Risk Factor iconRisk Factor

Want a $400,000 IT Job?

We-Need-Help.gif

The London Times is reporting that the UK National Health Service (NHS) is looking for two senior executives to take over the job of leading its electronic health record project National Programme for IT (NPfIT). The salary is $400,000 or possibly more, with the "exact package to be negotiated and agreed with the successful candidates."

The two jobs cover the work covered by Richard Granger who resigned as Director-General, NHS IT, last year after five years.

Anyone interested? You have until the 28th of April to apply.

Congrats to Baker College for Winning Cyber Defense Competition

IEEE Spectrum editor Joshua Romero let me know about the conclusion of a recent cyber competition.

Baker College of Flint, Michigan, defeated last yearâ''s champion Texas A&M University in the 3rd annual National Collegiate Cyber Defense Competition (CCDC) held April 18-20 at the Airport Hilton Hotel in San Antonio. The University of Louisville took third place honors.

According to the CCDC, its program is the first cyber defense competition allowing teams of full-time college students from across the country to apply their information assurance and information technology education in a competitive environment. While similar to other cyber defense competitions, CCDC competitions are unique because they focus on business operations and incorporate the operational aspect of managing and protecting an existing network infrastructure. The teams inherited an "operational" network from a fictional business complete with e-mail, Web sites, data files, and users.

Each team was required to correct problems on their network, perform typical business tasks, and defend their networks from a red team that generates live, hostile activity throughout the competition. The teams were then scored on their performance in those three areas.

The CCDC program has grown from five participating schools in 2005 to 56 schools in 2008 with six regional competitions taking place nationwide. Let's hope more participate next year.

Thank Goodness for Photoshop?

The London Telegraph ran a story recently about how fashion magazines, who used to make fashion models look thinner, are now "fattening up" their skinny models to make them look "fuller-figured." According to the Telegraph, "The move is a response to critics who blame images of so-called 'size zero' models for the rise in eating disorders in young girls."

The story says that Nicky Eaton, the head of press and PR at Condé Nast, which publishes Vogue, GQ, and Glamour,confirmed that images of models were enhanced to make them appear fuller-figured.

Eaton is quoted as saying, "There have been cases where models are booked way ahead of a shoot and then they turn up two months later looking less healthy and perhaps a bit underweight. We wouldn't be happy showing them that way, so it is then that we would need that person to look a little bit fuller."

What's interesting is that Eaton's quote is very similar to that an editor at Allure magazine said in 2006 - that models keep showing up too thin from the time of their booking to the photo shoot. Maybe the magazines need the models' contracts to stipulate a "shoot weight" at the time of the booking, or better yet, just to hire "fuller figured" models in the first place.

Australian and UK Health IT Program Problems

Doctor-is-Out.gif

The Australian reported that State of Victoria's health IT HealthSMART program aimed at replacing the information systems and technology running Victoria's hospitals and health clinics will not be completed by June 2009 as promised, which was already two years later than the originally promised completion date of June 2007. Victoria's Auditor-General Des Pearson has found that 57% of the HealthSMART A$323 million budget has been spent, but that only 25% of the project has been completed. He blamed much of the problem on over-ambitious project objectives.

The Auditor-General also noted that it is not known how much more will be needed to complete the project (although at least an additional A$61 would be be needed to subsidize health care providers until the system was up and running), nor what the new estimated completion date would be. Surprisingly (or maybe not), he also said that Victoria's Department of Human Services has not yet informed the government that the system was going to be late.

Australia is not the only one with health IT problems.

Over in the UK, ComputerWeekly has said that there have been problems with the NPfIT new Choose and Book appointment system. According to the UK National Health Service (NHS), "Choose and Book is a national electronic referral service which gives patients a choice of place, date and time for their first outpatient appointment in a hospital or clinic. Patients can choose their hospital or clinic, and then book their appointment to see a specialist with a member of the practice team at the GP surgery, or at home by telephone or over the internet at a time more convenient to them."

Unfortunately, according to ComputerWeekly, a glitch in the Choose and Book software meant that nearly 350 patients received wrong information about appointments for about a week. Some people got incorrect appointments while others didn't get told of their appointments.

A planned upgrade to the Choose and Book software was postponed until the reason for the problem was discovered.

Phishing for CEOs

Fishing-Nets.gif

There was a story this past week in the New York Times that tells of a new phishing attack aimed at corporate senior executives. The phish, according to the Times, appears "to be official subpoenas from the United States District Court in San Diego. Each message includes the executiveâ''s name, company and phone number, and commands the recipient to appear before a grand jury in a civil case."

Phish has been emailed to thousands of executives across the country and contains a link purporting to be a copy of the full subpoena, which if clicked on, installs keystroke recording and remote control software. According to the story, less than 40% of percent of commercial antivirus programs were able to recognize and intercept the attack.

Heathrow Terminal 5 Update: Only a Few Bags Being Lost

Luggage-London.gif

British Airways (BA) officials are saying that only a "handful of bags" are being lost now at their new Terminal 5 at London Heathrow airport, although they don't say exactly how many a "handful" really means.

Furthermore, most of the 28,000 or so bags that didn't accompany their owners have found their way home, although some are still missing in action. These include many of the bags trucked from Terminal 5 to Milan for sorting, and are now being trucked back to the UK for more sorting.

In addition, the insurance companies who said they wouldn't cover passenger bags going through Terminal 5 have changed their minds, after pressure from the government and consumer groups.

Finally, there is speculation that BA may need to rebuild part of the baggage system to increase the amount of storage for bags in case of future problems. The baggage system design assumption appears to have been that system problems would only last a few minutes, and that the numbers of bags not being able to be successfully transferred between flights would be significantly reduced because all BA flights would be operating out of the same terminal.

Alas, as events have shown, the assumption was incorrect.

DNA To Predict Your Future Behavior?

DNA-2.gif

There was an interesting and disturbing article in Sunday's Washington Post about the increasing use of DNA to predict a person's future behavior or life possibilities (e.g., longevity) in court. The article said that, "... defense attorneys are asking judges to admit test results suggesting that their clients have a genetic predisposition for violent or impulsive behavior, adding a potential 'DNA defense' to a legal system that until now has held virtually everyone accountable for their actions except the insane or mentally retarded."

The article goes on, "Some gene tests are even being touted for their capacity to help judges predict the likelihood that a convict, if released, will break the law again -- a measure of 'future dangerousness' that raises questions about how far courts can go to abort crimes that have not yet been committed."

In addition, courts are being asked to reduce or increase civil awards because a person's DNA make them genetically disposed to certain diseases. For example, "In once case, a mother sued a doctor and a hospital, claiming that negligence during her labor and delivery caused her daughter permanent brain injuries. A geneticist suspected that the girl had Angelman syndrome, a rare disease caused by a defective chromosome. The trial court ordered a DNA test, but the mother refused, resulting in her not only losing the case but also being held in civil contempt."

While it may take a while, the article suggests that courts may in the future routinely allow a person's DNA to "testify" about them - for good and bad.

That potential trend creates a set of risks that haven't been fully addressed by governments engaged in creating DNA databases of its citizens. The UK has been actively involved in creating DNA databases, and there are some there who are advocating that every person's DNA be recorded in it.

The US government has just changed its policy to collect DNA not only on those convicted of a federal crime, but also arrested for a felony (in the UK anyone arrested can have their DNA collected). Thirteen states already do so now and turn the data over to the government, and many others are considering following suit.

Anyone care to speculate on how long it will be before some government decides to use their DNA database to identify people prone to "future dangerousness?"

And if they do, will they require them to wear some sort of brain-activity box which will indicate when they are contemplating something the government dislikes?

Like bloggers who ask these types of questions?

Georgia Health Insurance Records On Web For Weeks

Peaches.gif

The New York Times reported that on the 12th of February, WellCare Health Plans Inc inadvertently posted the names, Social Security numbers, birth dates, and dates of eligibility for some 71,000 adults and children enrolled in Medicaid or PeachCare for Kids insurance programs in Georgia. WellCare Health Plans was hired by the State of Georgia to administer health benefits for low-income patients.

The information was on the web for seven weeks. WellCare was notified on 28 March that the information was publicly accessible, but it took another 5 days for the information to be removed.

WellCare Health Plans, which has sent out letters to those patients affected, is offering to pay them for credit monitoring services for a year.

This is the second time that Georgia's Medicaid and PeachCare for Kids participants have had their data compromised. Last year, Affiliated Computer Services lost a computer disk in the mail containing data on 2.9 million recipients.

UK Child Database to Track Chaotic Lifestyles

Discipline.gif

The London Times last week reported that the new UK childrenâ''s database which is part of the Every Child Matters program "will contain details of relatives with drinking problems and of relationship difficulties between parents. The register is intended to identify and help youngsters felt to have problems holding them back at school. It is not designed for children at risk of harm but for those with any health, learning or general wellbeing problems."

What's more the story says that, "The common assessment scheme will encourage professionals such as teachers and doctors, who have contact with children, to pass on concerns to assessors who will then talk to families about a childâ''s homelife."

The details that are going to be put into database "include 'family routines', evidence of a 'disorganised/chaotic lifestyle' and 'any serious difficulties in the parentsâ'' 'relationship' " as well as "signs of mental illness or alcohol misuse by relatives, quality of accommodation and 'ways in which the familyâ''s income is used' " according to guidance the UK government is providing.

Is this a recipe for trouble or what? How soon do you think it will be before loads of teenagers, angry after being disciplined by their parents, decide to use this scheme as a way to get back at them?

And exactly what objective standards are going to be used by assessors? For example, how does one measure a disorganized/chaotic lifestyle?

GAO: Software Causes Defense Cost & Schedule Problems

The US Government Accountability Office (GAO) recently released its sixth annual assessment on major defense system acquisitions. It states that, "Since 2000, the Department of Defense (DOD) has roughly doubled its planned investment in new systems from $790 billion to $1.6 trillion in 2007, but acquisition outcomes in terms of cost and schedule have not improved. Total acquisition costs for major defense programs in the fiscal year 2007 portfolio have increased 26 percent from first estimates, compared with 6 percent in 2000. Programs have also often failed to deliver capabilities when promised."

One of the reasons the cost increases is software.

"Programs continue to have difficulty managing software development for weapon systems. Roughly half of the programs that provided us data had more than a 25 percent growth in their expected lines of code since starting system development."

The report says that programs like Future Combat Systems (FCS) has seen code increases of 300% while others like the Expeditionary Fighting Vehicle program have experienced major software reliability problems that have contributed to their cost and schedule delays.

Software has been the long pole in the tent on defense acquisitions for the past 30 years, and given DoD's aim of building system of systems, the pole will only get longer.

Advertisement

Risk Factor

IEEE Spectrum's risk analysis blog, featuring daily news, updates and analysis on computing and IT projects, software and systems failures, successes and innovations, security threats, and more.

Contributor
Willie D. Jones
 
Advertisement
Load More