In the recent Security Innovation Network (SINET) event locked in Washington D.C lately a sober assessment in our nation’s ability to maintain an sufficient cyber defense emerged.
The condition in our cyber defense was summarized by Michael Chertoff, former Secretary from the Department of Homeland Security as he concluded that it could take “an electronic 9-11” to obtain business, consumers and governments to fortify their cyber security defenses. Essentially we’re fighting an asymmetrical war and, at the moment, we seem to be losing.
Echoing this theme, Mr. Vivek Wadhwa, a top cyber security analyst, argues, “Government simply can’t innovate quick enough to help keep pace using the threats and dynamics from the Internet or Plastic Valley’s quickly altering technologies.”
Wadhwa procedes to explain that innovative entrepreneurial technology advancements are essential however the government, correctly overwhelming dependencies on large contractors, isn’t outfitted to benefit from new and effective cyber defense technology.
Wadhwa concludes that true innovation developed through smaller sized entrepreneurial firms has been stifled by Authorities procurement practices.
The Us Government Acquisition Technique is Insufficient:
Although Wadhwa’s argument is centered on technology development only additionally, it applies equally to providers who adapt new technology to new and improving defensive tactics for example vulnerability assessment, analysis of threats and remedial action.
Since effective defense against cyber attacks is definitely an ongoing procedure for monitoring and taking coercive action, the function of services and also the cyber warrior can also be critical and outdated Federal buying patterns are equally dangerous.
A lot of the issue comes from the current buying and acquisition patterns from the government. For a long time the government has chosen over bundle needs directly into large “omnibus” or IDIQ contracts (with negotiated task orders) that favor the biggest contractors but stifle innovation and versatility. Cyber security needs are treated on the like basis with It needs which is an error.
Additionally, recent Congressional contracting “reforms” have encouraged protest actions on new contracts and task orders for new and existing contracts, producing a significant delay from the procurement process. Within the fast evolving realm of cyber security, delayed deployment of frequently obsolete technology solutions increases the chance of a effective attack.
Since these contracts are very large, they might require many amounts of approval-usually by Congress or senior administration officials. It often takes 3-four years for government to award these and effective bidders frequently need to go via a grueling “certification” tactic to get approval to bid. Proposal efforts for big bundled contracts cost huge amount of money to organize and also to lobby government officials and political leaders to be able to win.
Due to buying patterns which are slanted toward large, slower moving contractors new technology needed to satisfy the large number of cyber threats is going to be overlooked in in the future. This puts the country in danger.
Small contractors are frequently overlooked in support of large contractors who frequently use contract vehicles to supply services and solutions which are frequently outdated within the quickly altering cyber world.
Startups can’t wait this lengthy or afford the price of putting in a bid. But it’s insufficient to demonize large contractors once the real cause lies is when the federal government procures technology.
To be able to remedy this issue a change from the acquisition and procurement process is needed to level the arena for small cyber security companies: it should be made simpler for startups and small providers to bid for government contracts.
One effective method of doing this really is to unbundle the cyber needs for this acquisitions and employ more small company set asides for contract awards. Additionally protests in the General Accounting Office should be frustrated and reserved just for apparent abuses from the contracting process.
Procurement occasions ought to be reduced to several weeks instead of years some projects ought to be done in smaller sized steps so the major contractors, whose goal is frequently revenue maximization and placing unqualified bench staff, aren’t the only real ones capable of complete them.
Cyber attacks on the sensitive infrastructure and government departments have elevated considerably. We want the most recent technology and finest tools to be able to win the cyber war.
In order to learn and master cyber security in the best manner, you should look forward to having requisite cyber security training. The course should offer you with in-depth understanding on how to handle cyber security in the best manner.