It was Thursday night, October 6, 2011, and we were listening to Michigan Governor Rick Snyder share his thoughts on the soon-to-be launched Michigan Cyber Initiative. About seventy-five Fortune 500 technology and defense executives, leaders from federal, state and local governments, university presidents, keynote speakers and other VIPs were gathered at the Eastern Michigan University in preparation for the Cyber Summit the next day. The picturesque room, overlooking a golf course with a lake, was decorated with Detroit Tiger banners, in preparation for game five between the Tigers and Yankees in a few hours.
Governor Snyder quickly raised the bar: “If people walk away tomorrow saying that we had a nice conference with good speakers, we will have failed. We need everyone walking away saying that it is time to act now on cyber – whatever their role.”
While only time will tell if we achieved that ambitious goal, the Michigan Cyber Summit was unlike any previous technology event that I’ve ever experienced. Here are a few of the reasons why:
The agenda was packed with featured speakers including:
- Michigan Governor Rick Snyder
- Secretary Janet Napolitano, Department of Homeland Security
- Howard Schmidt, White House Cybersecurity Coordinator and Special Assistant to the President
- Congressmen John Dingell, Mike Rogers and Hansen Clarke
In addition to our public sector leaders, the lunch keynote presentation by Richard Stiennon offered an informative and thought-provoking global view on cyber.
The afternoon breakout panels in five tracks contained participants that are generally tough to get as keynote speakers for other events - with senior execs from Facebook, Microsoft, Google, Symantec, AT&T, Comcast, Unisys, IBM and many others.
National Cybersecurity Awareness Month Kickoff:
The event was designated as the national kickoff for Cybersecurity Awareness Month and was streamed live on Facebook. As I walked around yesterday, I kept running into people from all over the country that are well-known cyber experts – who weren’t even speaking. I suspect this was because our partners got onboard and helped recruit many of the best to be there. These partners included groups like the National Cyber Security Alliance, the Washtenaw County Cyber Citizenship Coalition, the Multi-State Information Sharing & Analysis Center (MS-ISAC) and DHS’s National Cyber Security Division (NCSD).
WDIC Detroit - Michigan Announces Cyber Initiative
SC Magazine – Cybersecurity Awareness Month Launched
Sacramento Bee: Facebook Live Covers National Cybersecurity Month Launch
Looking Back and Forward
This was actually our 4th Cyber Summit in Michigan, with the first cyber summit being held in 2008. However, there is no comparison between this event and the first three that we held. Not only was attendance three times higher this time (600 v 200), the participants, buy-in and level of discussion were at an entirely different level. (The summit was actually sold-out more than two weeks in advance.) We had a nice beginning in 2008, but this is a new day with a new sense of urgency.
The bottom line is that Governor Snyder clearly is passionate about this cybersecurity topic. He “gets it” when it comes to the importance of Internet safety and online protection in every aspect of our economy. He also sees this issue in economic terms - with plans for growing private sector technology and cybersecurity jobs in the state. More than that, he is leading the charge and driving the change in “dog years.” His leadership and the support of everyone around him is bringing new partners around the country, allowing this event to happen quickly (only 12 weeks of planning).
The next question becomes: so what? Or perhaps: now what? We have some momentum and high expectations. The time for specific action is now. Our state has new partners at another higher level of engagement on this issue. Many sidebar planning meetings occurred that will help propel new projects within the Michigan Cyber Initiative forward with support and aggressive timeline for deliverables. You can learn more about this and see our toolkit at www.Michigan.gov/cybersecurity.
When I first became CISO in May 2002, we built the Secure Michigan Initiative in eight months - but gaining top-level executive buy-in was a battle. I was proud of our team's pioneering efforts given the resources we were provided. That plan delivered a bottom-up approach to transforming state IT security at the time, but the going got tougher as other priorities often trumped cybersecurity. Still, we did eventually implement almost two-thirds of that security plan on a smaller-than-expected budget.
Coming back as Michigan's new CSO - with physical and cybersecurity in one office, I see the Michigan Cyber Initiative differently. Our previous plans never received this much attention - which is a good and bad thing. Admittedly, the threat landscape has changed. Now, we not only have the Governor’s full support, but his leadership and experience on this cybersecurity issue. I think that we can accomplish much more with that clear priority and stronger executive support, but the stakes are higher as well. The plan is ambitious, but so are the challenges that face each state and our nation in cyberspace.
I am an optimist and a believer in the Internet’s ability to transform government service delivery for the better, but the bad guys are also getting better online as well. From cloud computing to smartphones to the smartgrid, state and local government efforts on cybersecurity will enable or disable innovation.
The reality is that many criminals and other countries are ahead of us. We have work to do. We must partner in new ways. Time will tell if we succeed.
What are your thoughts on this cyber challenge in 2011?
Daniel J. Lohrmann is an internationally recognized cybersecurity leader, technologist, keynote speaker and author.
During his distinguished career, he has served global organizations in the public and private sectors in a variety of executive leadership capacities, receiving numerous national awards including: CSO of the Year, Public Official of the Year and Computerworld Premier 100 IT Leader.
Lohrmann led Michigan government’s cybersecurity and technology infrastructure teams from May 2002 to August 2014, including enterprisewide Chief Security Officer (CSO), Chief Technology Officer (CTO) and Chief Information Security Officer (CISO) roles in Michigan.
He currently serves as the Chief Security Officer (CSO) and Chief Strategist for Security Mentor Inc. He is leading the development and implementation of Security Mentor’s industry-leading cyber training, consulting and workshops for end users, managers and executives in the public and private sectors. He has advised senior leaders at the White House, National Governors Association (NGA), National Association of State CIOs (NASCIO), U.S. Department of Homeland Security (DHS), federal, state and local government agencies, Fortune 500 companies, small businesses and nonprofit institutions.
He has more than 30 years of experience in the computer industry, beginning his career with the National Security Agency. He worked for three years in England as a senior network engineer for Lockheed Martin (formerly Loral Aerospace) and for four years as a technical director for ManTech International in a US/UK military facility.
Lohrmann is the author of two books: Virtual Integrity: Faithfully Navigating the Brave New Web and BYOD for You: The Guide to Bring Your Own Device to Work. He has been a keynote speaker at global security and technology conferences from South Africa to Dubai and from Washington, D.C., to Moscow.
He holds a master's degree in computer science (CS) from Johns Hopkins University in Baltimore, and a bachelor's degree in CS from Valparaiso University in Indiana.
Follow Lohrmann on Twitter at: @govcso
Building effective virtual government requires new ideas, innovative thinking and hard work. From cybersecurity to cloud computing to mobile devices, Dan discusses what’s hot and what works in the world of gov tech.