The Defense Department is not lacking when it comes to vocabulary around cybersecurity. But cyber leaders, especially from the Army, would like to see more shared use of that vocabulary and cross-domain implementation.
Maj. Gen. Matthew Easley, director, cybersecurity and chief information security officer, and the Army’s chief information officer, said it is key for cybersecurity professionals use the five functions of “identify, protect, detect, respond and recover,” as they communicate with each other, stakeholders, executives and industry.
“One of my personal opinions is we have enough frameworks: We have the risk management framework, we have the cybersecurity framework, we have the zero trust framework that I will get into later in the talk,” he said during a hybrid event hosted by FCW last week. He said in his building, at least, they don’t talk about the cybersecurity framework enough and it takes an executive-level decision-making to prepare an organization’s enterprise for it.
The president’s May executive order on cybersecurity was a turning point in the way agencies evaluate their…
