The Defense Information Systems Agency has introduced cyber evaluation program meant to help combatant commands and federal agencies examine operational risks of missions based on a network’s current state of cybersecurity.
DISA said Wednesday the Command Cyber Operational Readiness Inspection program will assess organizations’ compliance with Defense Department directives and security orders as well as evaluate networks’ physical and traditional security posture along with potential vulnerabilities.
CCORI, an updated model of the Command Cyber Readiness Inspection process, also supports the DoD Cybersecurity Culture and Compliance Initiative.
Jimaye Sones, director of the DOD Information Networks readiness and security inspections directorate, said that site commanders of selected facilities under CCORI will receive input on their networks’ security.
“They will understand what impact the vulnerabilities found in a traditional CCRI have, in terms of the threat to their mission, if an adversary takes advantage of the vulnerabilities,” Sones added.
DISA noted it will continue to plan traditional CCRIs along with cybersecurity service provider and public key infrastructure audits at multiple DODIN sites in addition to the CCORIs.