Cyber Experts Don't Put Much Stock in Security Compliance Measures

[InfoSec News <alerts () infosecnews org>]

http://www.nextgov.com/cio-briefing/wired-workplace/2013/09/cyber-pros-see-fisma-fallout/70790/

By Brittany Ballenstedt
Nextgov.com
September 25, 2013

With recent research highlighting compliance burdens as a top concern 
among IT workers, there’s little surprise in a new report that found 
federal cybersecurity professionals are putting little faith in compliance 
measures designed to improve information security and protect data.

A survey of 203 federal cybersecurity professionals by MeriTalk and NetApp 
found that respondents lack confidence in the Federal Information Security 
Management Act. Only half (53 percent) of cyber pros said FISMA has 
improved security at their agency, although just 27 percent said they are 
perfectly compliant with the law. The bulk of federal cyber workers (86 
percent) also said that FISMA compliance increases costs.

While federal agencies are facing threats from every angle, respondents 
noted that insider threats (64 percent) continue to pose the greatest 
vulnerabilities, followed by non-state actors (60 percent) and 
state-sponsored threats (48 percent).

More than half of respondents also said their agency is either overloaded 
or cannot keep up with the amount of data crossing their network today, a 
burden that’s sure to become heavier, as many expect the data their agency 
must protect to grow by 47 percent by 2015. More than two-thirds (73 
percent) believe their security solutions are not sufficient or will not 
be sufficient beyond the next year.

[...]

--
Find the best InfoSec talent without breaking your
recruiting budget! Post a Job, $99 for 31 days.
Hot InfoSec Jobs - http://www.hotinfosecjobs.com/