In our latest episode, Alex Botting and Jen Ellis from the Center for Cybersecurity Policy & Law are joined by Mieke Eoyang, the Deputy Assistant Secretary of Defense for Cyber Policy. As the highest ranking civilian at the U.S. Department of Defense (DoD), tasked with thinking exclusively about cyber policy, Ms. Eoyang was able to provide valuable insights around the recently released unclassified 2023 DoD Cyber Strategy summary.
The discussion captures how the DoD’s thoughts on cyber warfare have significantly evolved in the last decade, particularly in reaction to real-world international cyber events like the conflict in Ukraine. Ms. Eoyang highlights just how far we have come from analogies to nuclear war, and why cyber warfare has become an increasingly important part of the DoD’s toolkit. All of this evolutionary thinking has shaped the new DoD Cyber Strategy, published today and complementing the U.S. National Cyber Security Strategy and the implementation plan. The new defense strategy calls for strengthened partnership with both allied nations and the private sector through information sharing, technical support, and hunt forward operations - amongst other efforts.
A couple of other links we promised to share out of our chat with Ms. Eoyang:
- DoD civilian career opportunities
- An article on “The Subversive Trilemma: Why Cyber Operations Fall Short of Expectations”
In addition to the above, this week’s episode includes news out of CISA and an update on the UN Cybercrime Convention proceedings, which we discussed with Microsoft’s Kaja Ciglic in S01E02.
If you want to read up more on any of the news stories we covered, you can find more here:
- Microsoft speaks out on the latest from UN Cybercrime Treaty
- Untangling the Web of Redlines: The UN Cybercrime Convention possible stalemate
- CISA publishes its Annual Report on the impact of the Government VDP Platform
- CISA Hires ‘Mudge’ to Work on Security-by-Design Principles
- The UK Government views the Investigatory Powers Act (one for the crypto activists!)
Finally, our Mystery Trivia Master this week is the delightful Florian Pennings, EU cyber policy expert.
Check out the newest Distilling Cyber Policy episode on Spotify, Apple or Google. As always, if you would like to submit cyber policy trivia for upcoming episodes, please email info@centerforcybersecuritypolicy.org.
Read Next
Cairncross Outlines ONCD Priorities Under Second Trump Administration
National Cyber Director Sean Cairncross laid out his and the Trump Administration’s vision for the future of the Office of the National Cyber Director (ONCD) during remarks at the 2025 Meridian Summit in Washington DC.
Meeting the Homeland Drone Threat: A Table-Top Exercise Exposes the Gaps in Authorities and Resources
A tabletop exercise explored the threat posed by the malicious use of drones to the homeland, involving public and private sector participants responding to hypothetical attacks on an air base, electricity grid, and a local hockey game.
FedRAMP Unveils Next Phase of Modernization
ADI and FedRAMP hosted an event unveiling FedRAMP 20x Phase II, which discussed accelerating and automating cloud service authorization for federal use and cutting down time, effort, and paperwork in favor of efficiency, trust, and cybersecurity.
