PCB007 Magazine

PCB007-Jan2019

Issue link: http://iconnect007.uberflip.com/i/1069358

Contents of this Issue

Navigation

Page 83 of 105

84 PCB007 MAGAZINE I JANUARY 2019 metric in the DoD acquisition and sustainment process. The report states: • It is vital to "Deliver Uncompromised" that security have equal status to cost, schedule, and performance • The revision of DoD 5000.02 (Operation of the Defense Acquisition System) to make security the "Fourth Pillar" of acquisition planning—equal in emphasis to cost, schedule, and performance • Utilize acquisition tools and contract leverage and reinforce the objective of "Deliver Uncompromised" through the use of positive and negative incentives Encouragingly, there is also language in the report that recognizes there are hard costs associated with the DoD supply chain implementing the requisite cybersecurity measures, and several tax incentive measures are detailed for consideration, further analysis, and discussion to offset the costs. The key takeaway is that all PCB fabricators and electronics manufacturing service providers providing electronics products to the defense sector need to immediately heighten awareness and proactively address cybersecurity if they desire to continue supporting the DoD and their prime contractors. In terms of the actual gates in the evaluation process that all proffers to the DoD will soon be subjected to a "go, no-go" initial bid analysis that evaluates cybersecurity hardening as the first gate to pass through for offers to be considered before the long- standing DoD contracts analysis process evaluating quality, cost, schedule appears most logical to me. In September 2018, the "Report to President Donald J. Trump by the Interagency Task Force in Fulfillment of Executive Order 13806" was released. Titled "Assessing and Strengthening the Manufacturing and Defense Industrial Base and Supply Chain Resiliency of the United States," it is an in-depth and fascinating look at the defense industrial base including PCBs and circuit card assemblies for DoD systems [2] . In Section VI of the report, "Ten Risk Archetypes Threatening America's Manu- facturing and Industrial Base," we find more compelling direction and comment that underscores the threat that cyber-related crime poses to our national security. Quoting the report, "The defense manu- facturing supply chain flows goods and critical supporting information through multiple organizations of varying size and sophistication to transform raw materials into components, subassemblies, and ultimately, finished products and systems that meet DoD performance specifications and requirements. These supply chains rely upon an infinite number of touch points where digital and physical information flows through multiple networks both within and across manufacturers systems. In today's digitized world, every one of these supply chain touch points represents a potential product security risk." In addition to data breaches, it is also noteworthy to point out that The Department of Homeland Security (DHS) reported that the critical manufacturing sector reported the highest number of cyber attacks on industrial control systems of any critical infrastructure sector with numerous threats emerging that had the potential to cause major disruption in manufacturing operations. With the publication of the 2018 National Defense Strategy [3] , U.S. Secretary of Defense General Jim Mattis stated, "Challenges to the U.S. military advantage represent another shift in the global security environment. For decades, the United States has enjoyed uncontested or dominant superiority in every operating domain. We could generally dep loy our In today's digitized world, every one of these supply chain touch points represents a potential product security risk.

Articles in this issue

Archives of this issue

view archives of PCB007 Magazine - PCB007-Jan2019