Help Wanted: DHS Needs Hackers

Wednesday, March 9, 2011 @ 03:03 PM gHale

Cyber space is under a constant state of threat and who better to help protect the critical infrastructure than quality hackers. The problem is hackers and other computer experts that want to work with the Department of Homeland Security (DHS) can’t because of red tape, according to the former head of the department.

Tom Ridge and Michael Chertoff, two former secretaries of Homeland Security, joined current DHS boss Janet Napolitano during a roundtable discussion at Georgetown University to talk about the evolution of threats facing the United States, including the challenges of securing cyber-space.

There are a number of possible scary scenarios, including a sophisticated hacker from another country breaking into the power grid or other critical infrastructure and shutting things down, a Trojan that wipes out information on government computers, or even steals sensitive documents stolen. The Department of Defense and DHS currently work together on cyber defense.

“The portfolio of threats is a lot broader,” Ridge said.

“This is about risk management, not risk elimination. We can’t eliminate all risks,” Chertoff said.

The federal government is short “tens of thousands of cyber experts” and is aggressively hiring. A former CIA official estimated about 1,000 security experts in the nation possess the skills to safeguard U.S. cyberspace, but the country needs about 30,000.

Napolitano said the DHS has direct authority to hire 1,000 cyber security specialists.

Hackers are wary of working with the government because of rules that restrict private individuals from engaging with the federal government, Ridge said. The regulations pretty much say people in the private sector are not to be trusted because “heaven forbid, they might be financially advantaged” with a contract or information, Ridge said. That kind of thinking is outdated and policies need to be changed, he said.

“With the regulations associated with bringing in private citizens — to sit side by side with the government in order to advance a broader interest of security and safety it is very, very difficult,” Ridge said.

Hackers may be afraid of the government, considering that well-known security researchers such as Moxie Marlinspike, Jacob Appelbaum and David House have ended up on watchlists and have had their laptops and cellphones searched.

The regulations were originally written to handle “aberrant behavior, somebody who might be misguided,” and shouldn’t be applied on private individuals as the norm, Ridge said.

“We ought to just trust the Americans who want to work with government and make it a lot easier to partner with us,” he said.

Leave a Reply

You must be logged in to post a comment.