(U)Assessments and Evals Cyber Vulnerabilities

Abstract

This effort provides an OT&E approach to protect Marine Corps critical Cyber information and intelligence through vulnerability evaluations of all major DoD weapons systems and critical military installations; as directed by Section 1650 of Public Law 114-328 (NDAA for FY2017) and Section 1647 of Public Law 114-92 (NDAA FY2016). This will be accomplished through protection, detection, response, restoration, remediation, and mitigation. Testing and evaluation will be completed at Marine Corps facilities and Government Labs, to include the Marine Corps Cyber Range, Naval Air Systems Command (NAVAIR) and Marine Corps Tactical Systems Support Activity (MCTSSA). Sec. 1647 of the FY16 NDAA directs the Secretary of Defense to complete an evaluation of the cyber vulnerabilities of each major weapon system of the Department of Defense by not later than December 31, 2019. Funded vulnerability assessments will build upon existing efforts regarding the identification and mitigation of cyber vulnerabilities of major weapons systems, and shall not duplicate similar ongoing efforts such as Task Force Cyber Awakening or conduct redundant assessment on systems that have already been evaluated. Sec. 1647 assessment will be formalized in Vulnerability Assessment Reports (VARs), Cyber Table Top Exercises (CTTXs), Cyber Risk Analysis (CRAs) and other reporting. Sec. 1650 of the FY17 NDAA directs the Secretary of Defense to submit a plan for assessing the cyber vulnerability of critical defense infrastructure and begin assessment of this infrastructure during a preliminary pilot program that will assess no fewer than two installations by December, 31 2019. Assessments will end in 2020 with the submission of the final report. Strategies mitigating the risk of cyber vulnerabilities should be identified during the course of evaluation.

Open PDF

Document Details

Document Type
R2 Budgetary Justification
Publication Date
Oct 01, 2020
Source ID
0606942M_6_1319_PB_2020
Change Summary Explanation
Service Agency Name
Navy

Entities

Organizations

  • United States Navy

Tags

DTIC Thesaurus Topics

  • Acquisition
  • Cyber Threats
  • Department Of Defense
  • Detection
  • Governments
  • Infrastructure
  • Law
  • Marine Corps
  • Marine Corps Facilities
  • Risk
  • Risk Analysis
  • Situational Awareness
  • Task Forces
  • Test And Evaluation
  • Vulnerability
  • Weapon Systems
  • Weapons

Readers

  • Cybersecurity.
  • Defense Acquisition Program Management

Technology Areas

  • Cyber

Related Documents