Pentagon to Streamline Cybersecurity Training, Cuts Worry Experts
The US Department of Defense is set to reduce and consolidate various cybersecurity awareness training programs, according to a recent memo from Defense Secretary Pete Hegseth. The changes aim to streamline training and focus on core military missions, but experts caution potential security risks.
The memo outlines several adjustments to mandatory training frequencies. It proposes eliminating the refresher training for 'Combating Trafficking in Persons' once appropriate legislation is enacted. Additionally, it suggests reducing the frequency of records management training and automating information management systems to minimize training requirements. The mandatory frequency for controlled unclassified information (CUI) training will also be relaxed.
Hegseth's memo emphasizes that all mandatory cybersecurity awareness training must be directly linked to warfighting. Any training that does not meet this criterion will be consolidated, reduced in frequency, or eliminated. This includes removing Privacy Act Training from the Common Military Training (CMT) list. The specific cybersecurity awareness training programs affected are not explicitly named in the available search results.
The memo also calls for the development of an integrated CMT program plan. Hegseth believes that current cybersecurity awareness training is a distraction from the core mission of warfare.
The Department of Defense plans to cut back on cybersecurity awareness training in various ways, aiming to focus on core military missions. While the specific affected programs remain unclear, experts warn that reducing security training could potentially expose US networks and troops to enemy cyber threats. The final impact of these changes remains to be seen as the legislation and integration plan are developed.
