Federal cyber security professionals lack confidence in the United States’ Federal Information Security Management Act (FISMA), a new study shows.
Just 22 percent of respondents said their cyber security solutions are sufficient and sustainable, according to the report published by MeriTalk and underwritten by NetApp. In terms of attacks over the past year, 64 percent of agencies said insiders targeted them.
When it comes to data breaches, 21 percent of agencies are unable to determine the source of a breach.
Fifty-three percent of respondents said FISMA led to improved security at their agency. However, 86 percent said compliance resulted in increased costs.
Eleven percent of respondents said FISMA is an “antiquated law,” while 21 percent said it’s not enough to deal with today’s sophisticated cyber threats, and 28 percent see it as encouraging compliance rather than risk identification and assessment.
“FISMA’s compliance model is not keeping up with the evolving security landscape or the security demands,” said Mark Weber, president of NetApp U.S. Public Sector.
There is no doubt networks and the amount of data that’s passing through them continue to grow, with 35 percent of respondents saying they experiencing slower network connections because of the growing amount of data. In addition, 32 percent are experiencing challenges in handling the data in real time.
The complete “FISMA Fallout: The State of the Union” report is available on MeriTalk’s website, registration required.