We should approach the development of cyber-policy and infrastructure given predictive knowledge by using that knowledge to it’s fullest. For example, if we know there is going to be an attack or that there is a vulnerable area, we need to close that area before something bad happens. We should approach cyber-policy in a way that will keep our systems secure, if congress is enacting the policies, the policies must be kept bipartisan, and everyone must come to an agreement. Once the issue becomes partisan and politicized then that leaves us with a national security issue, politicizing issues like these is very reckless. Various government agencies keep a close eye on other countries and different organizations that are a threat; I have seen on the news where the government had knowledge of a incident but nothing was done to stop it. We must act fast and in order to maintain security. For example, one incident stood out to me, and that was when the Iranian’s hacked into the dam in New York and was able to control the flood gates and the various pumps.
In a business, cyber-policy can be approached in many ways depending on the type of business. In a business where personal information is at stake limiting the access and putting very strict and secure policies in place. One policy is limiting on the online systems on who has access to what and how much information is available to that person. In any business there will become a time where that this kind of issue will arise, whether that be an employee or someone hacking in that compromises or destroys the networking system, like getting credit card numbers or getting personal information. A business must have a clear deterrence method, for employees that if they violate that rule, then they get fired or written up, depending on the severity of the crime.