulted from the terrorist attacks of September 11, 2001

• Changes in IT management practices that resulted from the establishment of DHS

• Adequate and appropriate IT staffing

• The implementation of DRPs and related training

• The implementation of information systems (IS) security plans and related training

• The implementation of data privacy plans and related training

• The adequacy of end-user training

• Professional concerns about IT and society