Government // Cybersecurity
News
12/17/2013
09:50 AM
Connect Directly
RSS
E-Mail
50%
50%

What All That NSA Intelligence Costs

Intelligence agencies spend three times more of their budgets on IT than average government agencies, says IDC report.

Government intelligence agencies devote about 15% of their annual budgets to IT -- nearly three times more than civilian agencies -- to support their missions, according to a new IDC Government Insights report. The National Security Agency (NSA) is believed to be spending twice that amount, or more than 30%. 

While intelligence spending by the federal government is expected to rise by 18.8%, or about $9.5 billion, between 2013 and 2017, the IT portion of intelligence budgets is expected to grow by up to 33.6%, the report predicted. The majority of this spending will go toward additional data collection technologies and flexible, large-scale computing platforms.

The report, "Perspective: The U.S. Intelligence Budget Landscape — With IT Segmentation and Five-Year Forecast," released Dec. 11 and available for a fee, estimates that government agencies spend an average of 4.5% to 6.7% of their total annual budgets on IT products and services. The numbers are higher for intelligence agencies, since they have more need for information and data gathering technologies.

The Central Intelligence Agency spends the most of any spy agency; it requested $14.8 billion for 2013 -- nearly 70% more than the NSA, according to the report.

[Presidential advisers say government cybersecurity isn't pretty. Learn Why Fed Cybersecurity Reboot Plan Fails To Convince.]

Together, the CIA, NSA, and National Reconnaissance Office (NRO) get more than 68% of the "black" budget, which refers to the government's top-secret intelligence budget. Nearly a fourth of the government's black budget is devoted to IT products and services.

Spending by agencies just for IT security is also expected to rise, according to a second report released the same day by IDC Government Insights. IT security spending will rise from $5.9 billion in 2012 to more than $7.3 billion in 2017, or an average of about 4% per year, according to the report, "Business Strategy: U.S. Federal Government IT Security Spending Forecast and Market Outlook."

The new forecasts are based in part on documents leaked earlier this year by former NSA contractor Edward Snowden that included details on the US intelligence community's spending. The budget figures from one of those documents, called "Fiscal 2013 Congressional Budget Justification Book," show that the US budgeted $52.6 billion in fiscal 2013 to support the operations of 16 intelligence agencies. This included $14.7 billion for the CIA, $10.8 billion for the NSA, and $10.3 billion for the NRO.

The IDC Government Insights report suggests that 22.5% of the government's black intelligence budget covers IT solutions.

Photo: CIA
Photo: CIA

"For the intelligence agencies, the biggest surprise is the amount of funding needed to support the intelligence facilities and to collect data," Shawn McCarthy, IDC Government Insights research director and author of the report, told us in an email.

While IT security spending continues to climb steadily, investment patterns vary by agency, depending on existing legacy systems and what improvements need to be made.

"Many agencies are reviewing how their move to cloud-based solutions might affect their overall IT security posture, and many are finding that unified threat management (UTM) solutions are becoming increasingly popular," McCarthy said. IDC anticipates that "federal UTM spending will rise from $213.8 million in 2012 to over $541.4 million in 2017."

Most IT security spending goes toward staff salaries -- as much as 85% to 91%, McCarthy noted. That's because security scanning and proactive defense efforts require substantial amounts of manpower to set configurations and make decisions when threats are detected.

"For general IT security, the story is somewhat similar. IT infrastructure maintenance is the top security-related line item at many agencies. This shows that keeping systems in good condition, with the proper patches and software updates in place, is key to keeping systems secure," McCarthy said.

When it comes to long-term growth for security spending, the report forecasts that staffing will grow to $6.2 billion by 2017; firewall spending will increase to $249.6 million; intrusion detection and prevention will rise to $226.3 million; and virtual private network spending will grow to $80.9 million.

Elena Malykhina has written for The Wall Street Journal, Scientific American, Newsday, and AdWeek. She covers the federal government, including NASA's space missions, for InformationWeek.

The NSA leak showed that one rogue insider can do massive damage. Use these three steps to keep your information safe from internal threats. Also in the Stop Data Leaks issue of Dark Reading: Technology is critical, but corporate culture also plays a central role in stopping a big breach. (Free registration required.)

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
Laurianne
50%
50%
Laurianne,
User Rank: Author
12/17/2013 | 10:39:23 AM
30 Percent IT spend
30% of NSA annual budget on IT? That would make even Wall St. CIOs green with envy. I wonder if most taxpayers comprehend how much money we are talking about here.
Whoopty
50%
50%
Whoopty,
User Rank: Ninja
12/17/2013 | 11:10:49 AM
Re: 30 Percent IT spend
Pretty disgusting that so much money is going into surveillance that most people who understand its extent are completely against and very uncomfortable with. However, I'd question how accurate these reports could be considering the NSA has been able to keep every aspect of its surveillance under wraps. There's no doubt extra budgets that are totally off the books. 
WKash
50%
50%
WKash,
User Rank: Author
12/17/2013 | 7:11:38 PM
Re: 30 Percent IT spend
Actually, the accuracy of the reports seem fairly on target, based on the data Snowden leaked.  A breakdown published by the Washington Post showed NSA, in fiscal 2013, spent:

$10.8 Billion - Agency overall

$1.59 B on Enterprise IT Systems

$1.02 B on computer network operations

$1.00 B on crytanalysis and exploitation services

$0.65 B on data analysis

What was stunning about the Snowden leaks was how much of the Black Budget came into the light.
VistaSierra
100%
0%
VistaSierra,
User Rank: Apprentice
12/19/2013 | 9:37:17 PM
NSA Stupidity Community
The concept of Snowden as a IT/Admin with access to 250,000 documents is absurd. If the NSA cannot read basic IT/Security textbooks, then the NSA is a Stupidity Community of idiots. The global IT industry needs a real and immediate NSA shutdown or reboot to restore trust in the Free and Open Internet.
Cyber Security Standards for Major Infrastructure
Cyber Security Standards for Major Infrastructure
The Presidential Executive Order from February established a framework and clear set of security standards to be applied across critical infrastructure. Now the real work begins.
Register for InformationWeek Newsletters
White Papers
Current Issue
InformationWeek Government Tech Digest Oct. 27, 2014
To meet obligations -- and avoid accusations of cover-up and incompetence -- federal agencies must get serious about digitizing records.
Video
Slideshows
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
A roundup of the top stories and community news at InformationWeek.com.
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.