In September 2024, U.S. Cyber Command (USCYBERCOM) released a DoDIN Command Operational Framework (DCOF) execution order (EXORD) affirming the DoDIN Areas of Operation (DAOs) and sector construct to manage risk to the Department of Defense Information Network (DoDIN) and cyber risk to DoD missions. The DCOF mirrors the same chain-of-command concept as in the other warfighting domains, but with a unique difference given the DoDIN’s federated environment.
Expectations
The execution order provides the foundation to operationalize the DoDIN and focuses on four main aspects of USCYBERCOM’s secure, operate, and defend the DoDIN mission area: unity of command to manage risk to the DoDIN and cyber risk to missions; aligning terrain and forces and understanding mission essential assets; dependencies across DAOs and the dynamic support to sector mission owners; and standards.
Additionally, it defines the roles and responsibilities of the DAO commanders and directors to achieve four primary objectives. It assigns the area of responsibility of each DAO; it specifies the primary tasks of each DAO within the secure, operate, and defend mission area; it provides the criteria for establishing new DAOs; and it enables DAO assessment criteria development to provide the readiness posture of DAOs relative to the missions they support.
USCYBERCOM Responsibilities
As part of the maturity of the cyberspace warfighting domain, USCYBERCOM is responsible for ensuring all joint publications, orders, policies, operational reports, and other policy and guidance documentation accurately reflect the DCOF.
JFHQ-DODIN Responsibilities
JFHQ-DODIN is responsible for ensuring all DoDIN terrain falls under a DAO commander or director who is best postured to have authority over the terrain and the DoDIN forces that conduct the tactical actions every day. Additionally, the command leverages its Directive Authority for Cyberspace Operations (DACO) to execute a unified force approach to protecting the DoDIN. It does this by directing, synchronizing, and coordinating network operations, and on-DoDIN security and defense activities through the DAOs.
The command is also responsible for providing sector commanders and directors with relevant situational awareness about the readiness status of the DAOs that support their missions. This is critical because multiple DAOs support each sector and the given sector command or director may not have authority over those DAOs. JFHQ-DODIN’s DACO authority facilitates actions and accountability across the scope of the 45 DAOs on behalf of the sectors, as needed.
Lastly, JFHQ-DODIN is responsibility for establishing and promulgating DAO readiness assessment criteria, standards, and reporting procedures. This enables DAOs to report their readiness status more effectively and supports mission assurance efforts through continuous monitoring.
Sector Commanders/Directors Responsibilities
The order directs sector commanders and directors to ensure they have identified and prioritized all mission essential capabilities residing on or connected to the DoDIN. This includes capabilities on off-DoDIN cyberspace terrain which they rely on to assure a DoD mission. This better defines the nature of information sharing and assessment of critical assets required between the sector commander and director as a mission owner and the DAO commander and director as the asset owner in their supported and supporting relationship. The expectation is that sectors can communicate this information to JFHQ-DODIN as it works to synchronize and direct DAO support as needed for carrying out their sector’s mission.
DAO Commanders/Directors Responsibilities
The DCOF EXORD seeks to achieve centralized risk management by assigning DODIN Cyberspace terrain to the commander or director who is best postured to secure, operate and defend that terrain. The assigned commander or director must have the authority to direct network and security operations; must have authority over the Cyber Operational Forces securing, operating and defending on the terrain; and must be accountable for the risk to the mission.
The DAO commanders and directors are responsible for planning, coordinating, directing, and organizing network and security operations and their cyber terrain and must contribute to the Sector owner’s ability to understand the readiness and risk to their mission. The DAO commanders and directors are responsible for defining and organizing their terrain as well as optimizing the posture of their Cyber Operational Forces (COF) to meet their assigned missions.
The Cyber Security Service Providers (CSSP) are a critical element of the DAO Commanders and Directors COF forces, ensuring the security of the terrain and enabling timely responses to incursions on the network. The CSSPs conduct continuous monitoring of network systems and provide reporting which contributes to the assessment of network and mission readiness, and the identification of DAO capability and resource gaps required to secure the network. The DAOs and CSSPs report in the Defense Readiness Reporting System (DRRS), which provides the Commander of JFHQ-DODIN visibility of the overall readiness posture of the DoDIN.
Implications & Summary
The DoDIN is a vital operational asset underpinning all DoD functions and missions –combatant command warfighting, the services man/train/equip responsibilities, DoD intelligence operations, and daily business operations. Protecting this dynamic environment from adversaries’ persistent and opportunistic threats and malicious campaigns requires a military operational view. The DCOF that establishes the necessary structure and processes enabling proper command and control.
In addition to inherent streamlined operations, information sharing, and clear lines of command and control, the DCOF continues to increase speed and agility in managing cyber risk to DoD missions by building and synchronizing capacity for the mission area. Anticipated outcomes of formalizing the DCOF through operations and in policies includes comprehensive command and control mechanisms that are in place for each DAO, better accountability of DoDIN forces and relationships with CSSPs, and shared understanding across DoD of the security posture each DAO and the DoDIN as a whole.