Cybersecurity Test and Evaluation Guidebook 2.0

Cybersecurity Test and Evaluation Guidebook 2.0
Authors: Department of Defense
ISBN-10: 1728922062
ISBN-13: 9781728922065
Released: 2018-10-17
Paperback: 134 pages
The purpose of this updated guidebook is to promote data-driven mission-impact-based analysis and assessment methods for cybersecurity test and evaluation (T&E) and to support assessment of cybersecurity,survivability,and resilience within a mission context by encouraging planning for tighter integration with traditional system T&E. Cybersecurity T&E starts at acquisition initiation and continues throughout the entire life cycle. The guidebook supplements information provided in the Test and Evaluation Master Plan (TEMP) Guidebook. DoD’s computer networks have always been targeted for cyber-attacks and now that includes the building controls systems (BCS). Defending a BCS is not as simple at protecting an IT network because most BCS consist of analog equipment that is decades old and retrofit to accept commands from modern digital controllers. Many BCS installations are a hodgepodge of technologies that should have been replaced years ago. DoD is well ahead of industry in this area because DoD recognizes it’s a problem whereas most companies are blissfully unaware of their vulnerabilities.