Federal CISOs face a unique cyber security challenge – copious amounts of regulatory compliance paperwork. In fact, agencies spend more than one in four cyber dollars on FISMA paperwork* – well more than $1 billion each year. At the same time, the Federal government responded to more than 106,000 cyber attacks in 2011 – including cyber exploits that injected viruses, stole information, and disrupted Federal network operations.
While agencies must comply with FISMA, the regulations focus on complying with a narrow set of security and privacy controls. What these regulations don’t do is actually protect government networks from Advanced Persistent Threats (APTs) or other nefarious activity. The intent of these regulations is good – there should be security and privacy control regulations, and of course we need minimum levels of protection across the board for all Federal agencies. But the reality is that every dollar spent on compliance leaves CISOs with fewer remaining resources to combat APTs and advanced malware, so every dollar counts. Fortunately, there is a solution to this dilemma. Many Federal CISOs are deploying game-changing technologies that offer robust protection – without breaking their limited budgets.
Credit Union Times is the nation's leading independent source for breaking news and analysis for credit union leaders. For more than 20 years, Credit Union Times has set the standard for editorial excellence and ethical, straight-forward reporting.