Sorry, but that’s not good enough.
The board needs to recognize three things:
- This cyber attack has exposed vulnerabilities in our cyber security posture
- We will continue to see cyber attacks over time because our data is valuable and many competing groups care very deeply about what goes in the map for political and commercial reasons
- We don’t have the expertise we need to fix the problem
As long as we are reacting to specific attacks, we will continue to see a pattern of new attackers and delayed responses while we scramble to make a fix. In the meantime, people like @SomeoneElse and his colleagues on the DWG will continue to be stuck fighting wildfires with garden hoses.
As long as we have a lot of smart people with IT, programming, and digital cartography expertise, and no smart people with expertise in cyber security, this problem will persist.
Please consider putting out a call to action to get the right people on the team, or hiring someone to fill this critical gap in expertise.