Defense

DOD watchdog lists top 10 challenges for 2017

Shutterstock image (by alienant): An aerial view of the pentagon rendered as a vector. 

The Department of Defense Office of Inspector General has released its 2017 Oversight Plan that outlines 10 areas of focus, including cyber.

"Increasing Cyber Security and Cyber Capabilities" is one of the DOD's performance and management challenges the watchdog will audit in 2017, along with other areas such as acquisition, countering the terrorist threat and force readiness.

"The DOD OIG identified these challenges based on our oversight work, research, and judgment; oversight work done by other components within the DOD; input from DOD leaders; and oversight projects by the Government Accountability Office," the report states. "While we solicited input from the DOD, we identified these challenges independently."

"The DOD continues to face significant challenges in protecting and securing its networks, systems, and infrastructure from cyber threats and in increasing its overall cyber capabilities," according to OIG, despite some strategic progress from Cyber Command.

The report reiterates what top Pentagon officials have been saying throughout 2016:  cyber threats to the DOD continue to increase, and nation states such as Russia, China, Iran and North Korea are investing heavily in "sophisticated campaigns to penetrate and compromise DOD's networks."

Last week, the DOD OIG released a summary report of 21 audits conducted between Aug. 1, 2015, and Jul. 31, 2016. That report made 61 specific recommendations the DOD needs to take to improve cybersecurity. Those recommendations were added to 138 outstanding items from previous audits.

The coming year will bring more than 12 tech-related audits covering the defense of DOD networks, developing cyber capabilities and infrastructure, cyber offensive and defensive operations, and building and retaining the cyber workforce.

The audits will drill down on specific topics such as implementation of the Joint Information Environment, physical access controls, security controls over contractor systems, insider threat programs and cyber threat indicator sharing.

The Oversight Plan states that DOD continues to face challenges "in developing or acquiring unique cyber capabilities to conduct defensive and offensive operations."

The report also says that DOD does not have "an effective cloud computing implementation strategy or process to collect data and measure the effectiveness and efficiency of the DOD cloud initiative."

The DOD did not have any comment on the OIG Oversight Plan.

About the Author

Sean Carberry is a former FCW staff writer who focused on defense, cybersecurity and intelligence.


Featured

  • Cybersecurity

    DHS floats 'collective defense' model for cybersecurity

    Homeland Security Secretary Kirstjen Nielsen wants her department to have a more direct role in defending the private sector and critical infrastructure entities from cyberthreats.

  • Defense
    Defense Secretary James Mattis testifies at an April 12 hearing of the House Armed Services Committee.

    Mattis: Cloud deal not tailored for Amazon

    On Capitol Hill, Defense Secretary Jim Mattis sought to quell "rumors" that the Pentagon's planned single-award cloud acquisition was designed with Amazon Web Services in mind.

  • Census
    shutterstock image

    2020 Census to include citizenship question

    The Department of Commerce is breaking with recent practice and restoring a question about respondent citizenship last used in 1950, despite being urged not to by former Census directors and outside experts.

Stay Connected

FCW Update

Sign up for our newsletter.

I agree to this site's Privacy Policy.