Burst Stovepipes to Aid in Metrics CreationNIST Units to Help Develop New Rules for IT Security Compliance.
That's what happened with the enactment of FISMA in 2002, but today NIST will be better prepared to use all of its resources to accomplish the assigned task.
The culture at NIST in 2002 wasn't highly collaborative, even among organizations for instance, the Computer Security and Mathematical and Computational Sciences divisions within the Institute's Information Technology Laboratories (ITL). "Seven years ago, we were pretty determinedly stovepiped," Curt Barker, chief of ITL's Computer Security Division, says in an interview with GovInfoSecurity.com.
That's no longer the case. "Like a lot of other organizations, we were stovepiped pretty heavily in the past, and those cylinders of excellence have been effectively burst," Barker says. Now, "there's a great deal of sharing of resources, and frankly, I'm counting on that very heavily for activities such as (developing) metrics."
When time comes to create the new metrics, Computer Security and Mathematical and Computational Sciences will be partners.
Barker credits ITL Director Cita Furlani with felling the barriers among the lab's units. "I would hate to put words in my boss' mouth, but she felt resources weren't being effectively employed as possible," Barker said. "You could end up duplicating skills or having gaps in skills unless you can get the full organization work as unit."