Top IT cops say lack of authority, resources undermine security / GovExec.com, 13 August 2008
http://www.govexec.com/story_page.cfm?articleid=40700&dcn=e_hsw
"To understand what it's like to be a federal chief information security officer, consider Larry Ruffin. As CISO at the Interior Department, his job could be described as having little to do with being a chief and not much more about security."