SMT007 Magazine


Issue link:

Contents of this Issue


Page 95 of 111

96 SMT007 MAGAZINE I JANUARY 2019 metric in the DoD acquisition and sustainment process. The report states: • It is vital to "Deliver Uncompromised" that security have equal status to cost, schedule, and performance • The revision of DoD 5000.02 (Operation of the Defense Acquisition System) to make security the "Fourth Pillar" of acquisition planning—equal in emphasis to cost, schedule, and performance • Utilize acquisition tools and contract leverage and reinforce the objective of "Deliver Uncompromised" through the use of positive and negative incentives Encouragingly, there is also language in the report that recognizes there are hard costs associated with the DoD supply chain imple- menting the requisite cybersecurity measures, and several tax incentive measures are detailed for consideration, further analysis, and discus- sion to offset the costs. The key takeaway is that all PCB fabrica- tors and electronics manufacturing service providers providing electronics products to the defense sector need to immediately heighten awareness and proactively address cybersecu- rity if they desire to continue supporting the DoD and their prime contractors. In terms of the actual gates in the evalua- tion process that all proffers to the DoD will soon be subjected to a "go, no-go" initial bid analysis that evaluates cybersecurity hard- ening as the first gate to pass through for offers to be considered before the long-stand- ing DoD contracts analysis process evaluat- ing quality, cost, schedule appears most logi- cal to me. In September 2018, the "Report to Presi- dent Donald J. Trump by the Interagency Task Force in Fulfillment of Executive Order 13806" was released. Titled "Assessing and Strength- ening the Manufacturing and Defense Indus- trial Base and Supply Chain Resiliency of the United States," it is an in-depth and fascinat- ing look at the defense industrial base includ- ing PCBs and circuit card assemblies for DoD systems [2] . In Section VI of the report, "Ten Risk Arche- types Threatening America's Manufacturing and Industrial Base," we find more compel- ling direction and comment that underscores the threat that cyber-related crime poses to our national security. Quoting the report, "The defense manufac- turing supply chain flows goods and critical supporting information through multiple orga- nizations of varying size and sophistication to transform raw materials into components, subassemblies, and ultimately, finished prod- ucts and systems that meet DoD performance specifications and requirements. These supply chains rely upon an infinite number of touch points where digital and physical information flows through multiple networks both within and across manufacturers systems. In today's digitized world, every one of these supply chain touch points represents a potential prod- uct security risk." In addition to data breaches, it is also note- worthy to point out that The Department of Homeland Security (DHS) reported that the critical manufacturing sector reported the highest number of cyber attacks on industrial control systems of any critical infrastructure sector with numerous threats emerging that had the potential to cause major disruption in manufacturing operations. With the publication of the 2018 National Defense Strategy [3] , U.S. Secretary of Defense General Jim Mattis stated, "Challenges to the U.S. military advantage represent another shift in the global security environment. For decades, the United States has enjoyed uncon- tested or dominant superiority in every oper- ating domain. We could generally deploy our In today's digitized world, every one of these supply chain touch points represents a potential product security risk.

Articles in this issue

Archives of this issue

view archives of SMT007 Magazine - SMT007-Jan2019