What Will $5 Billion in Military Cyber Spending Pay For?

A cyber protection team at work at Combined Air and Space Operations Center, Nellis Air Force Base, during the Red Flag 14-1 exercise

U.S. Air Force photo/Senior Airman Brett Clashman

AA Font size + Print

A cyber protection team at work at Combined Air and Space Operations Center, Nellis Air Force Base, during the Red Flag 14-1 exercise

The Pentagon is spending more on cybersecurity, but is it spending it in the right way? By Patrick Tucker

The Pentagon’s wants $5.1 billion for cyber operations next year, an increase of about $4 million over this year’s budget, but exactly what the military wants to buy with that money is unclear.

“There’s no set of program elements that led to this number. Maybe there needs to be, but right now there isn’t,” said outgoing comptroller Bob Hale, rolling out the Obama administration’s fiscal 2015 spending request at the Pentagon on Tuesday.

Budgeting for more cybersecurity makes sense to defense planners who argue the threat continues to grow. But how to spend that money is still very much up for debate at the Pentagon.

“The question isn’t the funding side, but figuring out the proper roles and responsibilities, especially in how the line is better set between DOD, the rest of government and private responsibilities,” said Peter Singer, director of the Center for 21st Century Security and Intelligence at the Brookings Institution. Though that’s not a new worry, either.

“We haven’t yet gotten to point where we are able to figure out how spending translates into capability. That is — if I double my cyber spending, does it give me a 10 percent, 100% or 1,000% increase in capability? Cyber is a realm where it doesn’t translate like that well,” Singer said.

Among the most important new areas of cybersecurity funding in the president’s request is $13.3 million for the creation of the Joint Information Environment, a single, secure (and more easily monitored) cloud-based information sharing system for the military. In the Quadrennial Defense Review, Pentagon officials say that system “is critical to developing a more defensible network architecture and to improving network operations.”

Part of the $5.1 billion sought for cyber operations will go toward the continued development of 133 special cyber mission teams. They’ll have various functions, from assisting with battlefield attacks to protecting DOD websites from incursions. Most importantly, these teams will be the nation’s frontline defense against internet-based attacks on infrastructure. The Pentagon expects to have 6,000 cyber mission team staffers in place by 2016, including 13 national mission teams with eight national support teams.

“Some of the infrastructure protection roles that DOD is eyeing are really where the private firms who own and operate [power supplies] should be stepping up instead,” Singer said.

Here are some additional requests for cyber expenditures:

— The biggest additional chunk of money is being requested for Cyber Command activities, with a request of $67 million this year versus $38 million for fiscal year 2014, an increase of $29 million. (There’s also $83 million in additional funding for Fort Meade Cyber Command headquarters.)

— The Air Force’s rapid cyber acquisition program will see $4 million in requested funding versus $2 million from last year.

— The budget also asks for $4.9 million in funding for a new cyber operations technology development for the Air Force.

— Defense Department-wide cyber security research has a $15 million request in funding up from $13.9 in fiscal year 2014.

Other cuts include the Defense Advanced Research Project’s Agency’s Cognitive Computing program and the Department of Defense (Air Force) Cyber Crime Center.

Close [ x ] More from DefenseOne
 
 

Thank you for subscribing to newsletters from DefenseOne.com.
We think these reports might interest you:

  • Federal IT Applications: Assessing Government's Core Drivers

    In order to better understand the current state of external and internal-facing agency workplace applications, Government Business Council (GBC) and Riverbed undertook an in-depth research study of federal employees. Overall, survey findings indicate that federal IT applications still face a gamut of challenges with regard to quality, reliability, and performance management.

    Download
  • PIV- I And Multifactor Authentication: The Best Defense for Federal Government Contractors

    This white paper explores NIST SP 800-171 and why compliance is critical to federal government contractors, especially those that work with the Department of Defense, as well as how leveraging PIV-I credentialing with multifactor authentication can be used as a defense against cyberattacks

    Download
  • GBC Issue Brief: Supply Chain Insecurity

    Federal organizations rely on state-of-the-art IT tools and systems to deliver services efficiently and effectively, and it takes a vast ecosystem of organizations, individuals, information, and resources to successfully deliver these products. This issue brief discusses the current threats to the vulnerable supply chain - and how agencies can prevent these threats to produce a more secure IT supply chain process.

    Download
  • Data-Centric Security vs. Database-Level Security

    Database-level encryption had its origins in the 1990s and early 2000s in response to very basic risks which largely revolved around the theft of servers, backup tapes and other physical-layer assets. As noted in Verizon’s 2014, Data Breach Investigations Report (DBIR)1, threats today are far more advanced and dangerous.

    Download
  • Information Operations: Retaking the High Ground

    Today's threats are fluent in rapidly evolving areas of the Internet, especially social media. Learn how military organizations can secure an advantage in this developing arena.

    Download

When you download a report, your information may be shared with the underwriters of that document.