FBI's cyber challenge exceeds its bandwidth
- By Derek B. Johnson
- Apr 05, 2019
The FBI is straining to adapt to a "new normal" where significant elements of most criminal and counterintelligence investigations are increasingly carried out online, pushing the limits of the bureau's resources.
Addressing growing threats from nation-state hackers, dismantling botnets and fighting ransomware and distributed denial-of-service attacks is stretching the organization's technical resources , FBI Director Christopher Wray told appropriators at an April 4 budget hearing.
On top of that, the FBI's role assisting under-resourced state and local governments and private-sector companies has steadily grown as policymakers gain greater appreciation of how successful cyberattacks can have cascading consequences across different sectors and industries.
"Make no mistake, it is a significant challenge, and it exceeds the bandwidth that we have at the moment," Wray told the House Appropriations subcommittee on Commerce, Justice, Science and Related Agencies.
The bureau is requesting an additional $70.5 million to enhance information-sharing abilities and augment its current cyber tools and capacities, as well as add 33 positions. That's on top of its current funding of $452 million in salaries and expenses on 1,981 employees for cyber-related investigations, according to its latest budget request.
Wray said 25 new positions would be primarily dedicated to data analysis, a growing need as criminal investigations increasingly come with significant cyber or digital evidence components. The sheer amount of data the bureau must ingest, process and analyze has exploded over the past few years, and Wray indicated those trends will only continue upward in the future.
That reality creates resource constraints for the FBI, which has struggled to retain its top cyber talent and often can't compete with the higher salaries available to younger, up-and-coming IT security professionals in the private sector. The recent partial government shutdown that left Department of Justice employees without a regular paycheck for five weeks also did no favors to the bureau's recruiting pitch.
Wray highlighted the importance of training programs designed to "improve the median proficiency" of the bureau's existing workforce in IT and computer security fundamentals so that its cybersecurity "black belts" can focus on larger threats, like nation-state hacking groups.
He also said the bureau will need to improve coordination with other sectors, arguing that closer partnership and collaboration with the private sector is more important for cyber crime than any other area the FBI works in.
"There is a swath of cyber-enabled criminal activity that is affecting businesses that is essentially below the level of the most sophisticated stuff that the feds take on but is above the level that currently is in the range of most state and local law enforcement," said Wray.
This same week, the DOJ inspector general reported that errors and inconsistencies stemming from poor data management practices have prevented the bureau from promptly notifying private-sector companies when they are victims of cyber intrusions.
This article was first posted on FCW, a sibling site to GCN.
Derek B. Johnson is a former senior staff writer at FCW.