Among the bill’s other provisions are rules designed to steel cyber defenses, improve intelligence-sharing capabilities throughout the department, implement open-source IT solutions and modernize DOD’s complex and antiquated business systems.
According to the bill, the Defense Secretary will be held responsible for developing and implementing a plan to augment DOD’s cybersecurity strategy by acquiring advanced tools for discovering and isolating intrusions and protecting DOD networks and gateways.
That section of the bill also calls for beefed up security capabilities for the Defense Information Systems Agency and the U.S. Cyber Command as well as for DOD’s host-based security systems.
DOD is to use commercial solutions for the cyber capabilities whenever possible, according to section 913 of the bill.
The NDAA includes a section titled “program in support of DOD policy on sustaining and expanding information sharing,” although in that particular section, 932, the bulk of content refers to capabilities to protect internal information and detect and prevent any personnel exporting information from classified networks or other internal security threats.
However, two other separate sections (923 and 924) do contain language targeting improved information-sharing capabilities: an open-source ozone widget framework to be facilitated by DISA, and plans for enhanced search capacity for the Defense Intelligence Information Enterprise (DI2E), used by the federal intelligence community.
via Federal Computer Week, complete article here.
Article source: http://feedproxy.google.com/~r/Fedcybercom/~3/3wSDDpfxL38/
Article source: http://feedproxy.google.com/~r/Ctolabs/~3/FZ4miHCH6hk/