From: FCW
By Amber Corrin
The Homeland Security Department went live this week with its Einstein 3 automated intrusion detection system, the latest iteration of a continuous monitoring program designed to protect government agencies from malicious cyber activities.
Einstein 3 builds on the two previous versions of the DHS-managed security service, now offering capabilities that go beyond observing network information flow and signature-based threat detection. The new form of the program works with Internet service providers to detect malicious traffic and stop it. The program additionally provides officials with key decision-making information shared among participating organizations.
“We’re going to get a lot of perimeter information from Einstein 3,” Bobbie Stempfley, acting assistant secretary of DHS’ Office of Cybersecurity and Communications, said at an industry event in Washington on July 24, the day of the roll-out. “We’ve got these information exchanges that we do with departments and agencies, with companies. We get information in, we share that back out with security operations centers across the enterprise and with the other security centers in the critical infrastructure entities. So we’ve got this information flowing that’s actionable, it’s good. We have to make decisions – information is useful only when it’s actionable and when it helps you make better decisions.”
Einstein initially launched in 2004, with Einstein 2 following in 2008. Einstein 2 is deployed at roughly 70 government agencies, and is expected to be fielded at 70 percent of executive branch agencies by the end of fiscal 2013, according to FCW sister publication GCN.
Stempfley declined to identify the first agency to go live with Einstein 3, but she did say the Veterans Affairs Department would be the next, most likely by mid-August.
DHS provides the continuous diagnostics and mitigation services to users that enter into memorandums of agreement. So far, 20 of 23 of major departments and agencies have signed the MOAs – a major feat for federal cybersecurity, Stempfley said
Leave a Reply