Home / DoD / DoD Study Examines Compliance of Small, Large Firms With Cyber Standards; Kevin Fahey Quoted

DoD Study Examines Compliance of Small, Large Firms With Cyber Standards; Kevin Fahey Quoted

Kevin Fahey
Kevin Fahey

A recent Department of Defense study says small and large contractors are struggling to comply with DoD’s new cybersecurity standards, Defense One reported Monday.

“For the most part, the big companies do very well,” Kevin Fahey, assistant defense secretary for acquisition, told reporters at the Pentagon Monday. “But in no case do they meet everything that they thought they met.”

Fahey also mentioned the risk of cyber threat facing small subcontractors, which are receiving large volumes of data from large companies. “The biggest part of our training and the problem is that our adversaries don’t try to come in through the big companies, they come in through the fifth-, sixth-tier. If you’re flowing down information they don’t need, then that’s bad. That’s where we’re seeing our biggest problem,” he added.

Jason Timm, assistant vice president for national security policy at the Aerospace Industries Association, said firms are having difficulty meeting security standards in FIPS-validated encryption and multifactor authentication, among other areas.

Check Also

Navy Chief Adm. Michael Gilday Asks for Higher Budget to Pursue Plans

Adm. Michael Gilday, chief of naval operations, said the U.S. Navy needs a higher budget to comply with the Trump administration's demands, Defense News reported Tuesday. He said at the Surface Navy Association's annual symposium that the service branch's Columbia-class submarine program has been taking too much a percentage of the budget.