July is the most popular month to move, according to the American Moving and Storage Association.

Homeowners and renters aren’t the only ones boxing up their paperbacks and photo albums. Federal agencies are doing the same thing. But they’re moving to the cloud.

Packing Up
The Department of Defense (DoD) may have the most boxes to pack, so MeriTalk produced a new report that focuses on the agency’s efforts to migrate apps to the cloud.

Turns out they’ve done some heavy lifting already – 57 percent of DoD apps in the cloud today were migrated from legacy systems, according to “DoD’s Move to the Cloud: Box it Up or Build New?”

Liking the New Neighborhood
Moving is hard on everyone, not just the people lifting those heavy boxes, but DoD sees a lot of advantages from moving apps to the cloud:

• 87 percent say cloud provides greater agility
• 87 percent say it saves money
• 87 percent say it saves time
• 86 percent say it provides better security

Build New
Sometimes DoD doesn’t have to pack up and move anything – that’s because 43 percent of the apps in the cloud today were built there. That’s a good way to avoid hurting your back.

Rather than move apps from legacy systems, 52 percent of IT professionals said the smarter move is building apps in the cloud. Why?

• 56 percent cite better security
• 51 percent cite the speed of deployment
• And 48 percent cite the opportunity to reduce redundancies

But 43 percent also cite lack of funding as their biggest hurdle preventing them from building new apps in the cloud.

Settling In
DoD is nesting, and they can’t wait to do more to make cloud feel like home. The agency hopes to have 57 percent of all applications in the cloud by 2020, MeriTalk says in the report, “DoD’s Move to the Cloud: Box it Up or Build New?”

Even though DoD wants to have 57 percent of apps in the cloud in five years, budget pressures could mean the agency has just 24 percent of apps in the cloud by 2020.

DoD is a Big Deal
We all know DoD has the biggest house on the block. It will account for 37 percent of all the money Federal agencies will spend on cloud computing in the current fiscal year, or $772.9 million of a total $2.05 billion, according to the Cloud Computing Caucus Advisory Group’s report.

So it’s good to keep up with our friends at the Pentagon.

See “DoD’s Move to the Cloud: Box it Up or Build New?” here. And tell us your agency’s plan for moving apps to the cloud. Does it have one? Is it better to move apps from legacy systems or build new apps in the cloud? Does that save money? Let us know what works for your agency so we can spread the word.

Feel like sharing something Noteworthy? Post a comment below or email me at bglanz@300brand.com.

Bill Glanz is the content director for MeriTalk and its Exchange communities. In the past 14 years, he has worked as a business reporter, press secretary, and media relations director in Washington, D.C.

It’s a big, bad world. So what do agencies need to know that can help them improve cybersecurity? At the Symantec Symposium, these key ideas to improve security resonated with an audience concerned that they will be the target of the next attack.

1.    Take a broader view.

“Identify and protect” used to represent a standard approach to cybersecurity, said Symantec Senior Vice President and Chief Information Officer Sheila Jordan. But it’s not effective any longer, she told the Symantec Symposium recently.

“Identify and protect is where we have historically been, and for a long time that served a great purpose. But now we need to move to…‘detect, recover, and resolve’ as fast as we possibly can,” Jordan said. “I want to detect, recover, and resolve an incident before a person even knows what happened.”

2.    Build your insider threat program.

The insider threat is real, but the public sector has work to do, said Steve Smith, Insider Threat Program Coordinator at the U.S. Department of State.

“We’re nowhere near where we need to be,” said Smith.

Organizations that want to build an insider threat program should focus on what data they want to protect and then put the technology in place to keep it safe, said Government Acquisitions Chief Technology Officer Prem Jadhwani. That includes encrypting it and using two-factor authentication.

Institutions also need to understand which employees have access to the data that requires protection.

Not every data breach is the work of a malicious insider. Organizations have a harder time protecting data from well-meaning employees who unintentionally expose information or systems to risk. Well-meaning vendors can also slip and disclose data accidentally – 22 percent of data breaches last year resulted from employees accidentally making data public, while only 8 percent were the result of insider theft, according to Symantec’s 2015 Internet Security Threat Report.

3.    Leverage Continuous Diagnostics and Mitigation (CDM).
Einstein is reeling, and agencies need help. Agencies are anxious for the Department of Homeland Security’s CDM program to reach all agencies. The program now covers about half of government networks, with the goal of having full coverage by the end of Fiscal Year 2016, said Andy Ozment, assistant secretary of the DHS Office of Cybersecurity and Communication.

That’s good news.

“We have seen some significant benefits from CDM,” said Rod Turk, Chief Information Security Officer, Department of Energy.

4.    Don’t forget the data.
Data and analysis are crucial, and malware represents one of the most important pieces of information for law enforcement in a cyber investigation, Allison Tsiumis, section chief with the Federal Bureau of Investigation’s Cyber Division, said at the Symantec Government Symposium. Malware can reveal a lot of information, so law enforcement:

•    Maintains a current inventory of known malware
•    Tracks which malware threat groups use to carry out attacks
•    Reverse engineers malware once it’s identified and contained to see how it works and what it can do

Law enforcement must also understand the TTPs of cyber criminals – their tactics, techniques, and procedures – including:

•    Who the hackers target
•    When they launch an attack
•    How they carry out attacks
•    What method they use
•    What data they target

Connecting all these dots can help law enforcement achieve their goal of identifying hackers and, perhaps, capturing the bad guys. Understanding the questions law enforcement attempts to answer in a cyber investigation can help Federal agencies improve cybersecurity going forward because the questions offer guidance on how to respond following an attack.

Analytics can help agencies look at the mountains of data coming in from various sources and correlate the data to detect anamolies. Analytics can help agencies combat insider threats, external attacks, including Advanced Persistent Threats (APTs), malware, and zero-day attacks.

“I see big data as a perfect solution to solve cyber problems,” Jadhwani said.

Learn more: read Symantec’s Internet Security Threat Report or see a list of all session podcasts.

And let us know how your agency tackles cybersecurity.

Feel like sharing something Noteworthy? Post a comment or email me at bglanz@300brand.com.

Bill Glanz is the content director for MeriTalk and its Exchange communities. In the past 14 years, he has worked as a business reporter, press secretary, and media relations director in Washington, D.C.

Following the historic Office of Personnel Management (OPM) hack and the theft of data from the Internal Revenue Service (IRS) – for the second time in a year – agencies are searching for a long-term cure to cybersecurity woes.

Continuous Diagnostics and Mitigation (CDM) could be the medicine they need. A panel of CDM experts at the recent Symantec Government Symposium said CDM is one of the key proven defenses against pervasive threats.

“We have seen some significant benefits from CDM,” said Rod Turk, Chief Information Security Officer, Department of Energy.

Sounds like CDM may be just what the doctor ordered.

Moving Ahead
Nearly two years after its August 2013 launch, CDM remains in Phase 1 (which focuses on endpoint security through hardware and software asset management, configuration settings, and vulnerability management).

CDM may be “a few months behind schedule” due to funding fights, said Christopher Cummiskey, a former acting under secretary for management at the Department of Homeland Security (DHS).

Andy Ozment, assistant secretary of the DHS Office of Cybersecurity and Communication, said in April DHS just needs time to get the program implemented and the CDM will fully cover Federal systems by the end of next year.

“We think we’re in good shape,” he said.

DHS on May 7 awarded a $39 million contract to Booz Allen Hamilton, which will – along with its partners – provide monitoring services for OPM and the departments of Energy, Interior, Transportation, Agriculture, and Veterans Affairs.

Mark Kneidinger, Senior Advisor, Federal Network Resilience Office, DHS, said the schedule for the rest of the agencies under the CDM program is on track, with the next wave of awards likely to come in the fourth quarter of this year.

No News is Good News
Agencies realize that CDM will help keep agencies out of the news, said Grant Schneider, CDM Oversight Lead, Office of Management and Budget.

“CDM is really giving us a level of foundational and fundamental situational awareness about our systems and our environment so that we can have much more mature risk conversations with the mission owners,” Schneider said. “Deputy secretaries are very interested in cybersecurity. They might not have been a couple years ago, but Target, Home Depot, Sony Pictures, and all the government [breaches] — they kind of all realize, ‘That could be me on the front page of the paper.’ So they’re interested in having the conversation.”

They’re viewing CDM as a cyber flak jacket.

Paradise by the Dashboard Light
But more than a flak jacket, CDM is a window on your cyber security. Kneidinger said DHS will begin moving dashboards to some departments and agencies as soon as next month, giving them real-time visibility into their systems.

Early next year, DHS and OMB will launch a Federal dashboard, Kneidinger said. Vendors will connect the department and agency dashboards to the Federal dashboard, providing data and trends.

“We’re starting to move forward. The implementation activities, the dashboards are ready to come out. That’s the exciting part. We’re geared up for it,” Kneidinger said.

Phase II of the program will address identity, credentials, and access management, writes Aaron Boyd in Federal Times.

But the acquisition cycle has not been formalized. Phase II remains a work in progress, Kneidinger said.

Will CDM move fast enough to allow agencies to stay ahead of the next cyber threat? Is your agency eager to put CDM to use?

Learn more: Listen to the full discussion on CDM, read the complete Internet Security Threat Report, or see a list of all session podcasts.

Feel like sharing something Noteworthy? Post a comment below or email me at bglanz@300brand.com.

Bill Glanz is the content director for MeriTalk and its Exchange communities. In the past 14 years, he has worked as a business reporter, press secretary, and media relations director in Washington, D.C.

Nothing gets headlines like a data breach and nothing protects against breaches like multi-level authentication.

The challenge is balancing security with convenience and cost. It’s not that it’s impossible to keep all your data locked up and secure. It is. It’s that making it secure and accessible is so difficult.

“Why is identity such a complex problem?” asks Nico Popp, Symantec’s Vice President, Information and Identity Protection told a gathering at the Symantec Government Symposium recently. “Fundamentally, it’s difficult because you have to think of identity (authentication) in three dimensions.” Those include security, cost, and user experience.

What works in one circumstance won’t work in another. People have different expectations for security based on the kinds of information potentially at risk.

Paul Hunter, Deputy Chief, Biometrics Division, U.S. Department of Homeland Security’s Citizenship and Immigration Services, collects fingerprints from people applying for citizenship. Future citizens are willing to give up that personal biometric data because of the payoff at the end of the road. But would users of e-commerce sites be willing to go so far?

Pointing to an iPhone, with its built-in finger-print sensor, Hunter suggested that if it were convenient enough, consumers might indeed be willing.

Financial firms, meanwhile, depend on knowledge-based authentication — confirming someone’s identity and granting access by asking questions that only they can answer because they are specific to them, like who was your favorite teacher? That works well for the financial services industry, said Steve Lazerowich, Director, Cybersecurity Solutions, U.S. Public Sector, Hewlett Packard. But when there’s a breach, companies risk the exposure of the personal data of a substantial number of users, and collecting that personal data could arm hackers with the information to commit more fraud.

“What do you do at that point for that individual who’s had their personal information…compromised?” Lazerowich asked.

Deb Gallagher, Defense Manpower Data Center Special Advisor, Department of Defense, said convenience was set aside when the Pentagon adopted the Common Access Card for network access 10 years ago. But it was worth the sacrifice: The Defense Department immediately saw a 46 percent reduction in successful intrusions.

“It’s not cheap, and sometimes it’s not easy to use,” Gallagher said. But it works.

The New, New Thing?
Facial recognition and retinal scans remain potential opportunities in the future. HP’s Lazerowich said he knows of one firm that’s trying to use the cameras embedded in laptops and desktop monitors to scan users’ faces when they log in, and to identify if anyone is looking over their shoulder.

If the camera detects another person in the field of view, it terminates the session to prevent the second person from stealing log-in information.

How Much Authentication is Enough?
What does the future hold? Mike Garcia, Deputy Director, National Strategy for Trusted Identities in Cyberspace at the National Institute for Standards and Technology (NIST), suggests that standards need to be flexible.

“One of the things we need to avoid is tricking ourselves into believing we always need strong authentication,” Garcia said. “It’s about figuring out when the strength profile matches the strength of authentication.”

Convenience over Security
No matter what agencies or organizations do to improve security, they can’t always anticipate how their employees or users will respond.

Google tried to give away strong authentication to Gmail users to improve security, Popp said.

“It failed miserably because consumers will never trade convenience for security,” he said. “The extra step of adding a one-time password” was too high a hurdle. “People don’t want to do it.”

At NIST, Garcia is trying to help develop standards that help answer that problem, and help agencies and private industry see that the more information they collect to ease authentication, the more risk they ultimately take on should they someday suffer a breach.

What steps does your agency take? Are they effective? Let us know what works and what doesn’t.

Listen to the full discussion on secure information access, read the complete Internet Security Threat Report, or see a list of all session podcasts.

Feel like sharing something Noteworthy? Post a comment below or email me at bglanz@300brand.com.

Bill Glanz is the content director for MeriTalk and its Exchange communities. In the past 14 years, he has worked as a business reporter, press secretary, and media relations director in Washington, D.C.

Cubicle farms are dying. Where can I send flowers?

We can work anywhere, but it takes IT smarts to ensure that an increasingly mobile workforce has secure access to whatever it needs, whenever it needs it.

Managing the mobile enterprise is critical, and it’s the focus of next week’s Citrix Mobility 2015 Government Summit, bringing together experts for a deep dive into enterprise mobility management – from mobile device management to secure network access and data security.

Beyond E-Mail
Mobility isn’t just a perk. It’s a prerequisite for getting more work done faster.

In fact, the first goal of the Federal government’s digital strategy is to “enable the American people and an increasingly mobile workforce to access high-quality digital government information and services anywhere, anytime, on any device.”

“Always-on” and “always connected” have become routine. It’s no longer about receiving and sending e-mail from anywhere. It’s also about having access to the documents, data, and applications workers need instantly, without having to return to their desks and without having to jump through hoops.

IT Heavy Hitters on Deck
Howard Schmidt, who served as Special Assistant to the President and the Cybersecurity Coordinator for the United States, will provide the keynote at the Citrix summit. The White House will send the inestimable Lisa Schlosser, who serves as serves as the Deputy Administrator, Office of E-Government and Information Technology, Office of Management and Budget, Executive Office of the President and Deputy Federal Chief Information Officer, to discuss the Federal Information Technology Acquisition Reform Act (FITARA).

Don’t miss the draft guidance on changes to FITARA.

The People Have Spoken
Telework is the original mobility initiative, and it continues to gain favor as it moves from concept to mainstream reality.

In 2014, 29 percent of Federal workers participated in telework programs, up from 26 percent in 2013 and 25 percent in 2012, according to the Office of Personnel Management’s Federal Employee Viewpoint Survey.

Technology is no longer much of a barrier. Among those who don’t telework, 5 percent said that’s because of technical issues, down from 6 percent in 2013 and 6 percent in 2012.

Down on the Farm
At the U.S. Department of Agriculture, our friend and fellow Iowan, Secretary Tom Vilsack, said increased telework has allowed $18 million of cost avoidance in transit subsidies to Agriculture Department employees.

That’s something to moo about. Maybe Secretary Vilsack can find a new use for all those empty cubicle farms popping up at Ag and at other agencies.

How is your agency doing? Does it have a progressive mobility initiative? Let us know. And let us know how your agency can improve mobility for its workforce.

The Citrix Mobility 2015 Government Summit is scheduled for Monday, June 8. Start the week off right by registering here to discover the best mobility strategies, meet interesting people, and hear some great new ideas.

Feel like sharing something Noteworthy? Post a comment below or email me at bglanz@300brand.com.

Bill Glanz is the content director for MeriTalk and its Exchange communities. In the past 14 years, he has worked as a business reporter, press secretary, and media relations director in Washington, D.C.

Snowden and Manning introduced the world to insider threats. Not only do we know what that means now, we also understand how difficult it is to stay ahead of such threats.

But with the expansion of mobile technologies and increasingly sophisticated threats – both inside and outside – the whole nature of cyber defense is transforming before our eyes. What worked a short while ago can no longer be expected to do the job.

Guarding the Perimeter Won’t Cut It
“Identify and protect” used to be the standard defense, notes Symantec Senior Vice President and Chief Information Officer Sheila Jordan. But that doesn’t represent an effective approach any longer, she told the Symantec Government Symposium recently.

“Identify and protect is where we have historically been, and for a long time that served a great purpose. But now we need to move to…‘detect, recover, and resolve’ as fast as we possibly can,” Jordan said. “I want to detect, recover, and resolve an incident before a person even knows what happened.”

In the same way, cybersecurity is no longer just about guarding the perimeter. In fact, it’s not even clear where the perimeter is any longer.

Crumbling Walls
The rapid growth of mobile devices and the growing phenomena of the Internet of Things are expanding exponentially both data collection and the ability to access it. More data and more access points make security more difficult.

“The four walls of an enterprise have crumbled,” said Jordan. “There are no four walls anymore. So the data is traversing… in and outside the firewalls, with the devices, back into the devices, oh, and I forgot to mention apps and cloud. So I don’t think we have a choice but to figure out how we’re going to have end-to-end security architecture and how that’s going to traverse around the data so that ultimately we’re protecting that data (from) inside and outside threats.”

Introducing Analytics
Government Acquisitions Chief Technology Officer Prem Jadhwani agreed. Jadhwani, who joined Jordan at the Symantec Government Symposium, said analytics can help organizations look at the mountains of data coming in from various sources and correlate the data.

“I see big data as a perfect solution to solve cyber problems,” he said.

But when?

“It’s happening faster than you think,” Jordan said.

That “Oops” Moment
Not every data breach is the work of a malicious insider, of course. Organizations have a harder time protecting data from well-meaning employees who unintentionally expose information or systems to risk. Well-meaning vendors can also slip and disclose data accidentally.

“Insider threats aren’t just your employees,” Michael Dent, Chief Information Security Officer, Fairfax County, Va., said. “They also are your contractors, your vendors, your volunteers, potentially, that come in and work for you. We had a vendor who took data from the county on a USB, very innocently… and he ended up exposing some county data for over two years on an unsecured file share from his company.”

In fact, 22 percent of data breaches last year resulted from employees accidentally making data public, while only 8 percent were the result of insider theft, according to Symantec’s 2015 Internet Security Threat Report.

Jordan calls unintentional data breaches “a huge learning opportunity.”

Where to Start?
The public sector has a long way to go to build mature insider threat programs, Steve Smith, Insider Threat Program Coordinator at the U.S. Department of State.

“We’re nowhere near where we need to be,” said Smith.

Organizations that want to build an insider threat program should focus on what data they want to protect and then put the technology in place to keep it safe, said Jadhwani. That includes encrypting it and using two-factor authentication.

Institutions then need to understand which employees have access to the data that requires protection.

“Look at your privileged users,” said Jadhwani. “See what they are doing. Rather than waste time on who’s trying to come from outside, let’s look at where our crown jewels are, and let’s focus our attention there. I would say it doesn’t stop with technology. I have an acronym for that – BEST. ‘B’ is the background investigation, ‘E’ is employee behavior, ‘S’ is situational awareness, and ‘T’ is training. If you combine all the policy, tools, and technology together… it will work, and it will pay dividends.”

Learn more: Listen to the full discussion on insider threats, read the complete Internet Security Threat Report, or see a list of all session podcasts.

Feel like sharing something Noteworthy? Post a comment below or email me at bglanz@300brand.com.

Bill Glanz is the content director for MeriTalk and its Exchange communities. In the past 14 years, he has worked as a business reporter, press secretary, and media relations director in Washington, D.C.

Lots of people are talking about cloud computing. So listen carefully.

Even if the term is a misnomer, cloud computing is a big deal. Here’s the thing – organizations can do anything in the cloud that they can do on-premises. So why are Federal agencies still investing just a fraction of their IT budgets on cloud computing?

DevOps Trending Up
A new study by MeriTalk, “The Agile Advantage: Can DevOps Move Cloud to the Fast Lane?” helps connect the dots. Agencies want to move more quickly, and 66 percent say they need to move IT services to the cloud faster to meet mission and constituent needs. But it’s not easy. However, some Feds are beginning to see DevOps as an option.

DevOps is an approach that brings software engineering, quality assurance, and IT operations together as an integrated team to collaboratively manage the full application life cycle.

By the Numbers
Just 22 percent of Feds are very familiar with DevOps today, but 60 percent say they can see DevOps in their agency’s future.

That’s not all – 63 percent say DevOps will speed up application delivery and migration, and 68 percent see DevOps as a viable path to improve collaboration between IT development, security, and operations teams.

Speeding Up with DevOps
DevOps is about speeding up software development.

Conventional development cordons off software developers from IT operations and quality assurance. Each team does their thing serially, one after the other. DevOps speeds everything up. It’s automated and collaborative. Management consultant Accenture believes DevOps can result in a 50 percent increase in speed to market, according to its “DevOps: Services Overview.”

The Secret is Out
So here’s a question – can DevOps help agencies migrate to the cloud faster?

Maybe DevOps and cloud computing go hand in hand. Like peas and carrots, apple pie and ice cream, or B.B. King and blues (RIP, B.B.). According to the new study, Federal agencies are just starting to adopt DevOps, but the majority sees it in their future.

Read the full report about DevOps to learn more about how it can help Federal agencies.

And learn more about Federal cloud.

Is DevOps in your future?

Feel like sharing something Noteworthy? Post a comment below or email me at bglanz@300brand.com.

Bill Glanz is the content director for MeriTalk and its Exchange communities. In the past 14 years, he has worked as a business reporter, press secretary, and media relations director in Washington, D.C.

Numbers don’t lie. These numbers from Symantec’s Internet Security Threat Report are scary, but they describe what’s at stake in the never-ending fight against hackers. Last year:

• Attackers targeted five out of six large companies, a 40 percent increase over 2013
• 24 zero-day vulnerabilities were discovered
• 317 million pieces of new malware were created

That’s just the tip of the cyber threat iceberg. It all adds up to a big problem.

Making Data Count
So how does law enforcement get ahead of the attackers?

Data and analysis. One of the most important pieces of information for law enforcement in a cyber investigation is the malware, Allison Tsiumis, section chief with the Federal Bureau of Investigation’s Cyber Division, said at the Symantec Government Symposium. Malware can reveal a lot of information, so law enforcement must:

• Maintain a current inventory of known malware
• Track which malware threat groups use to carry out attacks
• Reverse engineer malware once it’s identified and contained to see how it works and what it can do

Law enforcement must also understand the TTPs of cyber criminals – their tactics, techniques, and procedures – including:

• Who the hackers target
• When they launch attacks
• How they carry out attacks
• What method they use
• What data they target

Connecting all these dots can help law enforcement identify hackers and even capture the bad guys. Understanding the questions law enforcement asks in its cyber investigations can help Federal agencies better understand how they should respond following a cyber attack.

Don’t Count Out the Good Guys
Stopping attacks and identifying the criminals isn’t easy, but methodical data collection and analysis has helped.

The FBI gathered enough data to pinpoint which unit of the Chinese People’s Liberation Army (PLA) was responsible for cyber attacks that led to charges being filed against five people in May 2014. The indictment named members of Unit 61398, which was publicly identified in 2013 as the Shanghai-based cyber unit of the PLA.

“That was really key, to be able to drill that far in with our investigation techniques to get that distinct of an identification of the threat actors. Not just the threat group, the Chinese government, but drill down to their actual location,” Tsiumis said.

The Justice Department’s indictment charged the PLA members with hacking into the networks of Westinghouse Electric, the United States Steel Corporation, and other companies. Jeff Brannigan, a special agent with the Department of Homeland Security’s Immigration and Customs Enforcement, said at the Symposium that the theft of intellectual property, like the thefts carried out by the PLA, “is a pervasive crime that is only going to grow in volume and severity.”

Jason Brown, Assistant to the Special Agent in Charge in the U.S. Secret Service’s Criminal Investigative Division, said that agency’s efforts have allowed it to determine that Russians in former Soviet states represent the leading perpetrators of cyber attacks against U.S. financial institutions.

“There are a lot of other nationalities and actors that are involved in computer crime,” Brown said at the Symposium. “The Secret Service views specifically those attacking our financial infrastructure seem to be mostly emanating from Eastern Europe or are Russian-speaking individuals.”

Listen to the full discussion on cyber intelligence, read the complete Internet Security Threat Report, or see a list of all session podcasts.

Feel like sharing something Noteworthy? Post a comment below or email me at bglanz@300brand.com.

Bill Glanz is the content director for MeriTalk and its Exchange communities. In the past 14 years, he has worked as a business reporter, press secretary, and media relations director in Washington, D.C.

Honesty is the best policy, right?

That’s why honesty has its own day – tomorrow is National Honesty Day. No lie. Funny that it comes at the end of the month that begins with April Fool’s Day. Or maybe that’s ironic…

So let’s be honest. Cyber’s all the rage. So is big data.

While some agencies are using analytics to improve cyber security, many are not, according to a new report from MeriTalk, “Go Big Security.” Or they don’t know how best to use the scads of data they collect to improve cyber security.

Numbers Don’t Lie
All agencies struggle with cyber security. They struggle with protecting data and networks. Remember this line from the White House’s annual FISMA report in February?

“Federal agencies reported nearly 70,000 information security incidents in FY 2014, up 15% from FY 2013.”

Agencies are investing in security technologies, deploying network analysis and visibility solutions, and investing in skills training for personnel. But big data isn’t among the go-to solutions.

While 86 percent of cyber security professionals in Federal, State and Local organizations believe big data analytics would significantly improve their organization’s cyber security, only 28 percent are actually leveraging big data to identify and defend against hackers.

In many cases, agencies have the data but they don’t know what to do with it. According to the report, 68 percent of government cyber professionals say their organization is overwhelmed by the volume of security data.

There’s also a strategic issue at play – 76 percent of cyber security professionals say their security team often is more reactive than proactive.

Tell Me the Truth
So what’s it all mean? Agencies remain incredibly vulnerable to cyber threats. Those threats sneak onto networks and stay there, on average, 16 days before they’re even detected, according to the report. That’s a lot of time to replicate and cause damage.

It’s time to have an honest conversation about using big data to improve cyber security.

Read the full report here, and let us know: Is your agency using big data to boost cyber security? Has it had a demonstrable impact protecting data and networks? Honestly, we really want to know.

Feel like sharing something Noteworthy? Post a comment below or email me at bglanz@300brand.com.

Bill Glanz is the content director for MeriTalk and its Exchange communities. In the past 14 years, he has worked as a business reporter, press secretary, and media relations director in Washington, D.C.