recommended reading

Why are Government Contractors Cutting Their Cybersecurity Budgets?

Decorwith.me/Shutterstock.com

Government contractors reduced their spending on cybersecurity in the past year, despite several high-profile data breaches, a new survey shows.

About 52 percent of businesses reported a slight decrease in cyber spending in the past year. About 17 percent said their cyber spending increased dramatically, while 31 percent said it increased slightly, according to a new survey from contracting analysis firm Deltek.

"We're surprised that over half of the companies . . . had experienced decreased spending in cybersecurity," Deltek Vice President Kevin Plexico said during a call discussing the results. "Our best guess is that the ones that are decreasing are probably not the ones that have had breaches."

Still, about 46 percent of respondents said they had experienced some type of physical or virtual breach, according to Deltek. About 33 percent said they experienced denial-of-service attacks, 33 percent cited data breaches and 13 percent pointed to physical breaches. 

Large contractors are also cutting their overall IT budgets, Deltek found. About 60 percent of large firms -- generating $100 million to more than $1 billion in annual revenue -- decreased their IT budgets last year. Sixty-six percent of small firms, generating less than $20 million, saw an increase in IT budgets. 

That divergence between small and large firms will probably even out through 2016, the report said, because large companies said they expected a slight increase in IT spending, while smaller companies expected a decrease. 

During the call, Plexico said he was "a bit surprised" at decreasing IT budgets, because "normally, when you see companies growing . . . you sort of expect that IT budgets are going to grow along side that."

But respondents reported feeling pressure to "effectively decrease cost so that overhead cost could be recaptured in profit," he said. 

When asked about their biggest IT challenges, budget pressure and IT security were among the most frequently cited, according to Deltek.

Government contractors are diversifying beyond federal business, the report said. About 62 percent of contractors' business came from federal customers last year, the survey found. The previous year, about 427 firms reported 84 percent of their business came from federal customers. 

"Firms made it clear that they are not standing still waiting for the business environment to improve," Deltek's report said. "Companies are expanding their operations outside of federal contracting in search of higher-growth markets."

(Image via Decorwith.me/ Shutterstock.com)

Threatwatch Alert

Network intrusion / Stolen credentials

85M User Accounts Compromised from Video-sharing Site Dailymotion

See threatwatch report

JOIN THE DISCUSSION

Close [ x ] More from Nextgov
 
 

Thank you for subscribing to newsletters from Nextgov.com.
We think these reports might interest you:

  • Data-Centric Security vs. Database-Level Security

    Database-level encryption had its origins in the 1990s and early 2000s in response to very basic risks which largely revolved around the theft of servers, backup tapes and other physical-layer assets. As noted in Verizon’s 2014, Data Breach Investigations Report (DBIR)1, threats today are far more advanced and dangerous.

    Download
  • Featured Content from RSA Conference: Dissed by NIST

    Learn more about the latest draft of the U.S. National Institute of Standards and Technology guidance document on authentication and lifecycle management.

    Download
  • PIV- I And Multifactor Authentication: The Best Defense for Federal Government Contractors

    This white paper explores NIST SP 800-171 and why compliance is critical to federal government contractors, especially those that work with the Department of Defense, as well as how leveraging PIV-I credentialing with multifactor authentication can be used as a defense against cyberattacks

    Download
  • Toward A More Innovative Government

    This research study aims to understand how state and local leaders regard their agency’s innovation efforts and what they are doing to overcome the challenges they face in successfully implementing these efforts.

    Download
  • From Volume to Value: UK’s NHS Digital Provides U.S. Healthcare Agencies A Roadmap For Value-Based Payment Models

    The U.S. healthcare industry is rapidly moving away from traditional fee-for-service models and towards value-based purchasing that reimburses physicians for quality of care in place of frequency of care.

    Download
  • GBC Flash Poll: Is Your Agency Safe?

    Federal leaders weigh in on the state of information security

    Download

When you download a report, your information may be shared with the underwriters of that document.