The importance of system security is quite high priority of all departments including public and private organization. So the white house appointed a retired Brigadier General Gregory J. Touhill, as first Federal Chief Information Security Officer (CISO). He will responsible for setting policies, strategies and practices across federal agencies. The role of the first federal CISO will include conducting Cyberstat Reviews with federal agencies to ensure security plans are implemented properly and are effective. The appointment of Touhill is part of President Obama’s $19 billion Cybersecurity National Action Plan announced in February. It also comes on the heels of a scathing oversight committee report released this week on the U.S. Office of Personnel Management breaches that exposed sensitive data belonging to more than 22 million people.
He is well respected for his experience and long tenure in the information technology field. For the past two years Touhill has worked for the Department of Homeland Security as the deputy assistant secretary for cybersecurity and communications in the Office of Cybersecurity and Communications. Prior to that he worked in academia, IT consulting, as CIO for C4 Systems, and served 21 years with the US Air Force. “It’s nice that the White House is acknowledging the importance of information security by putting the responsibility on top of one person. But whether Touhill can do anything other than provide general policy guidance is a big question,” said Ray Bjorklund, a former federal program manager and policy officer who is now a consultant with market research firm BirchGrove Consulting. “The Federal Government is made up of such a wide span of diverse agencies – each with their own funding. It’s hard for a central figure – be it CIO or CISO – to really control what the agencies are doing.