安德鲁·埃弗斯登

美国国土安全部(DHS)希望建立一个内部组织,专门负责协调DHS中的网络安全工作并确定共同的优先事项。

在2021财年预算请求中,美国国土安全部要求国会拨款260万美元,以建立联合网络协调小组(JCCG)。该小组将有六名全职雇员,并将被设置在政策、战略和计划办公室(PLCY)下。美国国土安全部的国会辩护说,它之所以需要这个组织,是因为不断扩大的技术和网络威胁使任何一个组成部分都难以管理“相关风险的所有方面”。

根据美国国土安全部提交的预算文件,联合网络协调小组(JCCG)将提供一个“中心位置”,美国国土安全部(DHS)各部门的常驻员工和代表可以“同步”网络活动。目前,美国国土安全部“缺乏足够的机制来制定,计划和执行整个战略业务重点组成并协调长期防护和威慑力量以应对网络风险。”美国国土安全部官员在文件中写道。

“缺乏这样的协调机构会损害美国国土安全部部长的政策和运营决策,并且无法确保全面了解所有部门的权限,能力和资源,从而使各部门可以采取战略行动应对优先的国家网络和技术风险。”

通过联合网络协调小组(JCCG),美国国土安全部内的各部门可以协调运营计划,风险评估,调查,利益相关方参与,技术部署和国际参与。

美国国土安全部的预算官员写道:“这还将使国土安全部能够评估和执行美国国防部的权力和能力,以应对关键基础设施面临的紧迫网络风险以及外国对手为获取或支配某些新兴技术所做的努力所带来的风险。联合网络协调小组(JCCG)将确保对其他机构间工作进行协调,综合的投入,以积极应对这些风险并阻止对手行动者。”

根据美国国土安全部的预算文件,政策、战略和计划办公(PLCY)将指导“战略方向和优先事项”,并与业务协调办公室及其他部门合作,以进一步制定人员编制和业务计划。

美国国土安全部是负责网络安全的主要民政机构。其网络安全和基础设施安全局除协助各州进行选举安全工作外,还负责保护关键基础设施和联邦民用网络免受网络攻击。它还与私营企业和情报界共享信息。

Homeland Security wants a new cyber coordination group

The Department of Homeland Security wants to establish an internal organization dedicated to coordinating cybersecurity efforts across DHS and identifying joint priorities.

In its fiscal 2021 budget request, DHS asked Congress to allocate it $2.6 million to create the Joint Cyber Coordination Group. The group would have six full-time employees and be housed under the Office of Policy, Strategy and Plans (PLCY). DHS’ congressional justification say that it needs the group because expanding technological and cyberthreats make it difficult for any one component to manage “all aspects of associated risk.”

According to budget documents, the JCCG would provide a “central location" where permanent staff and representatives from across DHS components can “synchronize” cyber activities. Currently, the department “lacks sufficient mechanisms to develop, plan for, and execute strategic operational priorities across Components and coordinate long-term protective and deterrent efforts to counter cyber risks," officials wrote.

“The absence of such a body impairs policy and operational decision-making by the secretary and the ability to ensure full visibility into all components’ authorities, capabilities, and resources to inform strategic actions by the department to address prioritized national cyber and technology risks."

Through JCCG, components can coordinate on operational planning, risk assessments, investigations, stakeholder engagement, technical deployments and international engagements.

“It will also enable DHS to evaluate and execute authorities and capabilities across the Department to address pressing cyber risks to critical infrastructure and risks posed by foreign adversaries’ efforts to acquire or dominate certain emerging technologies," budget officials wrote. "The JCCG will ensure coordinated, integrated input into other interagency efforts to aggressively counter these risks and deter adversary actors.”

According to budget documents, PLCY will direct the “strategic direction and priorities" and work with the Office of Operations Coordination and other components to further develop staffing and operational plans.

DHS is the lead civilian agency for cybersecurity. Its Cybersecurity and Infrastructure Security Agency is responsible for protecting both critical infrastructure and federal civilian networks from cyberattacks — in addition to assisting states with election security efforts. It also shares information with private industry and the intelligence community.

声明:本文来自网电空间战,版权归作者所有。文章内容仅代表作者独立观点,不代表安全内参立场,转载目的在于传递更多信息。如有侵权,请联系 anquanneican@163.com。