Email this Article Email   

CHIPS Articles: All-Hands Approach Required for Cybersecurity

All-Hands Approach Required for Cybersecurity
By Ashley Nekoui, Naval Information Forces West Public Affairs - April-June 2016
SAN DIEGO (NNS) -- One only needs to look through current headlines to understand the security threats of cyberspace. From information and identity theft, to cyber-espionage, to the hazards of "insiders", either malicious or unintentional, Navy networks afloat and ashore are at risk.

Cyberspace is particularly difficult to secure due to a variety of factors including the ability of malicious actors to operate from anywhere in the world, the linkages between cyberspace and physical systems, and the difficulty of reducing vulnerability and consequences in complex cyber networks.

The Navy is focused on preventing access, protecting vital information and securing freedom of movement within cyberspace for warfighters. Naval Information Forces, the Navy's Information Warfare (IW) type command, is aiding in this effort.

"NAVIFOR's mission is unique among the TYCOMs," said NAVIFOR's Commander Rear Adm. Matthew J. Kohler. "While we have traditional assignments, train and equip readiness responsibilities for afloat units, NAVIFOR is also responsible for the readiness of IW commands ashore as well as readiness of more than 64 operational shore commands with operational control to these units."

An all-hands approach is necessary to safeguard the Navy's networks; several organizations and agencies work together in a concerted approach concerning cyber defense. As part of NAVIFOR's MT&E responsibility, training and assist visit (TAV) teams are dispersed throughout the world to review the cyber defenses being utilized by commands to protect their networks.

The TAV visits are part of a three-stage process in support of the Navy's Cyber Security Inspection and Certification Program (CSICP).

CSICP is the Navy's process of formally inspecting afloat and ashore information assurance posture based on Department of Defense, Department of the Navy, DISA and National Institute of Standards and Technology standards. This program ensures the health and security of Navy networks and connected combat systems.

NAVIFOR administers the second-stage of this review, training commands on how to ensure compliance with cybersecurity standards, enhancing cybersecurity culture and providing an assessment on where the command currently stands before their final review under CSICP.

Current headlines highlight the security threats of cyberspace. From information and identity theft, to cyber-espionage, to the hazards of "insiders", either malicious or unintentional, Navy networks afloat and ashore are at risk.

It's important to remember that cyber threats reach beyond traditional information technology networks to systems that affect nearly every aspect of the Navy's mission.

A successful cyber-intrusion anywhere in the Navy increases the risk that adversaries can move to other targets. Therefore, a mistake by one individual puts everyone and the mission at risk. Adhering to cybersecurity policies, directives, and best practices requires an all-hands approach to protect the Navy and the mission.

For more news from Navy Information Dominance Forces, visit www.navy.mil/local/navidfor/

Related CHIPS Articles
Related DON CIO News
Related DON CIO Policy

CHIPS is an official U.S. Navy website sponsored by the Department of the Navy (DON) Chief Information Officer, the Department of Defense Enterprise Software Initiative (ESI) and the DON's ESI Software Product Manager Team at Space and Naval Warfare Systems Center Pacific.

Online ISSN 2154-1779; Print ISSN 1047-9988
Hyperlink Disclaimer