National Association of Government Contractors

Study Shows IT Security Gap for Contractors

An independent risk assessment conducted this month found that the security posture of U.S. government contractors was markedly worse than the federal agencies that use these third-party services, suggesting contractors must raise their game and bridge the gap.

The analysis, performed by security ratings firm BitSight, covered more than 120 federal agencies, and over 1,200 federal government contractors divided across six different industry sectors.  

The study found that the mean security score for each industry-segmented contractor group was at least 15 points lower than the mean security rating of the 120+ federal agencies.

The six studied contractor industry segments were: aerospace/defense, business services, health care/wellness, engineering, technology, and manufacturing.

An attached research report provided further analysis of the study, finding that almost 50 percent of the contractors earned a C grade or worse for failing to adequately adhere to the "Protective Technology" guidelines laid out by the NIST (National Institute of Standards and Technology) Cybersecurity Framework. The engineering sector fared the worst in this respect, with 61 percent of contractors grading out at C or below. (Manufacturing was the next worst industry, with 53 percent scoring a C or worse).

By comparison, only 24 percent of federal agencies scored a C or below, while 38 percent earned an A grade. None of the federal agencies received an F score.

However, federal agencies did not always come out on top: they scored worse than all but two contractor categories -- technology and aerospace/defense -- for using outdated web browsers.

« Back to News

News & Tips
Government contractor news & industry tips from a source you can trust. Sign up for our weekly updates to stay informed and get involved. Easily unsubscribe at any time.

Our Insider's Guide Series was developed as an easy-to-understand series of guides to assist you through the government procurement process.

National Association of Government Contractors
1250 Connecticut Ave NW
Suite 200
Washington, DC 20036
Phone: 202-465-3750
Toll Free: 1.800.979.NAGC
LinkedIn Facebook Twitter

FedEx Shipping Discount
Office Depot Member Program
American Express
OneMain Financial Loans
Paychex Payroll Processing
NAGC Health

Privacy Policy | Subscriber Agreement & Terms of Use | Purchase Policy | Data & Cookies
Copyright © 2004 - 2019 National Association of Government Contractors.   All Rights Reserved. Geotrust RapidSSL