ABSTRACT
The biggest threat to all organizations—governments, nonprofits, and private—is the inability to maintain cyber security. In this book, among the hacking incidents discussed were:
Edward Snowden hacking the NSA, which severely damaged national security
Hacking Office of Personnel Management's files on 20 million citizens
Hacking the 3.8 million of the state of South Carolina's Social Security numbers
Hacking the files Democratic National Committee files, Hillary Clinton's server, and John Podesta, the Clinton campaign chair, which likely affected the election outcome
Maintaining cyber security is problematic because we fight against a moving target. Although what was dangerous yesterday is neutralized today, tomorrow brings a not yet heard of threat. Preventively, a professionally constructed and maintained IT system is needed. In this chapter, we discuss aspects of such a system that organizations failed to maintain including failing to:
Create and maintain effective hacking defense system.
Have a CTO.
Give the CTO budgetary oversight over IT projects.
Accurately estimate the cost of IT projects.
Calculate the cost-benefit of projects.
Ensure the projects met their contractually specified outcomes, stayed within budget, and were completed within the contract period.