Category Archives: Cyber

“COAST GUARD Workforce Planning Actions Needed to Address Growing Cyberspace Mission Demands” –GAO

Posted on by
5

A team from the U.S. Coast Guard Academy participated in the National Security Agency’s 20th annual National Cyber Exercise (NCX), a three-day cyber competition that tests the offensive and defensive cybersecurity skills virtually, April 8-10, 2021. The Coast Guard Academy recently instituted a Cyber Systems degree to meet the needs of the services cyber security strategy of defending cyber space, enabling operations, and protecting infrastructure. (U.S. Coast Guard photo by Petty Officer 2nd Class Hunter Medley)

The GAO has issued a report that finds the Coast Guard is not doing all GAO thinks Coast Guard should be doing, to manage its cyber work force. You can see the one page summary here, it has a nice bar graph. I have reproduced most of the summary below. You can see the entire 40 page report here.

The most striking thing for me, was to see how many Coast Guard people are now employed in cyber. 4507 positions are authorized and 4095 are filled. That is a big chunk of the Coast Guard’s total manpower. It is totally justified considering they are protecting not just the Coast Guard, but the entire maritime transportation system.

A recent US Naval Institute Proceedings article, “Cyber Warfare Is a Navy Mission” discusses why cyber has become so important and also suggests that the Navy needs to take larger role in maritime economic cyber. Apparently the Navy has not been paying much attention to this, but the potential is there, that they may.

What GAO Found

The Coast Guard is increasingly dependent upon its cyberspace workforce to
maintain and protect its information systems and data from threats. As of
September 2021, the Coast Guard determined it had 4,507 authorized
cyberspace workforce positions (i.e., funded positions that could be vacant or
filled), consisting of military and civilian personnel.

Coast Guard guidance calls for the service to use its Manpower Requirements
Determination process to assess and determine necessary staffing levels and
skills to meet mission needs. However, GAO found that the service had not used
this process for a large portion of its cyberspace workforce. For example, as of
February 2022, the Coast Guard had not used this process for three
headquarters units that collectively represent 55 percent of its cyberspace
workforce positions. Until such analysis is completed, the Coast Guard will not
fully understand the resources it requires, including those to protect its
information systems and data from threats.

Of 12 selected recruitment, retention, and training leading practices, the Coast
Guard fully implemented seven, partially implemented three, and did not
implement two. By fully implementing these leading practices, the Coast Guard
could better manage its cyberspace workforce. For example, it has not
developed a strategic workforce plan for its cyberspace workforce. According to
leading recruitment practices, such a plan should include three elements: (1)
strategic direction, (2) supply, demand, and gap analyses, and (3) solution
implementation, along with monitoring the plan’s progress to address all
cyberspace competency and staffing needs. Without having such a plan, the
Coast Guard will likely miss opportunities to recruit for difficult to fill cyberspace
positions.

“Coast Guard Academy Cadets Prepare to Join the Fleet” –Seapower

Posted on by
Reply

A team from the U.S. Coast Guard Academy participated in the National Security Agency’s 20th annual National Cyber Exercise (NCX), a three-day cyber competition that tests the offensive and defensive cybersecurity skills virtually, April 8-10, 2021. The Coast Guard Academy recently instituted a Cyber Systems degree to meet the needs of the services cyber security strategy of defending cyber space, enabling operations, and protecting infrastructure. (U.S. Coast Guard photo by Petty Officer 2nd Class Hunter Medley)

The Navy League’s on-line magazine “Seapower” reports on “Billet Night” at the Coast Guard Academy, when cadets learn where they will be going after graduation.

The significant news in the report is that while over 200 will go to afloat units and 20 will go directly to flight school,

The remaining graduates will report to various shore units, including the first graduates of the Academy’s Cyber Systems program. The newly established Cyber Systems degree provides graduates with the skills and ability to defend cyberspace, enable operations, and protect critical maritime infrastructure.

At CGA, 20 Jan., General Paul M. Nakasone, USA Commander, US Cyber Command, Director, NSA/Chief, Central Security Service

Posted on by
Reply

The US Naval Institute has announced a special event to be held at the US Coast Guard Academy on 20 January.

General Paul M. Nakasone, U.S. Army, Commander, U.S. Cyber Command and Director, National Security Agency/Chief, Central Security Service will be the featured speaker at an annual event hosted by the Naval Institute and the Loy Institute for Leadership at the U.S. Coast Guard Academy on Thursday, 20 January, in New London, CT. Admiral Charles W. Ray, U.S. Coast Guard (Retired),former Vice Commandant and current Tyler Chair in Leadership Studies at the U.S. Coast Guard Academy, will lead this engaging discussion with General Nakasone on all things cyber. This special event is made possible through support from the William M. Wood Foundation.

The link in the quote above notes:

Please contact conferences@usni.org with questions about this event.

“Coast Guard Booth Presentations at Sea Air Space 2021” –CG-9

Posted on by
1

22 meter saildrone Ocean Mapping UAS

The Acquisitions Directorate (CG-9) has provided media used in the Coast Guard’s presentation booths at Sea Air Space 2021, August 2 and 3. While certainly not a substitute for being there, they do provide insights into programs and concerns.

Coast Guard Booth Presentations at Sea Air Space 2021

  • Blue Technology Center of Expertise (BTCOE)
    Overview Blue Technology Center of Expertise presentation
    Ms. Jennifer Ibaven and Dr. Peter Vandeventer, BTCOE Program Managers, Office of Research, Development, Test & Evaluation and Innovation (CG-926)
    Tuesday, Aug. 3, 2021, 3-3:30p.m.
  • Coast Guard Detachment at DOD’s Defense Innovation Unit
    DIU & USCG Overview presentation
    Cmdr. Michael Nordhausen, Liaison Officer to Defense Innovation Unit
    Tuesday, Aug. 3, 2021, 4-4:30p.m.
  • Unmanned Systems
    U.S. Coast Guard Unmanned Systems presentation
    Capt. Thom Remmers, Assistant Commandant for Capabilities Unmanned Systems Cross-Functional Team Lead
    Monday, Aug. 2, 2021, 2:30-3p.m.
  • The Future of the Arctic
    U.S. Coast Guard Arctic Policy presentation
    Mr. Shannon Jenkins, Senior Arctic Policy Advisor
    Tuesday, Aug. 3, 2021, 11-11:30a.m.
  • Illegal, Unreported and Unregulated Fishing
    U.S Coast Guard IUU Fishing Strategic Outlook presentation
    Cmdr. James Binniker, Office of Law Enforcement Policy, Living Marine Resources and Marine Protected Resources Enforcement Division
    Tuesday, Aug. 3, 2021, 2:30-3p.m.

“The Coast Guard and American Maritime: A Vital Post-9/11 Partnership” –Seapower

Posted on by
Reply

NEW YORK, New York (Sept. 11)–A Coast Guard rescue team from Sandy Hook, NJ, races to the scene of the World Trade Center terrorist attack. USCG photo by PA2 Tom Sperduto

Seapower brings us a short post from Former Commandant James Loy and president and CEO of The American Waterways Operators, Jennifer Carpenter.

It is a reminder of the response to 9/11, a different justification for the Jones Act, and a warning about the potential of cyber attack.

“The Value of an Extra C – The New C5ISC” –MyCG

Posted on by
2

An old Deepwater Concept illustration, but you get the idea

Passing this along, because it looks like an important reorganization. It appeared on the MyCG website that I recently added to the “Recommended Blogs” list. This seems to be putting a greater emphasis on cyber. The “Brochure” linked at the bottom of the story gives a nice breakdown of the organization and responsibilities.

The Value of an Extra C – The New C5ISC

By Shana Brouder, MyCG Writer

Oct. 7, 2020 —

The Coast Guard has completed the single largest organizational restructuring of a unit in the past decade. In June, the Command, Control, Communications, Computers, Cyber, and Intelligence Service Center (C5ISC) was established. It replaced its counterpart, the Command, Control, Communications, Computers, and Information Technology Service Center (C4ITSC) as well as assimilated the three centers of excellence: the Command, Control, and Communications Engineering Center (C3CEN), Telecommunication and Information Systems Command (TISCOM), and the Operations Systems Center (OSC).

The reorganization encompasses over 800 military and civilian personnel. The alignment promises to improve the Coast Guard’s ability to deliver technology solutions at the “speed of need” for mission success. The functional structure of this new unit will underpin and enable the Coast Guard’s Technology Revolution’s five lines of effort: Cutter Connectivity; Modernizing C5I Infrastructure; Cyber Readiness; Software, Mobility and Cloud; and Data for Decisions.

“The commissioning of the new C5I Service Center represents the culmination of over six years of effort from personnel across the Coast Guard to transform the C4ITSC into an organization that will more effectively and efficiently deliver technology solutions for mission success,” explained Capt. Russell Dash, the new C5ISC commander. “Our new structure supports the Coast Guard directly through our six Product Lines, which serve as the focal point and center of gravity for our service delivery. Our robust Shared Service Divisions are designed to make our Product Line Managers successful by providing consistent, standard support including business operations, engineering and infrastructure services, workforce and facilities management, budget and finance, and asset and logistics services. The new organization is now poised to make the Commandant’s Tech Revolution a reality and deliver C5I mission support at the speed of need.”

By standardizing processes and creating intentional mission alignment with other Coast Guard units who also work in the informational technology space (e.g. Surface Forces Logistics Center [SFLC], Aviation Logistics Center [ALC], Shore Infrastructure Logistics Center [SILC], Health, Safety and Work-Life Service Center [HSWL], and Coast Guard Cyber Command [CGCYBER]), the new C5ISC structure enables faster, more nimble responses to technology-related problems.

This fundamental shift in how the Coast Guard delivers C5I capabilities, unifies efforts under a single leadership structure and follows industry-proven standard processes, which will drive efficiency and consistency in every action moving forward.

The few months since the C5I Service Center’s establishment have already reaped successes. For example, the Fleet Logistics System Mobile Asset Manager (FLS-MAM), the supply management tool used by cutter maintenance and supply personnel, was rewritten to ensure this vital program would stay safe and secure from outside threats, such as spyware or other malicious software. Another example includes the delivery of essential satellite communications equipment to the medium endurance Coast Guard Cutter Bear. Members of the C5ISC worked with other offices to provide the Bear, the important backup Military Satellite Communications (MILSATCOM) system it needed to deploy on-time, despite tight time constraints.

Additionally, the C5ISC shared services divisions and product lines partnered with cyber operations and the Eighth District to provide a unified C5I response, which supported contingency operations for Hurricanes Isaias, Laura, Sally, and Tropical Storm Beta.

The C5ISC workforce has been aggressively working to improve the Coast Guard’s information technology infrastructure. More specifically, they have been working to identify the constraints within our external network connections that impact our capacity in the information technology arena and overall cyber resiliency. This became even more apparent during the COVID-19 pandemic and the subsequent increase the Coast Guard workforce’s teleworking. This dramatic increase in using the Coast Guard’s external network highlighted gaps that the C5ISC is now better placed to resolve, thanks to a more streamlined and cohesive set up. Through various partnerships, including Cyber and the Defense Information Systems Agency (DISA), the C5ISC has made significant headway improving the Coast Guard’s ability to meet missions and strategic goals as outlined in the Technology Revolution Roadmap.

If you have access to the Portal, more information on the C5I Service Center can be found here.

Resources:

Seapower’s July/August Coast Guard Issue.

Posted on by
1

USCGC Stratton (WMSL-752), left, and the U.S. Navy Arleigh Burke-class guided-missile destroyer USS McCampbell (DDG-85) maneuver in formation during Talisman Sabre 2019 on July 11, 2019. US Navy Photo

The July/August issue of the Navy League’s magazine Seapower included a lot of Coast Guard content. I will not try to cover everything included, much of which has already been covered here, but I will mention a few things that stood out for me.

The Commandant’s Interview:

There was an interview with the Commandant, Admiral Schultz, that I found most interesting. There was a fair amount of information that was new to me.

Icebreakers:

Perhaps most significant was a comment regarding the Medium icebreaker.

“We also are looking to build probably a medium breaker, potentially what we’re going to call the Arctic security cutter — a little less capability in terms of icebreaking, but that capability would get us back to being an Atlantic and Pacific icebreaker Coast Guard.(emphasis applied–Chuck)

It may be that, if this ship is intended to transit the St Lawrence Seaway and work part time in the Great Lakes, like Canada’s proposed six “Program Icebreakers,” it would preclude the option of simply building six Polar Security Cutters rather than the three heavy and three medium icebreakers called for in the High Latitude Study. Alternately we might have four heavy Polar Security Cutters (PSC) in the Pacific and two Arctic Security Cutters (ASC) in the Atlantic.

The interview goes on to state, referring to its planned five year long progressive service life extension program, “…we could keep the 44-year-old Polar Star around here probably through the end of the decade if things go well.” (emphasis applied–Chuck)

The Western Pacific:

The Commandant noted that the Coast Guard had advisers in the Philippines, Vietnam, Fiji, and that an additional adviser would go to Malaysia and an attache to Australia to work with Australia and New Zealand. That there would also be an advisor assigned to Guam to work with the Commonwealth of Micronesia and the Federated States of Micronesia.

The Coast Guard is becoming more involved in countering Illegal, Unregulated, and Unreported (IUU) fishing, and will be providing leadership in international forums.

In reference to the forthcoming Tri-Service Maritime Strategy the Commandant said we could expect, “…to see the Coast Guard bring some unique capabilities to that conversation, particularly in the Indo-Pacific region.” 

Unmanned Systems:

Regarding land based systems the Commandant noted, “..we’ve completed prototype deployment of ScanEagle in Puerto Rico and Texas.” and “We teamed with U.S. Southern Command and CBP and employed one of those (MQ-9–Chuck) in an operation out of Panama that proved tremendously successful.”

He also mentions the possibility of using UAS of all sizes and mentioned the possibility of unmanned surface systems as well.

Cyber:

Sighting the FY2021 budget, Admiral Schultz said, “That is one of the biggest growth areas for humans in the Coast Guard here in the past budget cycle or two. There is somewhere north of 150 additional cyber warriors in the budget before the Congress right now.” 

“Insitu’s ScanEagle Performs ISR for Coast Guard”

There is a short one page report on the use of ScanEagle. It notes that ScanEagle is currently installed on six National Security Cutters and will be installed on all NSCs.

“A standard pack-out for a deployment of three ScanEagle UASs. The sensor systems include an electro-optical/infrared camera, a laser pointer, a communications relay, an automatic identification system (AIS), and visual detection and ranging (VIDAR)–a surface search capability.”

Interesting that it includes a laser pointer on the Coast Guard aircraft because that is usually used as a designator for laser homing weapons.

“The Era of the New Cutters”

This was a three page story, most of which is familiar to regular readers of this blog, but there was one nugget I had not seen before. “…the Coast Guard still will need to pursue a service-life extension program on six of the ships to ensure sustained fleet capability until the OPC program is finished.”

This almost certainly refers to the service life extension program (SLEP) for 270 foot WMECs. This is, I believe, the first time I have seen a number of ships mentioned, so not the whole class of 13. Notably it is only six so don’t expect a SLEP for 210s. They will soldier on in their current configuration until their long delayed retirement.

“Coast Guard Pursuing Ambitious ‘Tech Revolution’” –NationalDefenseMagazine

Posted on by
1

National Defense Magazine is reporting the Coast Guard is planning major upgrades to its connectivity.

Improvements are planned for both routine reporting and staff work and for Command and Control,

“The Coast Guard was slated to transition to Microsoft Office 365 this spring to increase email reliability. Plans also include making internet speeds 50 times faster this year and improving ship connectivity over the next three years, Schultz noted.”

Plus there will be additional Cyber expertise.

“President Donald Trump’s fiscal year 2021 budget request calls for adding 179 cyber personnel to the Coast Guard’s existing force, Schultz noted. The service currently has about 360 cyber personnel, and about 50 or 60 are coming on board this year.”

However, the Coast Guard isn’t just looking to play defense, he noted. It wants to conduct its own cyber attacks against adversaries.

Presumably all this will include better connectivity in the polar regions. The Healey was reportedly out of contact for long periods during her last trip to the Arctic.

Recently sections of the Rescue 21 system were down for prolonged periods in Alaska. We don’t want that to happen.

“MTR100: #2 Admiral Karl Schultz, Commandant, USCG” –Marine Technology Reporter

Posted on by
Reply

Coast Guard Commandant Adm. Karl Schultz visits with Coast Guard crews stationed in New York City. U.S. Coast Guard photo illustration by Petty Officer 1st Class Jetta Disco.

The Marine Technology Reporter has a short article about Admiral Schultz, largely based on an interview. It is primarily concerned with the Coast Guard’s relationship to the larger Maritime Industry and Infrastructure.

Keeping the commercial maritime waterways humming means business for the subsea community, and a quick ‘by the numbers’ look at the U.S. maritime industry is enlightening and puts the Commandant’s mission in perspective: 95,000 miles of shoreline, 25,000 miles of navigable channels, 361 ports, 50,000 federal aids to navigation, cumulatively support more than 30 million jobs and $5.4 trillion in economic activity.

The Commandant also discussed the cyber threat and what the Coast Guard is doing about it.

“Think about automated ships and facilities. With those automated ships and facilities comes risk, technical and cyber risk. With all of the technology comes increased vulnerability. We’re building out our cyber capability at the Coast Guard. I have about 300 positions today on cyber at the Coast Guard, and the 2020 budget has about another 60 bodies as we have to defend Coast Guard networks from attack and we have to bring a cyber regulatory face to the waterfront. We need to build our own technical experts in this area” and to that end there is a new cyber major at the Coast Guard Academy, with the class of 2022 being the first with graduates with a cyber degree.

Thanks to Lee for bringing this to my attention. 

A Conversation with Admiral Karl Schultz, Commandant of the U.S. Coast Guard–CSIS

Posted on by
4

CSIS and the United States Naval Institute (USNI) conduct an interview with Admiral Karl L. Schultz, the 26th Commandant of the United States Coast Guard, conducted 1 August, 2018.

Below I will attempt to outline the conversation, noting the topics and in some cases providing a comment.

The first question is about immigration. Coast Guard is the “away game.” minimizing the factors that push immigration to the US.

The Commandant does not expect a substantial increase in help from the Navy, because they are already heavily tasked, but would welcome any additional help.

06:30 Talk about Inland fleet. Congressional support is evident. $25M provided so far.

9:20 House Appropriations Committee decision to divert $750M from the icebreaker program to fund “the Wall” in their markup of the FY2019 budget bill. The Commandant is “guardedly optimistic”

11:30 Human capital readiness? Operating account has been flat and effectively we have lost 10% in purchasing power. Want to increase leadership training.

16:30 Support for combatant commanders.

18:00 Capacity building and partnering. Detachments working on host nation platforms.

21:00 Defense Force planning–Not going back to the MARDEZ model.

22:30 Situation in Venezuela/Preparation for dealing with mass migration.

24:30 Arctic forums–Need to project our sovereignty

29:00 UNCLOS

30:00 Maritime Domain Awareness (MDA)

32:30 Tracking cargo as an element of MDA

34:00 Cyber

36:15 High Latitude engagement/partnerships.

39:30 Perhaps the icebreaker should be the “Polar Security Cutter?”

40:00 International ice patrol, still an important mission.

41:00 CG role in response to Chinese aggressiveness in the South China Sea. In discussion with Indo-Pacific Command. Will see more CG presence there.

44:00 Offshore Patrol Cutter (OPC)–on track

46:30 Border issue — passed on that

48:00 Small satellites–we are looking at them

49:00 African Capacity building/cooperation. May send an MEC.

51:30 Tech modernization. Looking at it more holistically.

Other Coverage:

This interview prompted a couple of notable posts.

SeaPower’s coverage of the discussion is here. They focused on the growth of demands on the Coast Guard.

Military.com reported on the possibility of a greater Coast Guard role in South East Asia and capacity building in Africa. It probably should be noted that the title, “Coast Guard Could Send Ship to Pacific to ‘Temper Chinese Influence’,”is a bit deceptive in that the Commandant’s remark about tempering Chinese Influence was in regard to Oceania, the islands of the Central and Western Pacific. The Commandant was quoted in the Seapower post, “In the Oceania region, there are places where helping them protect their interests, tempering that Chinese influence, is absolutely essential.”