Priya Patel
TLDR:
- The DoD launched a new Cyber Operational Readiness Program called CORA to measure cyber readiness
- The program focuses on shifting from compliance to operational readiness, supporting network defense
The Department of Defense (DoD) has officially launched a new Cyber Operational Readiness Assessment (CORA) program after a successful nine-month pilot effort. Led by the Joint Force Headquarters-Department of Defense Information Network (JFHQ-DoDIN), the CORA program aims to measure the cyber readiness of the main network defense command by focusing on operational readiness rather than compliance.
Lt. Gen. Robert Skinner, commander of JFHQ-DoDIN, emphasized the importance of CORA in understanding cyber readiness by considering risk factors such as access control, anomaly detection, and adapting to adversary threats. The program will assist commanders in strengthening the posture and resiliency of the DoDIN by enhancing proactive defense measures.
The CORA team has developed key indicators of risk to prioritize cybersecurity efforts and will focus on securing network perimeter devices, public-facing assets, and systems with external interfaces. The new CORA model is designed to be agile, allowing adjustments in response to new orders, policies, or threat landscape changes.
Overall, the CORA assessment is expected to provide commanders with a more precise understanding of their cyber terrain, leading to better command and control decisions. This shift towards operational readiness is a crucial step in enhancing the cyber defense capabilities of the DoD.
