Dana Deasy: DoD Planning to Evaluate Suppliers’ Cybersecurity Self-Checks

Dana Deasy, chief information officer of the Department of Defense, told the Senate Armed Services Committee that the Pentagon plans to conduct assessments of cybersecurity self-evaluation among defense suppliers, Federal News Network reported Wednesday. According to Deasy, the proposed new procedure will have the DoD evaluate vendors’ cybersecurity self-checks and give “confidence scores” on these assessments.

The CIO added that the Pentagon is also looking into using emerging technologies and enlisting the help of third-party companies to handle secondary assessments. 

In 2017, DoD mandated contractors to conduct self-assessments on compliance with the National Institute of Standards and Technology cybersecurity standards. The department doesn't conduct evaluations on whether the firms accurately interpreted the security of their own systems. Deasy noted the effort to develop new cybersecurity procedures will be managed by the DoD’s office of the undersecretary for acquisition and sustainment.

The National Defense Authorization Act of 2019 has directed supply chain companies and academic entities to ramp up their efforts to thwart cyberattacks in their systems.

You may also be interested in...

Dr. Stacey Dixon

NGA to Increase Opportunities for Neurodiverse Workforce; Dr. Stacey Dixon Quoted

The National Geospatial-Intelligence Agency (NGA) will strive to increase workforce opportunities for neurodiverse individuals. NGA launched its Neurodiverse Federal Workforce pilot program in Dec. 2020. The agency will foster partnerships with MITRE and Melwood to provide jobs for people with disabilities. "NGA mission success is contingent on a world-class workforce with a wide diversity of opinions and expertise,” NGA deputy director and 2020 Wash100 Award recipient Dr. Stacey Dixon