Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
Censorship Government Your Rights Online

Pennsylvania CISO Fired Over Talk At RSA Conference 147

Posted by timothy
from the perfecting-the-art-of-the-ham-fist dept.
An anonymous reader writes "Pennsylvania's chief information security officer Robert Maley has been fired for publicly talking about a security incident involving the Commonwealth's online driving exam scheduling system. He apparently did not get the required approval for talking about the incident from appropriate authorities."
This discussion has been archived. No new comments can be posted.

Pennsylvania CISO Fired Over Talk At RSA Conference

Comments Filter:
  • by Anonymous Coward on Thursday March 11, 2010 @04:22PM (#31444556)

    You really don't see the story? This is a security breach involving a public computer system. That is, a system paid for by taxpayers and affecting said taxpayers.

    THERE SHOULD BE NO SECRETS WHEN TAXPAYERS' MONEY IS INVOLVED.

    Any and all information about a breach like this needs to be public immediately.

    SO THERE SHOULD HAVE BEEN NO NEED TO GET "AUTHORIZATION" BEFORE DISCLOSING IT.

    Is that clear enough for you? Sheesh, it's no wonder America's in such a sad state these days.

  • by ircmaxell (1117387) on Thursday March 11, 2010 @04:23PM (#31444560) Homepage
    You do realize that he didn't work for a company, don't you? He worked for the state government...
  • The key paragraph (Score:5, Informative)

    by Wintermute__ (22920) on Thursday March 11, 2010 @04:32PM (#31444716)

    The important paragraph in TFA:

    "Maley's dismissal comes amid ongoing budget and staff cuts at Pennsylvania's IT security organization, the source said. Over the past 18 months to two years, the administration has cut information security budgets by close to 38%, and staff by 40%. They also put a "lockdown" on talking about cybersecurity, the source claimed."

    Now there's a good plan: If you don't talk about it, no one will know you have a problem, and you can save all that money you were spending on those annoying security types.

  • by oh-dark-thirty (1648133) on Thursday March 11, 2010 @04:38PM (#31444828)
    Another telling fact from the article is that the security staff and budget have both been cut by upwards of 40%...no wonder they don't want anybody talking...
  • by tlambert (566799) on Thursday March 11, 2010 @05:07PM (#31445254)

    Who fired him?

    According to public records having to do with reporting structure, he would have been fired by Brenda Orth, CIO (Chief Information Officer) in the OA (Office of Administration, Commonwealth of Pennsylvania). The reporting chain is easily verifiable using either the Google cached copy of their page, or the Internet Way Back Machine.

    She basically reports to the state Governors staff, so there's no telling how far up hill you'd have to go to find the source of the firing, but as his immediate supervisor, whe would have been the one to pull the trigger.

    -- Terry

  • by Anonymous Coward on Thursday March 11, 2010 @06:40PM (#31446550)

    Do you really want the taxpayers having the root password?

    I'll give them to you. There are actually two root passwords to the Constitution: "terrorism" and "child pornography". By using either password, you can bypass any of the security protections or protocols built into the document, and you can invalidate its signatures.

    Four actually:

    http://en.wikipedia.org/wiki/Four_Horsemen_of_the_Infocalypse

Dennis Ritchie is twice as bright as Steve Jobs, and only half wrong. -- Jim Gettys

Working...