 |
 |
|
|
|
|
|||||||||||||||||||||||||||||||
|
IT, legal staff urged to unite against cybercrime
(IDG) -- IT departments that battle computer crime John Wayne-style, or all by themselves, may be undercutting their companies' ability to fight off intruders. What's needed is a team approach, especially one that involves a corporate legal department that understands the investigative process and can help law enforcement, according to a panel of experts, including some current and former top U.S. computer crime investigators. The comments were made at a public policy forum this week on privacy and security issues sponsored by the Bureau of National Affairs Inc., a news and information service.
When security problems arise at many companies, legal counsel is often left out of the loop, said Christopher Painter, deputy chief of the computer crime section at the U.S. Justice Department. "System operators don't think about that; that's not their first concern," he said. One company that uses a cross-departmental approach in tackling computer crime is J.P. Morgan Chase & Co. in New York. That firm has dedicated teams around the globe for managing information security, and incident response teams that include senior managers, a fraud division, the human resources department in case an employee is involved, auditors if there's breakdown in controls, as well as legal and corporate staff, said Jacinthia Lawson, a risk management officer at the company. Many companies, however, remain reluctant to involve law enforcement in computer crime investigations for fear that publicity will hurt their firms. But Shawn Henry, who heads the computer intrusion unit at the National Infrastructure Protection Center, said most investigations never reach the public eye. Henry said he has more than 1,200 pending investigations, and 99 percent of them remain out of the public eye "because I don't go talking about them." Companies that concentrate on remediation -- closing off a vulnerability to deter an attacker -- without any investigative follow-up, may be hurting themselves in the long run, especially if they're dealing with an attack by a disgruntled employee or competitor, said Scott Charney, the former chief of the Justice Department's computer crimes division who's now a partner at PricewaterhouseCoopers. "You can spend the rest of your lives remediating and they will spend the rest of their lives trying to attack you," he said. RELATED STORIES:
EU unveils plan to fight cybercrime RELATED IDG.net STORIES:
Can legal systems effectively handle computer crime? RELATED SITES:
Bureau of National Affairs |
|
|
SCI-TECH
Study: Gadget sales flat Protest slams Dell's use of prison labor Steve Jobs keeps Apple in the limelight (MORE)
![[CNN.com]](http://i.cnn.net/cnn/images/newsnet/cnnlogo.gray.gif){kind=small} TOP STORIESN. Y. plans to heal skyline Stocks rise on Case departure Lieberman's presidential announcement today New arrests may be linked to UK ricin scare (MORE)
![[SI.com]](http://i.cnn.net/cnn/images/main/si.logo.gif){kind=logo} SPORTSJordan says farewell for the third time Shaq could miss playoff game for child's birth Ex-USOC official says athletes bent drug rules (MORE)
 All Scoreboards
|
|
|||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||
| Back to the top | |
© 2003 Cable News Network LP, LLLP.
A Time Warner Company. All Rights Reserved. Terms under which this service is provided to you. Read our privacy guidelines. Contact us. |
![[CNN Money]](http://i.cnn.net/cnn/images/main/fn.logo.newsnet.gif){kind=logo}
(