The space agency needs to implement stricter policies and standards when it comes to its cybersecurity practices, but doing so the wrong way would put machinery at risk, a federal review found.
By Justin Katz
NOTE: This story first appeared on FCW.com.
NASA is aiming to correct longstanding cybersecurity management issues identified in a recent inspector general report through a unified IT contract that was scheduled to publish a request for proposals this month. Attacks on NASA networks are not a new phenomenon, although attempts to steal critical information are increasing in both complexity and severity, according to a May 18 report by NASA s inspector general. We found that NASA s ability to prevent, detect, and mitigate cyber-attacks is limited by a disorganized approach to Enterprise Architecture.
The IG links most of the agency s problems to its enterprise architecture, or in other words, the core framework for how it manages IT. NASA, according to the watchdog, has for years had a fragmented approach to IT with multiple lines of authority.
NASA Intends to Reorganize its Cybersecurity Strategy May 26, 2021 05:50 GMT
· Comment
NASA intends to address long-standing cybersecurity management problems found in a recent report.
According to a report issued by NASA s inspector general, Attacks on NASA networks are not a new phenomenon, although attempts to steal critical information are increasing in both complexity and severity . We found that NASA s ability to prevent, detect, and mitigate cyber-attacks is limited by a disorganized approach to Enterprise Architecture .
The department oversees 3,000 websites and 42,000 publicly available databases. Although working to strengthen its cybersecurity posture, the IG determined that NASA has been subjected to over 6,000 cyberattacks in the last four years, including phishing scams and malware.
By Justin Katz
NASA is aiming to correct longstanding cybersecurity management issues identified in a recent inspector general report through a unified IT contract that was scheduled to publish a request for proposals this month. Attacks on NASA networks are not a new phenomenon, although attempts to steal critical information are increasing in both complexity and severity, according to a May 18 report by NASA s inspector general. We found that NASA s ability to prevent, detect, and mitigate cyber-attacks is limited by a disorganized approach to Enterprise Architecture.
The IG links most of the agency s problems to its enterprise architecture, or in other words, the core framework for how it manages IT. NASA, according to the watchdog, has for years had a fragmented approach to IT with multiple lines of authority.