The Evolution of CYBERCOM
Posted on November 02, 2017
The Department of Defense faces tens of millions of attempted cyberattacks every year. In response, it established the U.S. Cyber Command in 2009 to more effectively address the growing risk of these threats. Although initially located within the U.S. Strategic Command, in August 2017 the President ordered CYBERCOM to be elevated to the status of a full and independent command—traditionally a military organizational unit under the command of one individual.
Earlier this year, we looked at some advantages and disadvantages of CYBERCOM’s structure and leadership style, as well as DOD’s progress in implementing its cybersecurity strategy. Today’s WatchBlog shares some of what we found.
The dual hat
To get CYBERCOM up and running quickly, in 2010 the President assigned the Director of the National Security Agency—who also leads the Central Security Service—to also lead CYBERCOM. This is called a “dual-hat” leadership arrangement—one person leading two (or more) organizations simultaneously—and is a common practice within DOD.
As the sole leader of these organizations, the dual-hatted leader has a lot of responsibilities.
(Excerpted from GAO-17-512)
- Questions on the content of this post? Contact Joseph Kirschbaum at KirschbaumJ@gao.gov.
- Comments on GAO’s WatchBlog? Contact blog@gao.gov.