Cyber News

JFHQ-DODIN Launches Cyber Operational Readiness Assessment (CORA) Program to Enhance DOD Cybersecurity

Joint Force Headquarters–Department of Defense Information Network (JFHQ-DODIN) is gearing up to launch its Cyber Operational Readiness Assessment (CORA) program on March 1, 2024 following a successful pilot phase spanning nine months. This initiative marks a significant evolution from the traditional Command Cyber Readiness Inspection (CCRI) program, emphasizing a shift from mere compliance to operational readiness and mission assurance. Renamed to CORA, this program is hailed by Lt. Gen. Robert Skinner as a critical pillar of the DOD's cybersecurity strategy, designed to enable continuous, holistic assessments of cyber readiness.

The CORA program aims to fortify the Department of Defense Information Network (DODIN) by empowering commanders and directors in the DODIN Areas of Operation (DAO). It focuses on bolstering information system resilience, reducing vulnerability to cyber threats, and fostering a proactive defense posture. These objectives are rooted in foundational cybersecurity principles, which are now core metrics within the CORA framework.

Key to the CORA approach is its integration of MITRE ATT&CK tactics, techniques, and procedures (TTPs) as risk-based metrics. By analyzing and prioritizing these adversarial strategies—such as initial access, persistence, and lateral movement—the CORA program identifies critical areas requiring remediation. This risk-focused methodology enables DAO commanders to allocate resources effectively, concentrating efforts where cyber defenses are most needed.

John Porter, acting director of JFHQ-DODIN’s DODIN Readiness and Security Inspections directorate, underscores the program's dynamic nature. He highlights CORA’s ability to adapt swiftly to new cybersecurity directives, incorporating updated technologies and adjusting risk indicators in response to evolving threat landscapes. This flexibility ensures that CORA remains aligned with current and emerging cybersecurity priorities, thereby maintaining robust defenses across the DODIN.

In addition to its tactical focus, CORA plays a strategic role in supporting overall mission assurance and enhancing decision-making capabilities for USCYBERCOM and JFHQ-DODIN commanders. By providing a comprehensive view of cyber terrain readiness and risk levels, CORA enables leaders to make informed decisions regarding resource allocation and operational planning. This ensures that the DODIN maintains a resilient cybersecurity foundation, crucial for defending against sophisticated and persistent cyber threats globally.

©Copyright. All rights reserved.

We need your consent to load the translations

We use a third-party service to translate the website content that may collect data about your activity. Please review the details in the privacy policy and accept the service to view the translations.