DON CIO Remains Focused on DON IM/IT policy and Governance Oversight
By Capt. Damen Hofheinz - Published, July 13, 2018
It is my pleasure to be selected to serve as Director, Office of the CIO (OCIO). The DON CIO recently consolidated and reorganized. Certain functions not statutorily required to be done by the CIO were delegated to the Navy and Marine Corps. This is resulting in streamlined processes, workflow efficiency, and a leaner CIO organization. Mr. Thomas Modly, Under Secretary of the Navy, is also both the Chief Management Officer and the Chief Information Officer. Reporting to him, I am responsible for the day-to-day operations of the very capable OCIO staff.
The DON CIO's focus remains DON IM/IT policy and governance oversight, and our mission has been slightly updated to emphasize this: "Provide the policy and governance oversight to enable effective/efficient, trusted and shared IM/IT/IRM, cybersecurity, and cyber/IT workforce enterprise capabilities to support the DON, Marines, Sailors, and their mission partners."
The OCIO has retained a presence in all functions already established under the CIO, and our organization remains similar to before the reorganization. Some tasks within those functions have been delegated, and some staff were reassigned to Navy and Marine Corps where they could better support implementation.
The OCIO functional teams are:
- Cybersecurity, focusing on transition to Risk Management Framework (RMF), SECNAV level cybersecurity policy, and enterprise risk management initiatives;
- Enterprise Infrastructure, focusing on enterprise IT architecture, policy, governance, and oversight; and data center policy, governance, oversight, and resource approval;
- IT Policy Compliance, focusing on DON IT investment policy, IT budget and investment reporting, and Clinger Cohen Act compliance;
- Strategic Spectrum, focusing on spectrum policy, advocacy, and spectrum reallocation fund oversight and reporting;
- Privacy and Information Sharing, focusing on information management, Freedom of Information Act (FOIA), including FOIA Liaison, civil liberties, records management oversight, and privacy, including personally identifiable information (PII) breach reporting, reduction of the use of Social Security number (SSN) throughout the DON, and privacy impact assessments; and
- Strategic Communications, focusing on communicating DON IT policy, guidance, and initiatives across the DON through various channels including the DON CIO website, conferences, the media, and recognition through awards.
DON CIO personnel and functions transferred to other organizations include Enterprise Licensing, which moved to PEO-EIS/PMW-205 and Knowledge Management and Cyber Workforce. which moved to OPNAV N2N6G. Additionally, some DON CIO personnel transferred to help stand up the new Office of the Chief Management Officer (OCMO) and some cybersecurity personnel moved to the Navy OPNAV N2N6 and Marine Corps C4.
With a leaner staff, OCIO is participating in Navy and Marine Corps efforts to reduce costs and improve cybersecurity; transition to cloud computing; develop artificial intelligence and machine learning; reduce privacy incidents; respond to FOIA requests; increase mobility and data accessibility; and assure electromagnetic spectrum access. As the DON moves to technically advanced solutions, simple procedures – such as cyber hygiene – are our most critical deterrent against cyberattacks.