United States Cyber Command Explained

Unit Name:United States Cyber Command
Start Date:
(ago)
Country:United States
Type:Unified combatant command and cyber force
Command Structure:U.S. Department of Defense
Commander1:Gen Timothy D. Haugh, USAF[1]
Commander1 Label:Commander
Commander2:LTG William J. Hartman, USA[2]
Commander2 Label:Deputy Commander
Commander3:Morgan Adamski[3]
Commander3 Label:Executive Director
Commander4:CMSgt Kenneth M. Bruce Jr., USAF[4]
Commander4 Label:Senior Enlisted Leader
Garrison:Fort George G. Meade, Maryland, U.S.
Role:Cyberwarfare
Nickname:"USCYBERCOM", "CYBERCOM"

United States Cyber Command (USCYBERCOM) is one of the eleven unified combatant commands of the United States Department of Defense (DoD). It unifies the direction of cyberspace operations, strengthens DoD cyberspace capabilities, and integrates and bolsters DoD's cyber expertise which focus on securing cyberspace.[5]

USCYBERCOM was established as a Sub-Unified command under U.S. Strategic Command at the direction of Secretary of Defense Robert Gates on June 23, 2009[6] at the National Security Agency (NSA) headquarters in Fort George G. Meade, Maryland. It cooperates with NSA networks and has been concurrently headed by the director of the National Security Agency since its inception.[7] While originally created with a defensive mission in mind, it has increasingly been viewed as an offensive force. On 18 August 2017, it was announced that USCYBERCOM would be elevated to the status of a full and independent unified combatant command.[8] On 23 May 2023, it was announced that President Biden nominated Lt. Gen. Timothy Haugh to the Senate to be the next USCYBERCOM Commander.[9]

Mission statement

According to the US Department of Defense (DoD):

The text "9ec4c12949a4f31474f299058ce2b22a", located in the command's emblem, is the MD5 hash of their mission statement.[10]

The command is charged with pulling together existing cyberspace resources, creating synergies and synchronizing war-fighting effects to defend the information security environment. USCYBERCOM is tasked with centralizing command of cyberspace operations, strengthening DoD cyberspace capabilities, and integrating and bolstering DoD's cyber expertise.[11] [12]

Organizational structure

Cyber teams

Since 2015, the U.S. Cyber Command added 133 new cyber teams.[13] The breakdown was:

Component Commands

Emblem Command Acronym Commander Established Headquarters Subordinate Commands
ARCYBER / JFHQ–C
MARFORCYBER / JFHQ-C
  • Marine Corps Cyberspace Operations Group
  • Marine Corps Cyber Warfare Group
FLTCYBER / 10F / JFHQ–C
  • Naval Network Warfare Command (CTF 1010)
  • Navy Cyber Defense Operations Command (CTF 1020)
  • Navy Information Operations Command-Texas (CTF 1040)
  • Navy Information Operations Command-Georgia (CTF 1050)
  • Cryptologic Warfare Group Six (CTF 1060)
  • Navy Information Operations Command-Hawaii (CTF 1070)
  • Navy Cyber Warfare Development Group (CTF 1090)
  • Navy Information Operations Command-Colorado (CTG 101)
  • Navy Information Operations Command-Whidbey Island (CTG 102)
  • Navy Information Operations Command-Pensacola (CTG 103)
16 AF (AFCYBER) / JFHQ–C

Cyber National Mission Force

The Cyber National Mission Force (CNMF) was activated on January 27, 2014, as an element of Cyber Command.[14] [15] At inception the CNMF consisted of 21 teams, broken down into 13 National Mission Teams (NMT) and 8 National Support Teams (NST). Today, the CNMF has expanded to 39 joint cyber teams consisting of over 2,000 service members and civilian members across the U.S. Armed Forces On October 25, 2022, Defense Secretary Lloyd Austin authorized that the Cyber National Mission Force become a subordinate unified command underneath the United States Cyber Command.[16] Following this, on December 19, 2022, General Paul Nakasone presided over a ceremony to establish the CNMF with the new "sub-unified" command status.

Major General William J. Hartman, United States Army has served as CNMF commander since August 2019.

The CNMF is one of three Cyber Command forces that would react to a cyber attack on the United States. The other two forces are the Cyber Combat Mission Force assigned to the operational control of individual U.S. combatant commanders, and the Cyber Protection Force that helps operate and defend the DODIN.[17]

CNMF is composed of cyber mission force teams across services that support the CNMF mission through their specific respective assignments:[18] [19]

The Cyber National Mission Force operates in both defensive and offensive cyber operations to carry out its missions of: U.S. election defense, counter-ransomware operations, global hunt operations, combating foreign malicious cyber actors, and providing support to national security operations.[20]

Global hunt operations began in 2018 as part of the "persistent engagement" strategy with the goal of looking for malicious cyber activity and vulnerabilities on significant networks.[21] Since its inception, the hunt operations have been requested and conducted in 18 countries and over 50 foreign networks.

Standing joint task force

Emblem Command Acronym Commander Established Headquarters
JFHQ-DoDIN Fort Meade, Maryland
Joint Task Force AresJTF-Ares

Background

An intention by the U.S. Air Force to create a 'cyber command' was announced in October 2006.[22] An Air Force Cyber Command was created in a provisional status in November 2006. However, in October 2008, it was announced the command would not be brought into permanent activation.

On 23 June 2009, the Secretary of Defense directed the Commander of U.S. Strategic Command (USSTRATCOM) to establish USCYBERCOM. In May 2010, General Keith Alexander outlined his views in a report for the United States House Committee on Armed Services subcommittee:[23] [24] [25] [26] [27]

Initial operational capability was attained on 21 May 2010. General Alexander was promoted to four-star rank, becoming one of United States's 38 four-star officers, and took charge of U.S. Cyber Command in a ceremony at Fort Meade that was attended by Commander of U.S. Central Command GEN David Petraeus, and Secretary of Defense Robert M. Gates.[28] [29] [30] [31] USCYBERCOM reached full operational capability on 31 October 2010.[32]

The command assumed responsibility for several existing organizations. The Joint Task Force for Global Network Operations (JTF-GNO) and the Joint Functional Component Command for Network Warfare (JFCC-NW) were absorbed by the command. The Defense Information Systems Agency, where JTF-GNO operated, provides technical assistance for network and information assurance to USCYBERCOM, and is moving its headquarters to Fort Meade.[33]

President Obama signed into law, on 23 December 2016, the National Defense Authorization Act (NDAA) for fiscal year (FY) 2017, which elevated USCYBERCOM to a unified combatant command. The FY 2017 NDAA also specified that the dual-hatted arrangement of the commander of USCYBERCOM will not be terminated until the Secretary of Defense and Chairman of the Joint Chiefs of Staff jointly certify that ending this arrangement will not pose risks to the military effectiveness of CYBERCOM that are unacceptable to the national security interests of the United States.[34]

Concerns

There are concerns that the Pentagon and NSA will overshadow any civilian cyber defense efforts.[35] There are also concerns on whether the command will assist in civilian cyber defense efforts.[36] According to Deputy Secretary of Defense William J. Lynn, the command "will lead day-to-day defense and protection of all DoD networks. It will be responsible for DoD's networks – the dot-mil world. Responsibility for federal civilian networks – dot-gov – stays with the Department of Homeland Security, and that's exactly how it should be."[37] Alexander notes, however, that if faced with cyber hostilities an executive order could expand Cyber Command's spectrum of operations to include, for instance, assisting the Department of Homeland Security in defense of their networks.[38]

Some military leaders claim that the existing cultures of the Army, Navy, and Air Force are fundamentally incompatible with that of cyber warfare.[39] Major Robert Costa (USAF) even suggested a sixth branch of the military, an Information (Cyber) Service with Title 10 responsibilities analogous to its sister services in 2002 noting:

Others have also discussed the creation of a cyber-warfare branch.[40] [41] Lieutenant Colonel Gregory Conti[42] and Colonel John "Buck" Surdu (chief of staff of the United States Army Research, Development and Engineering Command) stated that the three major services are "properly positioned to fight kinetic wars, and they value skills such as marksmanship, physical strength, the ability to leap out of airplanes and lead combat units under enemy fire."

Conti and Surdu reasoned, "Adding an efficient and effective cyber branch alongside the Army, Navy and Air Force would provide our nation with the capability to defend our technological infrastructure and conduct offensive operations. Perhaps more important, the existence of this capability would serve as a strong deterrent for our nation's enemies."[43]

In response to concerns about the military's right to respond to cyber attacks, General Alexander stated "The U.S. must fire back against cyber attacks swiftly and strongly and should act to counter or disable a threat even when the identity of the attacker is unknown" prior to his confirmation hearings before the United States Congress. This came in response to incidents such as a 2008 operation to take down a government-run extremist honeypot in Saudi Arabia. "Elite U.S. military computer specialists, over the objections of the CIA, mounted a cyberattack that dismantled the online forum".[44]

"The new U.S. Cyber Command needs to strike a balance between protecting military assets and personal privacy." stated Alexander, in a Defense Department release. If confirmed, Alexander said, his main focus will be on building capacity and capability to secure the networks and educating the public on the command's intent.

"This command is not about an effort to militarize cyber space," he said. "Rather, it's about safeguarding our military assets."[45]

In July 2011, Deputy Defense Secretary William Lynn announced in a conference that "We have, within Cyber Command, a full spectrum of capabilities, but the thrust of the strategy is defensive." "The strategy rests on five pillars, he said: treat cyber as a domain; employ more active defenses; support the Department of Homeland Security in protecting critical infrastructure networks; practice collective defense with allies and international partners; and reduce the advantages attackers have on the Internet."[46]

In 2013, USCYBERCOM held a classified exercise in which reserve officers (with extensive experience in their civilian cyber-security work) easily defeated active duty cyber warriors.[47] In 2015 Eric Rosenbach, the principal cyber adviser to Defense Secretary Ash Carter, said DoD was looking at alternatives to staffing with just active-duty military.[48] Beginning that year, USCYBERCOM added 133 teams (staffing out at 6,000 people), with the intent that at least 15% of the personnel would be reserve cyber operations airmen.[49] These new teams had achieved "initial operating capability" (IOC) as of 21 October 2016. Officials noted that IOC is not the same as combat readiness, but is the first step in that direction.[50]

President Barack Obama's Commission on Enhancing National Cybersecurity was formed to develop a plan for protecting cyberspace. The commission released a report in December 2016. The report made 16 major recommendations regarding the intertwining roles of the military, government administration and the private sector in providing cyber security.[51]

President Trump indicated that he wanted a full review of Cyber Command during his bid for presidency.[52] During his presidency, the Trump administration made Cyber Command a unified combatant command, and took other measures attempting to deter cyber attacks. However, the FBI reported that they logged a record number of complaints and economic losses in 2019, as cybercrime continued to grow.[53]

International effects and reactions

The creation of U.S. Cyber Command appears to have motivated other countries in this arena. In December 2009, South Korea announced the creation of a cyber warfare command. Reportedly, this was in response to North Korea's creation of a cyber warfare unit.[54] In addition, the British GCHQ has begun preparing a cyber force.[55] Furthermore, a shift in military interest in cyber warfare has motivated the creation of the first U.S. Cyber Warfare Intelligence Center.[56] In 2010, China introduced a department dedicated to defensive cyber war and information security in response to the creation of USCYBERCOM.[57]

Operations

In June 2019, Russia has conceded that it is "possible" its electrical grid was under cyberattack by the United States.[58] The New York Times reported that hackers from the U.S. Cyber Command planted malware potentially capable of disrupting the Russian electrical grid.[59]

Cyber command is using its 2021 exercise Cyber Flag 21–2 to improve its teams' tactics.[60] [61]

List of commanders

The commander of U.S. Cyber Command is a statutory office, and is held by a four-star general, or if the commander is a Navy officer, a four-star admiral.

See main article: Leadership of the United States Cyber Command.

See also

References

Notes

Further reading

External links

Notes and References

  1. Web site: Gen. Timothy D. Haugh, USAF. 2024-02-03. U.S. Cyber Command.
  2. Web site: Lt. Gen. William J. Hartman, USA. 2024-01-19. U.S. Cyber Command.
  3. Web site: Executive Director, USCYBERCOM .
  4. Web site: CMSGT Kenneth M. Bruce, Jr., USAF .
  5. Web site: What is U.S. Cyber Command (USCYBERCOM)? - Definition from Techopedia. 2022-02-15. Techopedia.com. 7 November 2012 . en.
  6. Web site: Memorandum. nsarchive2.gwu.edu. 3 March 2024.
  7. News: Nakashima, Ellen . 13 September 2016 . Obama to be urged to split cyberwar command from NSA . . https://web.archive.org/web/20160914182312/https://www.washingtonpost.com/world/national-security/obama-to-be-urged-to-split-cyberwar-command-from-the-nsa/2016/09/12/0ad09a22-788f-11e6-ac8e-cf8e0dd91dc7_story.html . 14 September 2016 . live.
  8. Web site: Office of the Press Secretary. whitehouse.gov. Statement by President Donald J. Trump on the Elevation of Cyber Command. National Archives.
  9. Web site: Dept of the USAF. politico.com. Biden nominates Lt. Gen. Timothy Haugh to lead NSA, Cyber Command. 23 May 2023 . Politico.
  10. News: A code you can hack: On CYBERCOM's logo. Jelinek. Pauline. 8 July 2010. Associated Press. Marine Corps Times. 8 July 2010. https://web.archive.org/web/20100715055816/http://www.marinecorpstimes.com/news/2010/07/ap_military_cyber_command_logo_070810/. 15 July 2010. dead. dmy-all.
  11. U.S. Department of Defense, Cyber Command Fact Sheet, 21 May 2010
  12. News: Security Chief Says Computer Attacks Will Be Met . The New York Times . Mark . Mazzetti . David E. . Sanger . 12 March 2013.
  13. Web site: The Department of Defense Cyber Strategy . United States Department of Defense . October 2016 . https://web.archive.org/web/20161104061430/http://www.defense.gov/News/Special-Reports/0415_Cyber-Strategy . 4 November 2016 . live.
  14. Web site: Cyber National Mission Force Declared Sub-Unified Command . Pomerleau . Mark . DefenseScoop News. 20 December 2022 .
  15. Web site: The Evolution of Cyber: Newest Subordinate Unified Command is Nation's Joint Cyber Force . 2023-02-27 . U.S. Cyber Command . en-US.
  16. Web site: 2022-12-19 . Cyber National Mission Force elevated in fight against foreign hackers . 2023-02-27 . The Record from Recorded Future News . en.
  17. https://www.arcyber.army.mil/Info/Fact-Sheets/Fact-Sheet-View-Page/Article/2079594/dod-fact-sheet-cyber-mission-force/ DOD Fact Sheet: Cyber Mission Force
  18. https://www.defense.gov/News/News-Stories/Article/Article/1524747/cyber-mission-force-achieves-full-operational-capability/ Cyber Mission Force Achieves Full Operational Capability
  19. https://www.c4isrnet.com/workforce/career/2017/07/25/heres-how-dod-organizes-its-cyber-warriors/ Here's How DOD Organizes its Cyber Warriors
  20. Web site: The Cyber National Mission Force Is the Newest Military Command . 2023-02-27 . MyBaseGuide . en.
  21. Web site: 2022-08-18 . U.S. Cyber Command completes defensive cyber mission in Croatia . 2023-02-27 . CyberScoop . en-US.
  22. Web site: US Air Force Prepares For Cyber Warfare. John C.K. Daly. Space Daily. 9 October 2006.
  23. News: US needs 'digital warfare force'. 5 May 2009. BBC News. 2017-10-10. en-GB.
  24. Web site: preparedness and security news - DC Summit Convenes Military 'Cyber Warriors' . Homeland Security Today . 2009-11-18 . 2010-07-10 . 11 July 2010 . https://web.archive.org/web/20100711060434/http://www.hstoday.us/content/view/11125/152/ . dead .
  25. Web site: News Release: Flag and General Officer Announcements . Department of Defense . 2009-03-12 . 2010-07-10.
  26. News: Cyberwar Commander Survives Senate Hearing, Threat Level. 15 April 2010. Wired.com. 2010-07-10.
  27. Web site: U.S. Senate: Legislation & Records Home > Nominations Confirmed (Non-Civilian) . U.S. Senate . 2010-07-10.
  28. Web site: Photos : News Photo . Defense.gov . 2010-05-21 . 2010-07-10.
  29. Web site: DoD Cyber Command is officially online, 21 May 2010, Army Times. 27 April 2021.
  30. Web site: Military Mulls Joint Cyber Defense . Govinfosecurity.com . 2010-07-10.
  31. Web site: Fort Meade cyber security center sought (www.HometownGlenBurnie.com - The Maryland Gazette) . HometownGlenBurnie.com . 2010-07-10 . 14 July 2010 . https://web.archive.org/web/20100714145249/http://www.hometownglenburnie.com/news/Business/2009/12/09-17/Fort+Meade+cyber+security+center+sought%0A.html . dead .
  32. Web site: Release. www.defense.gov. 27 April 2021.
  33. Web site: Jackson . William . DoD creates Cyber Command as U.S. Strategic Command subunit - Federal Computer Week . Fcw.com . 2009-06-24 . 2010-07-10.
  34. Web site: S. 2943; National Defense Authorization Act for Fiscal Year 2017. congress.gov. 18 June 2017.
  35. Monroe . John S. . 2 July 2009 . Cyber Command: So much still to know . Federal Computer Week (FCW) . 1105 Media, Inc. . 22 November 2016 .
  36. Web site: U.S Cyber Command Goes Online . 1 October 2009 . Democracy Arsenal . 22 November 2016 .
  37. Web site: Lynn, William J. . 12 November 2009 . Remarks at the Defense Information Technology Acquisition Summit . United States Department of Defense . https://web.archive.org/web/20100415113237/http://www.defense.gov/speeches/speech.aspx?speechid=1399 . 15 April 2010 . dead.
  38. News: Shachtman, Noah . Military's Cyber Commander Swears: "No Role" in Civilian Networks" . Brookings . . 23 September 2010. https://web.archive.org/web/20161107160158/https://www.brookings.edu/opinions/militarys-cyber-commander-swears-no-role-in-civilian-networks/ . 7 November 2016 . live.
  39. Gregory . Conti . Jen . Easterly . Recruiting, Development, and Retention of Cyber Warriors Despite an Inhospitable Culture . Small Wars Journal . 29 July 2010 . 29 July 2010 . https://web.archive.org/web/20110107150540/http://smallwarsjournal.com/blog/2010/07/recruiting-development-and-ret/ . 7 January 2011 . dead.
  40. Web site: Eric . Chabrow . 22 April 2009 . Report: Cybersecurity Military Command Coming . GovInfoSecurity (Information Security Media Group) . https://web.archive.org/web/20151224111253/http://www.govinfosecurity.com/report-cybersecurity-military-command-coming-a-1401 . 24 December 2015 . live.
  41. Gregory . Conti . John "Buck" . Surdu . 2009 . Army, Navy, Air Force, Cyber: Is it Time for a Cyberwarfare Branch of the Military . Information Assurance Newsletter . 12 . 1 . 14–18 . https://web.archive.org/web/20160611101645/http://www.rumint.org/gregconti/publications/2009_IAN_12-1_conti-surdu.pdf . 11 June 2016 . live.
  42. At the time, Lieutenant Colonel Gregory Conti was a United States Military Academy Professor and Director of West Point's CyberSecurity Research Center.
  43. Web site: Eric . Chabrow . 25 March 2009 . New Cyber Warfare Branch Proposed: Time Ripe to Create Fourth Branch of Military . GovInfoSecurity (Information Security Media Group) . https://web.archive.org/web/20151222081310/http://www.govinfosecurity.com/blogs/new-cyber-warfare-branch-proposed-p-160/op-1 . 22 December 2015 . live.
  44. News: Ellen . Nakashima . 19 March 2010 . Dismantling of Saudi-CIA Web site illustrates need for clearer cyberwar policies . The Washington Post . 2010-07-10 .
  45. Web site: Lisa . Daniel . 15 April 2010 . Nominee Urges Government, Private Sector Cooperation . DoD News. United States Department of Defense . https://web.archive.org/web/20150714022326/http://www.defense.gov/news/newsarticle.aspx?id=58772 . 14 July 2015 . dead.
  46. Web site: Karen . Parrish . 14 July 2011 . News Article: Lynn: Cyber Strategy's Thrust is Defensive . DoD News . United States Department of Defense . https://web.archive.org/web/20150714021911/http://www.defense.gov/news/newsarticle.aspx?id=64682 . 14 July 2015 . dead.
  47. News: In supersecret cyberwar game, civilian-sector techies pummel active-duty cyberwarriors . Tilghman . Andrew . 4 August 2014 . www.armytimes.com . Gannett Government Media . 6 August 2014.
  48. News: Pentagon eyes recruiting cyber talent through National Guard . Baldor . Lolita C. . 14 April 2015 . Military Times . Associated Press . https://web.archive.org/web/20160128203430/http://www.militarytimes.com/story/military/tech/2015/04/14/pentagon-eyes-recruiting-cyber-talent-through-national-guard/25784919/ . 28 January 2016 . live.
  49. News: Pawlyk . Oriana K.. 3 January 2015 . Calling up the Reserves: Cyber mission is recruiting . Air Force Times . Sightline Media Group . 5 November 2016 .
  50. News: All Cyber Mission Force Teams Achieve Initial Operating Capability . 24 October 2016 . United States Cyber Command, United States Department of Defense . https://web.archive.org/web/20161028022704/http://www.defense.gov/News/Article/Article/984663/all-cyber-mission-force-teams-achieve-initial-operating-capability . 28 October 2016 . live.
  51. Rockwell . Mark . 21 November 2016 . Cyber panel closes in on final recommendations . Federal Computer Week (FCW) . 1105 Media, Inc. . 22 November 2016.
  52. Web site: John . Costello . 10 November 2016 . Overview of President-Elect Donald Trump's Cyber Policy . Flashpoint . https://web.archive.org/web/20161122192135/https://www.flashpoint-intel.com/overview-trumps-cyber-policy/ . 22 November 2016 . live.
  53. Web site: David . Fidler . 2 December 2020 . President Trump's Legacy on Cyberspace Policy . CFR . https://web.archive.org/web/20210511113650/https://www.cfr.org/blog/president-trumps-legacy-cyberspace-policy . 11 May 2021 . live.
  54. Web site: Cyber Warfare Command to Be Launched in January . Koreatimes.co.kr . 2010-07-10. December 2009 .
  55. Web site: Clark . Colin . StratCom Plows Ahead on Cyber . DoD Buzz . 2009-06-29 . 2010-07-10.
  56. Web site: Construction begins on first cyber warfare intelligence center . Af.mil . 2010-07-10 . https://archive.today/20120630131823/http://www.af.mil/news/story.asp?id=123204543 . 30 June 2012 . dead .
  57. News: Chinese army to target cyber war threat. 25 July 2010 . London . The Guardian . Tania . Branigan . 2010-07-22.
  58. News: US and Russia clash over power grid 'hack attacks . BBC News . 18 June 2019.
  59. How Not To Prevent a Cyberwar With Russia . . 18 June 2019.
  60. Web site: US Cyber Command exercise will help shape new tactics for changing threats. Mark. Pomerleau. 23 June 2021. C4ISRNet.
  61. https://www.c4isrnet.com/information-warfare/2021/05/25/us-army-emphasizes-information-advantage/ Mark Pomerleau (25 May 2021) US Army emphasizes ‘information advantage’