DHS official stresses cybersecurity is industry’s responsibility

Wednesday, May 26th, 2010 | Filed under Headline | Posted by

“Contractors that fail to live up to security requirements in federal technology contracts should be held accountable, even if the vulnerabilities originated in products or capabilities provided by suppliers, a top Homeland Security Department official said on Tuesday.

In most business situations, ‘if we have a contractual arrangement and you fail [to meet the requirements], I have legal recourse,’ said Richard Marshall, director of global cybersecurity management at DHS. ‘Why wouldn’t the same be true when the supply chain [is involved]? I’m buying a product from you, and you represent that it’s a product with the following characteristics. If you fail, I have a right to sue you.’

Marshall spoke at the SecureAmericas conference in Arlington, Va., an event hosted by the cybersecurity provider International Information Systems Security Certification Consortium.”

(Source: DHS official stresses cybersecurity is industry’s responsibility – Nextgov)

You must be logged in to post a comment Login