Related articles:

News from home

Other articles by Howard Fischer:

Governor: Return Guard troops to border Gov's possible exit puts budget fix in flux Brewer could bring clear rightward tiltNew jobless claims hit 30,000 Jobless rate Gov. calls for more funding of public works If 'SNL' spoof means you've arrived, then Napolitano has Napolitano keeping her options open Atty. general job apparently won't go to Napolitano Holiday meal costs rise again

Health Care
Freedom Manor
Caregivers Retail
TOTAL WINE & MORE
WINE TEAM MEMBERS, CASHIER & STOCK MEMEBERS Technical
Yavapai College
Analyst Banner Programmer Education
Yavapai College
Teachers General
Prestige Maintenance USA
Area Manager Health Care
SOUTHERN ARIZONA ENDODONTICS I
NSURANCE PROCESSOR Dental
Apache Dental
Porcelain Techs

PHOENIX — Arizona hired its first chief information-security officer Wednesday, two years after auditors said one is necessary to protect government computers and the private information stored in them from hackers.

Gov. Janet Napolitano named David VanderNaalt to the post. He starts his $118,000-a-year job Sept. 17.

The position is one of three created this past session by the Legislature in an effort to ensure government computers are secure and private information cannot be "hacked." Chris Cummiskey, director of the state Government Information Technology Agency, said he also will hire a chief privacy officer and someone to educate state agencies about security.

"The office will have a focus on improving the state's ability to protect sensitive data that citizens share with state agencies," he said.

He said state agencies are collecting more and more private information on things ranging from license applications to tax returns. Cummiskey said that requires secure networks to ensure information does not fall into the wrong hands.

Cummiskey also said his agency will do a "vulnerability assessment" to see how easy it is for anyone with a computer and an Internet connection to gain access to state files.

"We know there are too many 'back doors' right now," he said, a reference to the practice by many organizations of providing an alternate method of accessing their computers other than the normal sign-in and verification process.

And Cummiskey said the proliferation of state employees with laptop computers presents its own problems.

For example, he said some workers access the state system through wi-fi or other wireless methods. And those signals can be picked up by other computers.

Cummiskey said that shows the need to encrypt data so even if it is received it cannot be read.

The 2005 report by Auditor General Debbie Davenport found hackers had gained access four times in the prior four years to state-agency computers.

Davenport said an examination of the systems of 11 major state agencies showed not just flaws making them liable to security breaches, but also gaps that allowed viruses to infect computers.

Davenport said staffers also found problems in ensuring private information on state computers remains private.

In that report Davenport said some of the problems can be solved by creating a chief security officer who would be charged with ensuring that all agencies follow security standards, and following up with those that do not. Davenport also said the state should have a chief privacy officer.

Cummiskey said he had to wait until this year when lawmakers approved the funding and authorization.

VanderNaalt has been working for New York City in the dual position of director of citywide information security and citywide emergency continuity planning. Before that he worked for American Express, where he developed the company's first systemwide security program.