Team Infidel
Forum Spin Doctor
Wall Street Journal
March 18, 2009
Pg. 4
By August Cole and Siobhan Gorman
WASHINGTON -- The biggest U.S. military contractors are counting on winning billions of dollars in work to protect the federal government against electronic attacks.
U.S. agencies from the Pentagon to the Department of Homeland Security have experienced major cyber-break-ins in recent years, even into classified systems. Cyberspies also have siphoned off critical data from Pentagon contractors, including one breach that cost a major aerospace contractor $15 million.
Intelligence officials estimate annual U.S. losses from cyber breaches to be in the billions of dollars, and some worry that cyber attackers could take control of a nuclear power plant or subway line via the Internet -- or wipe out the data of a major financial institution.
Anticipating the demand, defense companies are bolstering training, buying smaller firms and hiring former top government officials. The move into the cyber-security field could offer new revenue streams for the contractors and help offset declines stemming from budget pressures on the Defense Department's traditional weapons systems.
Last year the Bush administration launched a major cyber-security initiative, and 2009 spending is expected to reach $6 billion. Details are classified, but depending on the outcome of a 60-day White House review due next month, people familiar with the effort say spending could range from $15 billion to $30 billion in the next five years.
Major defense firms are eager to get a slice of that pie. But some in the government are worried these firms don't have the necessary expertise and that the ramp-up in spending is a recipe for waste and inefficiency.
"My concern and the concern of a lot of people in the government is: Are we going to dump money like we did after 9/11, or are we going to get something for the money we spend?" said one senior intelligence official. "You're getting people who are not necessarily viewed as experts [in cyber-security] running divisions of these companies."
Northrop Grumman Corp. Chairman and Chief Executive Ronald Sugar made his case in an open letter to President Barack Obama this month, writing, "America's defense industry has heavily invested in the tools, techniques and human talent to address this problem."
In August, aerospace giant Boeing Co. hired Barbara Fast, a former senior Army intelligence officer who worked at the National Security Agency, to focus on cyber issues. Ms. Fast is consolidating the capabilities that Boeing has developed to protect its own massive network into a new division.
Lockheed Martin Corp., the top Pentagon contractor and largest government information-technology provider by sales, is constructing a new cyber-security facility at its main network hub in Gaithersburg, Md.
Some intelligence officials worry the government's clunky contracting system will end up awarding contracts to familiar big companies that lack the highly skilled technicians who gravitate toward smaller firms. Contractors also need to watch their own network security, said Tom Kellermann, a vice president at Core Security Technologies, citing a Verizon report last year that found 39% of cyber breaches implicated contractors and other third parties.
"You can't put an IT person out there who doesn't understand the threat or second- and third-order effects," said Bill Swanson, chairman and CEO of Raytheon Co. Raytheon's recent acquisitions, such as Oakley Networks in 2007 and SI Government Solutions in 2008, bolster its cyber capabilities.
Foreign firms are also trying to edge into the marketplace. Europe's biggest defense contractor by revenue, BAE Systems PLC, bought information security firm Detica Group PLC for $1.06 billion in July. It also recently hired a top Bush White House cyber-security official, Marie O'Neill Sciarrone.
As these big defense firms push further into this territory, they are bumping up against consulting firms.
Booz Allen Hamilton has worked in the cyber-security field for more than a decade. One of its senior executives, Mike McConnell, led the National Security Agency and was also director of national intelligence in the Bush administration. He continues to serve on the president's Intelligence Advisory Board. And Deloitte Consulting recently recruited Billy O'Brien, who helped draw up the Bush administration's cyber policy.
March 18, 2009
Pg. 4
By August Cole and Siobhan Gorman
WASHINGTON -- The biggest U.S. military contractors are counting on winning billions of dollars in work to protect the federal government against electronic attacks.
U.S. agencies from the Pentagon to the Department of Homeland Security have experienced major cyber-break-ins in recent years, even into classified systems. Cyberspies also have siphoned off critical data from Pentagon contractors, including one breach that cost a major aerospace contractor $15 million.
Intelligence officials estimate annual U.S. losses from cyber breaches to be in the billions of dollars, and some worry that cyber attackers could take control of a nuclear power plant or subway line via the Internet -- or wipe out the data of a major financial institution.
Anticipating the demand, defense companies are bolstering training, buying smaller firms and hiring former top government officials. The move into the cyber-security field could offer new revenue streams for the contractors and help offset declines stemming from budget pressures on the Defense Department's traditional weapons systems.
Last year the Bush administration launched a major cyber-security initiative, and 2009 spending is expected to reach $6 billion. Details are classified, but depending on the outcome of a 60-day White House review due next month, people familiar with the effort say spending could range from $15 billion to $30 billion in the next five years.
Major defense firms are eager to get a slice of that pie. But some in the government are worried these firms don't have the necessary expertise and that the ramp-up in spending is a recipe for waste and inefficiency.
"My concern and the concern of a lot of people in the government is: Are we going to dump money like we did after 9/11, or are we going to get something for the money we spend?" said one senior intelligence official. "You're getting people who are not necessarily viewed as experts [in cyber-security] running divisions of these companies."
Northrop Grumman Corp. Chairman and Chief Executive Ronald Sugar made his case in an open letter to President Barack Obama this month, writing, "America's defense industry has heavily invested in the tools, techniques and human talent to address this problem."
In August, aerospace giant Boeing Co. hired Barbara Fast, a former senior Army intelligence officer who worked at the National Security Agency, to focus on cyber issues. Ms. Fast is consolidating the capabilities that Boeing has developed to protect its own massive network into a new division.
Lockheed Martin Corp., the top Pentagon contractor and largest government information-technology provider by sales, is constructing a new cyber-security facility at its main network hub in Gaithersburg, Md.
Some intelligence officials worry the government's clunky contracting system will end up awarding contracts to familiar big companies that lack the highly skilled technicians who gravitate toward smaller firms. Contractors also need to watch their own network security, said Tom Kellermann, a vice president at Core Security Technologies, citing a Verizon report last year that found 39% of cyber breaches implicated contractors and other third parties.
"You can't put an IT person out there who doesn't understand the threat or second- and third-order effects," said Bill Swanson, chairman and CEO of Raytheon Co. Raytheon's recent acquisitions, such as Oakley Networks in 2007 and SI Government Solutions in 2008, bolster its cyber capabilities.
Foreign firms are also trying to edge into the marketplace. Europe's biggest defense contractor by revenue, BAE Systems PLC, bought information security firm Detica Group PLC for $1.06 billion in July. It also recently hired a top Bush White House cyber-security official, Marie O'Neill Sciarrone.
As these big defense firms push further into this territory, they are bumping up against consulting firms.
Booz Allen Hamilton has worked in the cyber-security field for more than a decade. One of its senior executives, Mike McConnell, led the National Security Agency and was also director of national intelligence in the Bush administration. He continues to serve on the president's Intelligence Advisory Board. And Deloitte Consulting recently recruited Billy O'Brien, who helped draw up the Bush administration's cyber policy.