Federal agencies must meet a number of security requirements that private firms are not held to, a higher bar that could impede the performance of their networks, information technology executives told policymakers Nov. 19.

Both the Federal Information Security and Management Act (FISMA) and National Institute for Standards and Technology (NIST) rules call for federal agencies to enhance their network security and continuously monitor their network traffic.