Entrepreneurship and Government 2.0
Posted November 2nd, 2010 by rybolovCatching you up here with some of the Gov 2.0 kids. Steve Radick wrote an interesting blog post about Government 2.0. And I’m thinking “damn, right on!” Now don’t get me wrong here, sometimes I’m critical of the Gov 2.0 crowd because it seems like about half the time they’re throwing technology and data at people seeing what will stick instead of asking the non-IT program managers what information they need to have to do their job right. But in this case, Steve’s blog post does have relevancy for Government IT security folks.
At this point, you’re probably thinking “But Mr Rybolov, how the heck does this relate to IT security and the Government?” and you’re definitely right to ask. Well, way back in the halcyon days of last year, I came to a realization that tactical and technical security solutions come from the bottom and that compliance and regulation come from the top. I even built a model about it. One of the implied problem areas is that if your management model goes “top-down”, then it gets filtered through bureaucracy.
I was at an AFCEA awards banquet trying to pretend that I wasn’t really a reformed infantryman (think “professional troll”) when Roger Baker gave an awesome talk about “practicing random acts of defiance of the bureaucracy”. I think there’s a bit of genius in that statement. It’s one of the reasons why I blog: as a regular Joe not in the Government, I’m reasonably free to talk about the successes and failures of my friends in the Government where they can’t.
Hence my grand unified theory on life, the universe, and everything else: the InfoSec career field is a lot more like soccer or law enforcement than football and the court system–sometimes we depend on the most junior people who are operating semi-autonomously within their assigned sector. But my point (I know, you’re wondering when I’ll get there) to this whole post is that if we’re going to have a decentralized industry, we also bear the responsibility to train our folks to operate independently and to have the skillset to be well-rounded enough to work in a wide variety of situations.
Similar Posts:
Posted in Rants | 2 Comments »
Tags: compliance • government • infosec • management • security
November 3rd, 2010 at 1:21 am
[…] This post was mentioned on Twitter by novainfosec, alex knorr. alex knorr said: Entrepreneurship and Government 2.0: Catching you up here with some of the Gov 2.0 kids. Steve Radick wrote an in… http://bit.ly/96Tarh […]
November 6th, 2010 at 2:25 am
But that isn’t to say that you can relate every aspect of security to making love to a woman, tho, I hope!