Please use this identifier to cite or link to this item:
Title: Acquisition Cybersecurity Management Framework
Authors: Randy William Maule
Keywords: Cybersecurity
Information Assurance
Systems Compliance
Technical Models
Workflow Models
Issue Date: 13-May-2019
Publisher: Acquisition Research Program
Citation: Published--Unlimited Distribution
Series/Report no.: Acquisition Management
Abstract: Current organizational structures have proven insufficient for cyber and information assurance. The acquisition role may be resourced and expanded to support information assurance and systems compliance. A supply chain audit and assessment process within acquisition departments will better support emerging cybersecurity requirements. This project advances technical and workflow models, an assessment framework, and implementation methods to support expansion of the acquisition department role to include cybersecurity and information assurance across the systems lifecycle from supply chain, through test and measurement, to maintenance and obsolescence. Analysis methodology and model-based system engineering techniques successfully employed in naval and joint forces field research for technology and cybersecurity evaluation for nearly two decades, along with best practices from Silicon Valley high technology industries, were applied in the acquisition cybersecurity management framework. A shift of cybersecurity assessment from distributed units into centralized acquisition departments should significantly lessen the inter- and intra-organizational boundaries which have traditionally hindered cybersecurity.
Description: Acquisition Management / Defense Acquisition Community Contributor
Appears in Collections:Annual Acquisition Research Symposium Proceedings & Presentations

Files in This Item:
File SizeFormat 
SYM-AM-19-037.pdf1.25 MBAdobe PDFView/Open

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.