SSP Sets Standard for Cyber and Security Readiness

WASHINGTON NAVY YARD, DISTRICT OF COLUMBIA, UNITED STATES

06.17.2024

Story by Shelby Thompson 

Strategic Systems Programs

✔ ✗ Subscribe

8

WASHINGTON NAVY YARD - Strategic Systems Programs (SSP) successfully completed the Cyber Operational Readiness Assessment in May after a ten-day assessment period that showcased the command’s all-hands-on-deck commitment to cyber and security readiness.

The Cyber Operational Readiness Assessment (CORA) program, formerly known as the Command Cyber Readiness Inspection Program (CCRI), is a critical component of the DOD’s cyber security strategy, providing a “consolidated look at threat, vulnerability and impact” in the cyber and security spaces, according to John Porter, Joint Force Headquarters — Department of Defense Information Network (DODIN) acting director of DODIN Readiness and Security Inspections directorate.

CORA focuses in on key risk identifiers, allowing commands to focus mitigation efforts on the most critical and vulnerable areas within their cyber and security architectures and processes. CORA came with new requirements and assessment criteria, requiring a collaborative approach across the entirety of SSP to ensure the command performed well.
In a departure from previous iterations of the assessment, the newly revamped program emphasizes operational readiness over compliance, and encourages commands to be flexible and responsive in their assessment and response to dynamic threats.

“This was the first CORA that brought in the new assessment criteria for everyone,” explained Phil DiPietro, Deputy Command Information Officer.

“We had to rapidly integrate new and dynamic requirements leading up to the assessment.”

Passing CORA required significant man hours and a dedicated mindset from leaders across the command’s cyber and security enterprises, but DiPietro acknowledged that SSP’s high standard of day-to-day operations readiness laid the groundwork for the command’s high scores.

“There’s no way to do well [on CORA] without regular rigorous self-assessment and lifecycle implementation,” he said.

SSP’s high scores have resulted in the command sharing best practices and lessons learned with DODIN to help shape assessment standards moving forward.

“I am proud of the work the SSP cyber information office and security teams did,” said David Macht (SES), Director, Mission Support. “They ensured SSP was prepared for the assessment and had a positive outcome.”

Suanne Carnaghi, SSP Command Security Manager, reiterated that appreciation.

““The security team could not have been as successful without the Branch Security Officers from across the command,” she said.

“It took all of SSP working together to ensure the protection of our critical mission to the nation.”

Even with CORA in the rearview, SSP’s cyber and security teams aren’t taking their foot off the gas.

“We need to continue our level of excellence,” said DiPietro, emphasizing that the command will continue to hold to the rigorous cyber and security standards the SSP mission demands.

“CORA is a fantastic reminder to all of us that our nation’s adversaries are always trying to find weaknesses they can exploit,” added Carnaghi.

“We must not only maintain, but evolve, our rigorous security practices against persistent and developing threats to our nation.”

A credible, effective nuclear deterrent is essential to our national security and the security of U.S. allies. Deterrence remains a cornerstone of national security policy in the 21st century.

Strategic Systems Programs is the Navy command that provides cradle-to-grave lifecycle support for the sea-based leg of the nation’s nuclear triad. This includes training, systems, equipment, facilities and personnel responsible for ensuring the safety, security, and effectiveness of the nation’s Submarine Launched Ballistic Missile (SLBM) Trident II (D5LE) Strategic Weapon System.