:quality(70)/cloudfront-us-east-1.images.arcpublishing.com/archetype/CBKYHTKFWND2VIX5ABZWCNC7GE.jpg)
Recovery from cyberattacks is where the government most needs improvement, said Trevor Rudolph, Chief of the Office of Management and Budget's Cyber and National Security Unit.
"We've spent so much time, resources and money on protecting assets and detecting threats, and now that we know the threats are in our system, we spend a lot of money responding to them," he said, speaking as part of a panel at CyberCon2015. "We're at a point where we're really good at protecting and detecting, and we're getting good at responding, but we have not gotten really good at the recover piece."
Part of the problem, he said, is that "recover" is not well-defined. Just what does it mean to recover? Reconstituting systems and processes? Notifying victims?
Like the other aspects, though, he said the government will get better with experience.
Get full CyberCon 2015 coverage.
:quality(70)/cloudfront-us-east-1.images.arcpublishing.com/archetype/QX374P5EAJHDJOVERBGQAVTUOE.jpg)
:quality(70)/cloudfront-us-east-1.images.arcpublishing.com/archetype/5W3PNXAC4NB5NC4XD326YH7TTU.jpg)
:quality(70)/cloudfront-us-east-1.images.arcpublishing.com/archetype/6MOJNAKPSBD7ZNXTVTKMOMK2WA.jpg)
:quality(70)/cloudfront-us-east-1.images.arcpublishing.com/archetype/FM3ZAQAKPBFG5DDLI2LDFWGR7A.jpg)
:quality(70)/cloudfront-us-east-1.images.arcpublishing.com/archetype/SD73AWGNQJFADGUUATNYHLWN2A.jpg)