Deputy Chief Information Officer for Cyber Security – which is also the Chief Information Security Officer or CISO
for the Department of Defense – is responsible for ensuring that the Department has a well-defined and well-executed cyber security program. This organization is also responsible for coordinating cyber security standards, policies, and procedures with other federal agencies, coalition partners, and industry.
DCIO CS oversees Cybersecurity Strategy, Policy, and Workforce, including technology innovation and the Risk Management Framework, as well as Cybersecurity Implementation and Acquisition Integration, such as acquisition oversight; identity and access management, or IDAM; and lifecycle risk management, standards, and integration. It also oversees efforts to improve Defense Industrial Base cyber security.
This organization focuses on advancing cyber basics and improving cyber defenses, which are two of DoD CIO’s top priorities. DoD is getting better at cyber basics by transitioning from passwords to more secure means of granting access, ensuring the patching is up to date, and cleaning up operating systems. And DCIO CS is improving cyber defenses on its networks through means such as secure configuration, fast patching, and web-content filtering. The top objective of DCIO CS is to ensure successful mission execution in the face of cyber warfare by a capable adversary.