P. R Owino,<br><br>The other issue of concern is the rise in the number of foreign governments and agencies literally falling over each other competing to donate computers to state institutions. Can someone stop this?<br><br>
Kipkemoi arap Kirui<br><br><div class="gmail_quote">On 22 February 2011 11:01, Paul Roy <span dir="ltr">&lt;<a href="mailto:roykoikai@gmail.com">roykoikai@gmail.com</a>&gt;</span> wrote:<br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<p><font face="Times New Roman" size="3">Hello,</font></p><p><font face="Times New Roman" size="3"><br></font><font size="3"><font face="Calibri">Been watching keenly with grave concern our public<br>institutions falling victims of numerous security attacks. The defacement of government<br>

websites has just but opened the eyes of the general public as to how insecure<br>our data and information within these offices are. </font></font></p><p><font size="3"><font face="Calibri">Unfortunately going beyond defacement of public websites,<br>

there are untold stories of viruses, malware, rootkits, Trojans, data breaches,<br>illegal and unauthorized access to information, intrusion, DoS attacks and any<br>more going on.</font></font></p><p><font size="3"><font face="Calibri">Indeed a simple analysis has proven most government<br>

computers and laptops do not have simple line of defense i.e. passwords. In cases<br>where they are passwords, they are shared and are very simple to crack. Further,<br>lack of Information Security policy hampers development of proper security<br>

roadmap and strategy.</font></font></p><p><font size="3"><font face="Calibri">In areas where counter measures have been put in place, the<br>staff lack skills to maintain these systems, and in the long run are incapable<br>

of dealing with new emerging threats thus renders the counter measure<br>ineffective.</font></font></p><p><font size="3"><font face="Calibri">I believe this is due to lack of guidance from government<br>institutions tasked with providing either services or framework policy. Both<br>

KICTB and Directorate of e-Government should work together to come up with a<br>quick solution to this persistent issue. As we look at this, it would be good<br>to keep in mind that technology alone cannot solve all incidents related to security.<br>

We need to evaluate both people skills and processes in place. In regards to<br>people skills, it would be advisable to engage experienced consultants in the<br>field of Information Security to work together with government to properly<br>

skill them. </font></font></p><p><font size="3"><font face="Calibri">In conclusion I believe this country has some of the best<br>skills currently in the private sector, we need to take a lead role in<br>contributing our knowledge and skills towards improving security in our public<br>

sector institutions and Government in general.</font></font></p><font face="Times New Roman" size="3"><p><br>Paul Roy Owino, CISSP, CISA, CISM, CEH, MCITP.</p><p>Technology Strategist, Microsoft Corp.<br></p></font><p> </p>

<br>_______________________________________________<br>
kictanet mailing list<br>
<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.kictanet.or.ke</a><br>
<a href="http://lists.kictanet.or.ke/mailman/listinfo/kictanet" target="_blank">http://lists.kictanet.or.ke/mailman/listinfo/kictanet</a><br>
<br>
This message was sent to: <a href="mailto:arapkirui@gmail.com">arapkirui@gmail.com</a><br>
Unsubscribe or change your options at <a href="http://lists.kictanet.or.ke/mailman/options/kictanet/arapkirui%40gmail.com" target="_blank">http://lists.kictanet.or.ke/mailman/options/kictanet/arapkirui%40gmail.com</a><br>

<br></blockquote></div><br>