SECDEF Memo—June 30, 2023
Overview/Background
On June 30th, 2023 the SECDEF issued recommendations after a 45-day review of the Department of Defense (DoD) security programs, policies, and procedures, which he directed on April 14, 2023. The review stemmed from the disclosure of classified information by Jack Teixeira, who was arrested and charged with six counts of sharing highly classified military documents about Russia's war in Ukraine and other top national security issues in a chat room on the online community Discord. The examination aimed to improve the safeguarding of Classified National Security Information (CNSI) and address areas where accountability measures can be enhanced to prevent the compromise of such information. The review recognized the overall trustworthiness of DoD personnel with access to CNSI but identified areas for improvement.
Implications
A key finding of the memo refers to threats related to personal and portable electronic devices and Wireless Intrusion Detection Systems (WIDS) systems, which can detect and mitigate their impacts. By September 30, 2023, users of SCIFs and SAPFs were required to certify their compliance with policy prohibiting the use of electronic devices in these spaces. Systems for detecting and countering potential breaches (e.g., WIDS) will need to be in place by September 30, 2024. By August 31, 2023, collaborative efforts also shaped a plan to optimize security training content and effectiveness.
To learn more about how Bastille can help you, click here.