Welcome!

News Feed Item

Federal Agencies Work to Balance the Cyber Big Data Equation

MeriTalk, a public-private partnership focused on improving the outcomes of government IT, today announced the results of its new report, “Balancing the Cyber Big Data Equation.” The study, underwritten by Northrop Grumman, examines the symbiotic relationship between Big Data and cyber security and captures insights from 18 Federal IT Big Data and cyber security experts, in their own words, on the emerging interplay between the two disciplines. Federal experts note that Big Data presents new opportunities to enhance cyber missions, but that more security controls are needed to ensure agencies can protect data, especially as data sets grow. The report examines this two-way street and explores what agencies are doing today, how they are balancing access and risk, and what’s next as technologies and policies mature.

Experts agree there is tremendous value in the data currently segregated across the Federal government. Many agencies are in the initial stages of addressing opportunities and threats related to Big Data and cyber missions. Opportunities range from improving operational efficiency; to reducing fraud, waste, and abuse; to improving America’s health. As agencies consider these opportunities, they flag the need for risk management, enterprise architecture, and governance.

“Continuous monitoring and advanced analytics of data provide agencies with an unprecedented understanding of their networks and security posture,” said Jim Myers, vice president and general manager, Cyber Solutions division, Northrop Grumman. “This paves the way for powerful predictive capabilities in the future that will empower agencies to focus on real threats and mitigate risk.”

However, experts note that agencies lack both infrastructure and policy to enable Big Data correlation, dissemination, and protection. They point out that while existing information security principles still apply, the product of data analytics is the element that becomes more sensitive – insight versus information. As data sets grow and come together, so does the data sensitivity, and the risks of unintended consequences. Most execs note there is much work to do – including initial steps such as filtering and characterizing data. And, agencies are facing severe budget cuts, limiting their ability to evolve and take full advantage of the Big Data opportunity while also managing the associated threats.

Looking ahead, the report found that as Big Data and security infrastructures and policies evolve, agencies need dashboards that can aggregate input from different analytical tools to deliver business insight and value. Some Feds believe that “intelligent analytics” will one day reduce the need for highly trained data scientists.

To achieve success, agencies should consider information sharing from an organization and policy perspective – and at the same time, focus on the technical issues. Government-wide, agencies need a cohesive enterprise security infrastructure, coupled with a sound risk management strategy. Federal executives on the front lines recommend:

  • Consider the Full Equation: Develop a comprehensive enterprise information architecture strategy that encompasses both Big Data and cyber
  • Re-think Risk: Ensure agencies adequately classify the risk level of their data analytics capability and take appropriate steps to mitigate risks, including considering threats within and beyond perimeter borders
  • Put Data To Work: Invest in the tools to apply analytics to continuously monitor data, enabling the predictive and automated capabilities that will ultimately save time and money
  • Show Me The Money: Pilot dashboards that provide mission owners with new insights and help track the RoI for Big Data/cyber efforts

The “Balancing the Cyber Big Data Equation” report is based on qualitative interviews with 18 Federal Big Data and cyber security experts. To download the full report, please visit www.meritalk.com/Balancing-Cyber-BigData.

About MeriTalk

The voice of tomorrow’s government today, MeriTalk is a public-private partnership focused on improving the outcomes of government IT. Focusing on government’s hot-button issues, MeriTalk hosts Big Data Exchange, Cloud Computing Exchange, Cyber Security Exchange, and Data Center Exchange – platforms dedicated to supporting public-private dialogue and collaboration. MeriTalk connects with an audience of 85,000 government community contacts. For more information, visit www.meritalk.com or follow us on Twitter, @meritalk. MeriTalk is a 300Brand organization.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
In his keynote at 19th Cloud Expo, Sheng Liang, co-founder and CEO of Rancher Labs, discussed the technological advances and new business opportunities created by the rapid adoption of containers. With the success of Amazon Web Services (AWS) and various open source technologies used to build private clouds, cloud computing has become an essential component of IT strategy. However, users continue to face challenges in implementing clouds, as older technologies evolve and newer ones like Docker c...
Personalization has long been the holy grail of marketing. Simply stated, communicate the most relevant offer to the right person and you will increase sales. To achieve this, you must understand the individual. Consequently, digital marketers developed many ways to gather and leverage customer information to deliver targeted experiences. In his session at @ThingsExpo, Lou Casal, Founder and Principal Consultant at Practicala, discussed how the Internet of Things (IoT) has accelerated our abilit...
As organizations shift towards IT-as-a-service models, the need for managing and protecting data residing across physical, virtual, and now cloud environments grows with it. Commvault can ensure protection, access and E-Discovery of your data – whether in a private cloud, a Service Provider delivered public cloud, or a hybrid cloud environment – across the heterogeneous enterprise. In his general session at 18th Cloud Expo, Randy De Meno, Chief Technologist - Windows Products and Microsoft Part...
Data is the fuel that drives the machine learning algorithmic engines and ultimately provides the business value. In his session at Cloud Expo, Ed Featherston, a director and senior enterprise architect at Collaborative Consulting, discussed the key considerations around quality, volume, timeliness, and pedigree that must be dealt with in order to properly fuel that engine.
In IT, we sometimes coin terms for things before we know exactly what they are and how they’ll be used. The resulting terms may capture a common set of aspirations and goals – as “cloud” did broadly for on-demand, self-service, and flexible computing. But such a term can also lump together diverse and even competing practices, technologies, and priorities to the point where important distinctions are glossed over and lost.
When shopping for a new data processing platform for IoT solutions, many development teams want to be able to test-drive options before making a choice. Yet when evaluating an IoT solution, it’s simply not feasible to do so at scale with physical devices. Building a sensor simulator is the next best choice; however, generating a realistic simulation at very high TPS with ease of configurability is a formidable challenge. When dealing with multiple application or transport protocols, you would be...
Detecting internal user threats in the Big Data eco-system is challenging and cumbersome. Many organizations monitor internal usage of the Big Data eco-system using a set of alerts. This is not a scalable process given the increase in the number of alerts with the accelerating growth in data volume and user base. Organizations are increasingly leveraging machine learning to monitor only those data elements that are sensitive and critical, autonomously establish monitoring policies, and to detect...
Two weeks ago (November 3-5), I attended the Cloud Expo Silicon Valley as a speaker, where I presented on the security and privacy due diligence requirements for cloud solutions. Cloud security is a topical issue for every CIO, CISO, and technology buyer. Decision-makers are always looking for insights on how to mitigate the security risks of implementing and using cloud solutions. Based on the presentation topics covered at the conference, as well as the general discussions heard between sessio...
Dion Hinchcliffe is an internationally recognized digital expert, bestselling book author, frequent keynote speaker, analyst, futurist, and transformation expert based in Washington, DC. He is currently Chief Strategy Officer at the industry-leading digital strategy and online community solutions firm, 7Summits.
In his session at 20th Cloud Expo, Scott Davis, CTO of Embotics, discussed how automation can provide the dynamic management required to cost-effectively deliver microservices and container solutions at scale. He also discussed how flexible automation is the key to effectively bridging and seamlessly coordinating both IT and developer needs for component orchestration across disparate clouds – an increasingly important requirement at today’s multi-cloud enterprise.
In his session at @DevOpsSummit at 20th Cloud Expo, Kelly Looney, director of DevOps consulting for Skytap, showed how an incremental approach to introducing containers into complex, distributed applications results in modernization with less risk and more reward. He also shared the story of how Skytap used Docker to get out of the business of managing infrastructure, and into the business of delivering innovation and business value. Attendees learned how up-front planning allows for a clean sep...
In his session at @ThingsExpo, Arvind Radhakrishnen discussed how IoT offers new business models in banking and financial services organizations with the capability to revolutionize products, payments, channels, business processes and asset management built on strong architectural foundation. The following topics were covered: How IoT stands to impact various business parameters including customer experience, cost and risk management within BFS organizations.
In his session at 20th Cloud Expo, Brad Winett, Senior Technologist for DDN Storage, will present several current, end-user environments that are using object storage at scale for cloud deployments including private cloud and cloud providers. Details on the top considerations of features and functions for selecting object storage will be included. Brad will also touch on recent developments in tiering technologies that deliver single solution and an end-user view of data across files and objects...
Given the popularity of the containers, further investment in the telco/cable industry is needed to transition existing VM-based solutions to containerized cloud native deployments. The networking architecture of the solution isolates the network traffic into different network planes (e.g., management, control, and media). This naturally makes support for multiple interfaces in container orchestration engines an indispensable requirement.
Businesses and business units of all sizes can benefit from cloud computing, but many don't want the cost, performance and security concerns of public cloud nor the complexity of building their own private clouds. Today, some cloud vendors are using artificial intelligence (AI) to simplify cloud deployment and management. In his session at 20th Cloud Expo, Ajay Gulati, Co-founder and CEO of ZeroStack, discussed how AI can simplify cloud operations. He covered the following topics: why cloud mana...