Also in this playlist...
This transcript is automatically generated
-- continued to continue this thing in cyber security calls will be one of the issues President Obama will discuss with the Chinese president when the two leaders meet next week.
And our next guest says -- it's time for the president to get tough joining us now governor Tom Ridge.
Former Homeland Security secretary co-founder of the rich -- Ciba.
Governor thank you so much for joining us it feels like.
I mean it's an overused expression but it's Groundhog Day we keep saying the same things we keep pointing the fingers at China or Iran -- -- up.
At what point do we do we actually draw a line in the sand and say enough is enough.
Well I suspect.
Actually that we've already drawn the line in the sand but the rhetorical enough is enough is obviously.
Very ineffective -- and while we -- to a government to try to have resolve the problems with -- -- -- China frankly doesn't make too much difference as to where that hackers are located.
At the end of the day there's a joint responsibility.
And part of that responsibility that rests with the CEOs -- the boards of directors of the company's been hacked into it just seems to me that if the FBI.
As to knock on your door and tell used that there had been a major incursion or two.
-- perhaps say you were doing your job it's like Homeland Security everybody's got a role to play.
In this whole notion that -- so we shouldn't be surprised anymore.
It's an ongoing effort day to day you -- act as if they've already inside yourself what your system your network.
And do everything you -- create a defense in depth or security and death.
To identify -- -- it but right now we're still a bit too passive about these things.
Well we are and yet now we hear news from this Washington post report that you know they've had a good look at a lot of the weapons systems they've also I'm sure all had a good look at some of the critical infrastructure of this country.
I mean literally -- the -- -- -- Baltic how come we put -- why can't we come up with the technology to stop it in its track.
It's well frankly I think you have first of all there's sufficient to have public -- evidence or -- That to suggest that many of the incursions could have been avoided.
We've just off the shelf technology it's almost today it's like an invisible and it -- were really good about dealing with physical attacks.
-- -- -- said this whole virtual world.
This kind of vague and it's invisible and -- we just kind of defer that and I think frankly.
We need dead and and here's where the private sector has a role to play look.
The president's going to have a conversation and went dead the military does have a very intelligent agencies do and everybody else has we'll leave it up to them.
That's below the radar and quite confident they'll do with something in response.
But there's a joint responsibility.
Within the corporate community to do far more than they've ever done before.
And -- they need to build a culture of resiliency they have to build a defense in depth security in -- What are the crown jewels that do you have access control -- you have encryption and in dealing with -- crown jewels do you have anti virus and -- spam software.
And yet patch management you just go down the long list of things and quite candidly.
I don't think gap until recent days have been too many too much emphasis on this in the corporate boardrooms and up to the CEO level it's about time they became some.
Much greater emphasis there's a role to be played there.
Is that the cost issue governor -- these companies that I just cutting costs they don't have to invest the time and money into these systems.
Well actually you know -- I think that's that's -- a good question.
And my answer to that is simply.
You have stakeholders.
Whether -- a public company or private company who have stakeholders.
To whom you are responsible.
Your employees your customers your communities your board of directors and frankly if you're publicly traded company for your shareholders.
And can't -- -- if you're the CEO.
Could you look in the mirror and say I've been everything I can't I have been personally involved.
In ensuring that we are doing everything we -- with regard to best practices and tactics.
To minimize the risk and -- quite.
And sadly based on limited -- with some experience we've had the answer is that not a lot of CEOs view -- as being part of their overall.
Responsibility I mean -- a more granular specific way -- I added -- from there I'd rather than just deferring it.
To the chief information officer the chief technology officer has got to get to that it's got to get to the top it's about profitability it's about brand it's about your -- your economic security as well as national security there's a joint responsibility between government.
And the private sector and right now I'm like.
Confident the private sector doing everything in the candid take care of their -- shared responsibility.
Hopefully they'll get the message soon here thank you so much government coverage for that -- Schmidt -- thank you so much for joining us.
-- -- we actually think you strike them and had to listen to your hands and a mean it's just seems like fate of these hackers who -- content -- my company's website they can get until -- get all the information they need to get out without them companies even knowing.
Me and mean and if your bank gotten the -- the only thing you think about.
When I was still to come as a.
Filter by section