DoD: Cyber Security is Each User's Responsibility
David Perera writes on FCW.com:
Securing the Defense Department's networks from attacks will require wide ranging changes to military culture, conduct and capabilities, said Air Force Gen. Kevin Chilton, commander of the Strategic Command.
The users of the networks "are making it too easy for our adversaries" to exploit weaknesses, he said before a conference on cybersecurity sponsored by Armed Forces Communications Electronics Association International.
“We know we don’t have the answers and oftentimes don’t even know what the right questions are to ask,” he said.
The military still does not have a good grasp of which machines are connected to the Secret Internet Protocol Router Network, a classified DOD intranet, Chilton said. There’s no comprehensive situational awareness of network status and incident response requires more real-time automatic intervention than exists today, he added. A culture of treating information technology as a convenience rather than an essential platform persists, despite the fact that local vulnerabilities can create global effects.
“People think that the rules don’t apply to them, for whatever reason," he said. "There are adversaries today out there who are taking advantage of that misbehavior and that lack of discipline.”