“In all walks of life, our most trusted colleagues and friends have this in common: We can count on them. No matter what the situation or challenge, they will be there for us. Booz Allen Hamilton is trusted in that way. You can count on us.”
- Dr. Ralph W. Shrader
Chairman, Chief Executive Officer and President
Welcome to the Booz Allen company blog. Here you will find ongoing updates to news and information intended to help you learn more about Booz Allen’s business and involvement in the community. Blog authors will vary to provide the best input on the subject at hand. If you would like to receive blog post alerts via email or RSS you can register here.
|Page 1 2 3 4 5 6 7 8 9 10 11 12 13 All||Next >|
The fifth — and presumably, final — Cybersecurity Framework Workshop was held on November 14-15 at North Carolina State University in Raleigh. This workshop provided what will most likely be the final opportunity for industry and government to collectively discuss the Cybersecurity Framework that the National Institute of Standards and Technology (NIST) has been developing since February 2013. The Framework will be an important tool for critical infrastructure organizations of all sizes to use as they manage their security risks, further enhancing and supporting the national effort to encourage the adoption of effective and holistic security practices. The end goal: raise the security level of the entire community.
The Framework’s development and anticipated February 2014 release will mark an important milestone in the implementation of Executive Order 13636. Cybersecurity threats have fundamentally changed over the years, and countering the ever-evolving sophisticated cyber threats requires organizations to be nimble, forward-looking and willing to share information across industries and with the government. Critical infrastructure owners and operators must determine how they will use the Framework, such as prioritizing cybersecurity practices based on the relevance and importance of threats within each sectors’ operational environments.
Beyond the Framework, issues like cybersecurity incentives, information sharing and public-private sector partnership will also significantly influence our nation’s future cybersecurity risk posture. Therefore, as we are beginning to reach an important milestone with the completion of the Framework, organizations should give serious thought to how they will engage in discussions on these issues, which will most likely drive how the Framework and other risk management approaches and practices are adopted. To truly raise the security level and be prepared for the next major attack, government and industry need to find common ground on challenging issues such as information sharing and large-scale cyber security R&D, and take action to implement security programs and practices. It’s time to stop talking about what can’t be done and figuring out what can be done. The Framework is a good first step toward what can be done.
As board members and C-suite executives at mid-size financial services organizations become more interested in cyber security risk management, those responsible for protecting their firms from attack are seeking help in deconstructing what we call the “cyber Tower of Babel.” Specifically, heads of IT, risk management and cyber security now realize the importance of speaking a language that resonates with their organization’s leadership. And because these cyber risk managers at these firms are also looking for ways to stretch their dollars and deliver the most appropriate threat management with finite resources, a common lexicon is even more important.
IT security’s rise from a functional area to a board-level concern has happened at a dizzying pace, and this transformation is now occurring at mid-size banks. No longer is cyber security a back office, functional risk – at firms large and small it has become a strategic risk agenda item. As a result, boards, senior executives and heads of risk and IT often experience the Tower of Babel effect – they use different languages and have unique points of view on cyber security risk management. Nearly every business decision has a significant technology impact, and this is particularly significant among smaller financial institutions that are increasingly dependent upon technology as a way to cut costs and deliver high quality customer service, yet often have limited resources and in-house expertise to fully respond to cyber threats.
It is more common today for information security professionals at mid-size banks to have a set at the leadership table, and once they get there, these professionals often wonder how they can be most effective with their finite resources and how they can communicate this challenge in a way that is clear and brings value.
At the Fall 2013 FS-ISAC Summit, Booz Allen will lead an expert panel that will strive to answer this. We anticipate some debate on this topic, but it is clear that if cyber security risks at smaller banks are not translated into clear business terms and business values, executives may not understand the full scope of the potential impact. This can impair their ability to prioritize risks and make effective triage and trade-off investment decisions. Conversely, not all security professionals will have a strong understanding of the business and the full spectrum assets that support it. Clear communication is critical for providing valuable decision information – it’s no longer just about data.
Earlier this year, the world watched as the Izz ad-Din al-Qassam Cyber Fighters quickly moved their attacks from the heavyweights to regional and mid-size banks. Although the Cyber Fighters only got as far as cyber disruption, the fallout could have been much worse. Those responsible for cyber security at mid-size banks need to realize that tomorrow’s threats will be more insidious. These IT leaders must now start bridging the language gap between technology, cyber security, risk management and business objectives to be ready for when the next wave of cyber attacks occur.
Today’s oil and gas industry executives are making business decisions in an interconnected landscape of risks and rewards. New regulations, cutting edge technology, emerging threats and opportunities – it can be hard to keep up, and even harder to stay ahead.
Helping to sort through it all, Booz Allen recently announced the top six energy industry trends for 2014, providing insights into what leading companies in the oil and gas sector need to know. For example, cyber risk management will become more customized, as companies realize the need to create unique approaches to minimizing the impact of an attempted attack. Some of the other trends also relate to cyber risk management – and for good reason. Look no further than the recent attacks on ARAMCO and RASGAS.
Next week (November 12-13), executives from across our firm will bring their cyber expertise to bear and attend the 8th Annual API Cybersecurity Conference for the Oil and Natural Gas Industry in Houston. Executive Vice President Thad Allen will kick things off in a keynote about the state of the industry threat landscape, and we have several other speakers lined up.
The oil and gas industry is leading in ways that the cyber industry can mirror. For example, take how safety protocol is ingrained in everything oil and gas employees do and think about. If you’re a visitor to an oil or natural gas site, the first thing you do is go through a safety briefing. The cyber industry can apply this work site culture as a measure for improving insider threat protection.
And that’s just the tip of the iceberg. We’re looking forward to meeting fellow professionals, and discussing how we’re helping clients in the oil and gas industry address today’s challenges, while preparing for the future.
Check out more about the event and Booz Allen’s presentation schedule here. For live updates and reactions during the conference, follow us on Twitter:
Booz Allen Hamilton: @BoozAllen
Sedar Labarre: @SMTL
Tony Urbanovich: @TUCyberInsights
Todd Inskeep: @Todd_Inskeep
On a recent Saturday I joined around 40 enthusiastic volunteers, many of them other Booz Allen employees, for a Rebuilding Together project to make improvements to a DC-VETS facility in southeast Washington, DC. Part of the Chesapeake Health Education Program (CHEP) network, DC-VETS provides safe and positive transitional housing for formerly homeless veterans who want to move permanently into the larger community.
Our team of volunteers worked on a 9-unit apartment building that currently houses 18 formerly homeless veterans. My colleagues and I worked alongside these veterans to repair drywall, apply a fresh coat of paint in bedrooms, kitchens, and living rooms; and generally make the vets' temporary homes feel just a bit more like real homes. Our biggest project Saturday involved building stairs on what had been a rocky downhill path to the building's laundry room. This project will help ensure that the vets' feet and clothes will stay dry as they travel to and from the laundry room on muddy days.
As a Marine recently returned from deployment overseas, I am especially attuned to the importance of selflessness and camaraderie among members of a team. When I work alongside my fellow Marines, I know that we are all committed to complete our tasks just as we are committed to protect and look out for each other. As I arrived at the Rebuilding Together project Saturday morning, I quickly felt that same familiar sense of commitment and selflessness from my Booz Allen colleagues as I do from my fellow Marines. I've always been proud to work for a firm that shares many of the values of the US military.
While we all know that Booz Allen has a long commitment of service to nonprofit organizations that support the military, it's more difficult to quantify the spirit of service and commitment to give back that exists in our employees. The shared belief among my colleagues is that helping those who have served our country is just what we do. Booz Allen people don't sit back and wait for someone else to help somebody out. We get up and go do it ourselves.
In the month of Veterans Day, many Americans want to take time to show our appreciation and thank the members of our nation's military. I can think of no better way to honor our veterans for their service to our country than to get up and help where help is needed. To sign up to volunteer for veteran-related service projects this month, visit Booz Allen Cares.
This month we launched a set of six videos which provide perspective on Booz Allen’s culture, operations, and some of the opportunities that we see in the market. The “Leadership Perspectives” videos were developed primarily for investors, but I think the messages they contain are relevant for many audiences including employees and clients. The topics discussed range from the drivers behind our Vision 2020 effort and its progress, to the importance of our innovation agenda, and capabilities under development that we believe will drive future growth for the firm. The videos also highlight the ways in which Booz Allen Hamilton is differentiated in the market, including our collaborative culture and our focus on helping our clients be successful.
The videos showcase:
While these discussions were conducted before the current government shutdown period, and comments do not reflect the impact of recent events, we believe these videos convey a relevant and enduring message. As we approach our 100 year anniversary, it is not only important to reflect upon our rich management consulting heritage, but also to recognize the exciting opportunities that lie ahead.
I have been with Booz Allen for over 20 years and I’ve seen this firm perform well under a variety of market conditions. We have always demonstrated our ability to adapt and change, and we have been successful because of our focus on serving clients – and helping our clients be successful!
We welcome your questions and feedback on these videos so please use the form that you will find at the bottom of the video landing page to share your thoughts with us and let’s continue the dialogue. We hope you are as excited about the future as we are!
|Page 1 2 3 4 5 6 7 8 9 10 11 12 13 All||Next >|