Thomas Sasala, chief technology officer of the U.S. Army’s Information Technology Agency, has called analytics an important tool for cyber incident investigations across Defense Department networks, FCW reported Wednesday.
Sasala told an FCW-sponsored event in Washington that a signature-based security system has become a challenge for DoD in work to identify network irregularities, Sean Lyngaas reports.
“The system is not smart enough to know and look for abnormal behavior,” Sasala said.
He added that existing perimeter defense methods are out-of-date as data is distributed across DoD networks via mobile devices, according to the report.
“Our attack surface is bigger than we want it to be and in some cases, it’s completely unknown how big it is in reality,” Sasala said.