In our latest episode, Alex Botting and Jen Ellis from the Center for Cybersecurity Policy & Law are joined by Mieke Eoyang, the Deputy Assistant Secretary of Defense for Cyber Policy. As the highest ranking civilian at the U.S. Department of Defense (DoD), tasked with thinking exclusively about cyber policy, Ms. Eoyang was able to provide valuable insights around the recently released unclassified 2023 DoD Cyber Strategy summary.
The discussion captures how the DoD’s thoughts on cyber warfare have significantly evolved in the last decade, particularly in reaction to real-world international cyber events like the conflict in Ukraine. Ms. Eoyang highlights just how far we have come from analogies to nuclear war, and why cyber warfare has become an increasingly important part of the DoD’s toolkit. All of this evolutionary thinking has shaped the new DoD Cyber Strategy, published today and complementing the U.S. National Cyber Security Strategy and the implementation plan. The new defense strategy calls for strengthened partnership with both allied nations and the private sector through information sharing, technical support, and hunt forward operations - amongst other efforts.
A couple of other links we promised to share out of our chat with Ms. Eoyang:
- DoD civilian career opportunities
- An article on “The Subversive Trilemma: Why Cyber Operations Fall Short of Expectations”
In addition to the above, this week’s episode includes news out of CISA and an update on the UN Cybercrime Convention proceedings, which we discussed with Microsoft’s Kaja Ciglic in S01E02.
If you want to read up more on any of the news stories we covered, you can find more here:
- Microsoft speaks out on the latest from UN Cybercrime Treaty
- Untangling the Web of Redlines: The UN Cybercrime Convention possible stalemate
- CISA publishes its Annual Report on the impact of the Government VDP Platform
- CISA Hires ‘Mudge’ to Work on Security-by-Design Principles
- The UK Government views the Investigatory Powers Act (one for the crypto activists!)
Finally, our Mystery Trivia Master this week is the delightful Florian Pennings, EU cyber policy expert.
Check out the newest Distilling Cyber Policy episode on Spotify, Apple or Google. As always, if you would like to submit cyber policy trivia for upcoming episodes, please email info@centerforcybersecuritypolicy.org.
Read Next
Report - Addressing International IT Concentration Risk: A Five-Eyes Informed Exercise
The Center convened the latest in a series of tabletop exercises exploring IT concentration risk within a broader international context with Five Eyes officials and industry reps.
Examining Critical Infrastructure Cybersecurity and Resilience: A CCPL Tabletop Exercise After Action Report
The Center conducted a tabletop exercise exploring the ability of government and private sector to address disruption from a nation state with sophisticated cyber capabilities may cause to critical infrastructure if given extensive freedom of action.
European Commission 2028-2034 Budget Proposal Includes Substantial Increase for Cyber, Digital Programmes
The European Commission presented its initial proposal for the European Union’s 2028-2034 financial framework that, if approved, could authorise nearly EUR 2 trillion in spending over seven years for cyber and other digital efforts.
