Skip to main content

tv   NSA Director Discusses Cybersecurity Law  CSPAN  November 2, 2021 4:30am-5:32am EDT

4:30 am
you wear multiple hats as
4:31 am
4:32 am
the director of nsa, commander of cyber command. for the audience, could you describe what those organizations do, how they relate to one another and cooperate with one another, and what role each as in the cyber mission for our nation? gen. nakasone: great question, raj. let me begin with u.s. cyber command. it is one of the combat and commands, one of 11 that is the part of the department of defense. i work in that role for the secretary of defense and
4:33 am
president. think of us as doing three things. we defend department of defense networks and weapons data systems. you think, how big is that? we have about 4.5 million end points, 3.5 million users, about 600,000 mobile devices spread across classified and unclassified networks. we were very closely with the federal bureau of investigation and cisa to ensure the security of the nation's cyberspace. the final thing that we provide support to, all of our combat and commanders. whether you are deployed around the world, in europe, in the pacific, if you need cyber support, it will come from u.s. cyber command. that is the cyber command side. let me talk about the national security agency. next week, 69 years old. really, i would tell you we are a global organization. our focus is two part.
4:34 am
we do for intelligence, outside the united states, focused on signals intelligence. if it is on a wire, email, transitioning in cyberspace, from our adversaries, we are trying to gain insight. the second piece is we do cybersecurity. this is a part of the mission that is not well known about nsa. we do two very important things. first of all, we do all of the code making for the most critical and lethal weapons systems. think about our most lethal weapons systems, we are doing the actual coding for that to make sure we have assurances of being able to communicate, acknowledge and authenticate who is using those systems. the second piece is, we are very focused on the technical side, being able to identify and eradicate threats in cybersecurity with partners like u.s. army command. -- cyber command.
4:35 am
here is the big piece that is important. most people think that you just gather at cyber, and nsa. no, we have separate authorities, separate funding, separate oversight, and separate missions on both cyber command and nsa. but there are two things in common. one person that leads, and that is me. the second thing is we operate in cyberspace. so you say, why do you have one person leading both of them? because if you want to get to speed and agility and unity of effort, that is what it leads to. raj: that is really helpful and lays the groundwork for folks to appreciate the role that you f it in. you have been there since the spring of 2018. what are your priorities in each of those roles, and have they changed into stepped into them? gen. nakasone: i think i would imagine most of the speakers you talk to would say the highest
4:36 am
priority is talent. when you think about, at the national security agency, we hire well over 1500 people this year. u.s. cyber command, over 300 people. we are looking for the best of the best to come and work in a mission set that is so critical to our nation. people say, what do you think about? i think about talent, where do i get better talent? the same talent i'm trying to get is the same talent that is being wooed by private industry, other parts of the government. this is a big issue for us, and i'm sure we will talk more about it for us, but i think the way that we approach it as a government is good, but it has to get better if we are going to continue to maintain that high standard of talent. the second piece, readiness. i think about how we will do our missions better. let me give you an example. i talked a little bit about nsa,
4:37 am
for intelligence can imagine indications and warning are important to us. how do we ensure the intent of an adversary and perhaps their capability? nsa has been doing this for almost 70 years, and they do it extremely well, but that doesn't mean that we cannot get better at it. same on the cyber calm side, we have 103 teams that operate across the globe in support of many customers. how do i get them at peak readiness? that readiness that we are so accustomed to seeing in special operations forces. that is what i'm trying to drive here at u.s. cyber command and nsa. the last piece is partnerships. chris was on last week. no better person to talk about partnerships. i learned so much watching him in his role as deputy director, now as national cyber director, in terms of how you bring the partnerships together.
4:38 am
our partnership here begins with nsa and cyber command. when you operate in cyberspace, and you asked me what is different over the past three years, operating in cyberspace means operating with the private sector, international partners, operating with academia. this is a big piece of what we need to be able to do. there are a lot of contributing members. there are really substantial partnerships. raj: thank you for that. i want to return to the topic of workforce and town later. one question that comes to mind, you and anybody in this field could be burning a lot more money -- hurting a lot more money in the private sector -- earning a lot more money in the private sector. maybe you could speak to the motivation of the mission? gen. nakasone: one of the things that you realize with age, hopefully, and i have a lot of age now, is that there are
4:39 am
probably two important things about your job. the first is you have to get up in the morning and really enjoy what you do. that ties into the piece of mission. that is exactly what you want to be doing every day. every day that i get up, i'm excited to go to work, working with incredibly talented people, working in defense of the nation, we are thinking about cyberspace, thinking about how to get better. here is the other piece of the equation that is so important. who you work for and work with. i have a tremendous privilege over three decades to work with incredible leaders across the military and civilian sectors. a lot of them have been resident here at u.s. cyber command and national security agency. in terms of the compensation, it is the compensation from the mission i get to work on every day and the people that i get to work for. raj: that is great to hear.
4:40 am
i know a lot of young lawyers appreciate hearing what motivates you and what could be motivating them. you have talked a little bit about the landscape out there, partnerships you have formed as a director of nsa, director of cyber command. a lot going on in the last year even for folks reading the headlines, whether it is a solar wind events, ransomware, but there is a lot happening out there. could you tell us from your perspective what the threat landscape looks like and how he has changed over time? gen. nakasone: let me go back to when i first started working cyberspace exclusively, about 2009. 2009, 2010, as we were thinking about how you stand up cyber command, it was focused on this idea of espionage. we were concerned about people coming into our classified networks and stealing secrets.
4:41 am
over a period of a couple of years, we started to get concerned about threat actors that were doing disruptive attacks against us, like denial of service attacks against wall street. being able to utilize the medium of cyberspace to not only do these attacks but then move into the information sphere. coupled in 2015 with the realization of the hack of the office of personnel management, that we had lost so many records and so much data, we started to see the trend of cyberspace going from just espionage and disruption to the information sphere. what you talk about today, when you consider what our nation has been through in the past 10 months, solar wind, microsoft hack, jbs, zero day attacks, supply chain attacks, the scope and scale and sophistication of our adversary is different.
4:42 am
the key piece that i bring today is that, even in three years, we have seen a tremendous effort by adversaries to come into the medium of cyberspace and impact us. that is one portion of it. that is an important portion we have to be focused on. the other thing i would tell you, we have not been static as a nation either. the fact that this has all occurred, remember, this was 2009. we start to think about how we build capacity. how do we partner against targets like isis? how do we get into the security of our elections in 2018 and 2020? how do we build effective partnerships to get after ransomware? then of course the executive order that the administration has worked on.
4:43 am
this has changed dramatically on our side as well. it is one of those things that you have to look at both sides of the coin. raj: to your mind, does feel like we are at a turning point, inflection point, big picture? gen. nakasone: i think that is a really interesting question, and the good point. i think the american public is much more aware today of what is going on in cyberspace. we talked about cyberspace in 2010, 2012, 2015, a little bit with the elections. when a good portion of the gas pipeline on the east coast is being impacted by a cyber actor, i think there is a different feeling in the nation, that this is tremendously important, that we have to be able to get after it. raj: definitely entered many people's consciousness who were not thinking about this before. years ago, i worked on the 9/11 commission, and one of the
4:44 am
themes that came out of that was that terrorism before 9/11 was viewed as a law enforcement problem but really needed to be thought of as a national security issue. you have said ransomware used to be characterized as a criminal activity in a similar analogy, but today you see it as a national security issue, that our country should a search for. what is the distinction between criminal activity and national security threat? what would that look like? gen. nakasone: if we would have had this friday fireside chat a year ago, i probably would have said, i think law enforcement has as well in hand, they are working ransomware. what has changed over the last year, i come back to this idea of our adversaries in terms of scope, scale, sophistication of what they are doing, ransomware is an event that affects so many. to your point of an inflection
4:45 am
point. this is affecting the local level, the government, private sector. this is affecting national security. when i talk about ransomware and think about it, if it has that brought of an impact, it is able to impact our critical infrastructure, certainly, it has to be a national security issue. to your point, the next point of the question, so what does that mean? i think it means the nation brings all of its instruments capability to bear on a problem like this. as i look at that -- and one of the things that we have said -- if this is a affecting the nation's security, nsa and cyber com will want to be in the middle of it. anything we can do to assist the department of homeland security, cisa, we want to be the best partner. what does surge mean? when we surge, we bring our best
4:46 am
people together, focus on a singular problem, look at different and creative ways to get after that problem, how do we share information on that, how do we perhaps impact that to the betterment of the nation. surges are one of those things that i think we do very well here, particularly on a focused problem like ransomware. raj: if you had in your mind's eye a vision, where do you think we had with ransomware? i have clients that say, will this ever be over? it is hard to imagine a moment when it will be over, but how do we live long term with this threat out there? gen. nakasone: again, if this is a national security issue, there will be a number of different levels we will operate in, be able to go after this. certainly, there will be a policy level in terms of what we need to do. the national security council is working that very hard, developing what are the right
4:47 am
policies that we have to develop, both within the united states and with our adversaries. i think there is, in the middle, a huge effort going on between public and private. how do we communicate better with private industry? how do we work with private industry coming back to us? what are the responsibilities of what we need to provide as the public sector to the private industry, and similarly, what does the private industry have to offer to the public sector? a lot of it is about awareness. about the individual level of, are you aware of it? are we taking all the different necessary steps that protect our individuals and local businesses and local governments from what really has been a very difficult issue over the past 12 months. raj: you mentioned public-private corporation, so
4:48 am
maybe that is a good topic to turn to. in particular, critical infrastructure, which is the core of our national security concern, seems like an area that is ripe for public-private cooperation given that much of our infrastructure is owned by the private sector. maybe you could expand on how you think the public and private sector could work together in this space for the common good, and what role do the public sector, particularly nsa, cyber command play in that regard, and what would you like to see? gen. nakasone: you hit the first point. about 90% of our critical infrastructure is in the private sector. within the public sector, that is fact number one. we have to understand, if we are going to ensure the defense of that critical infrastructure, we need to have a partnership with the private sector. the other piece is, for us at u.s. cyber command, national
4:49 am
security agency, we are focused on two different ways of doing this. how do we enable our partners and then act? enabling our partners. as i talk about nsa as an ability to garner foreign intelligence, provide technical intelligence and expertise on cybersecurity, why don't we enable our partners with it? i would perhaps amend one thing. what are we doing today? let me give you an example. january 2010, nsa discovers a significant vulnerability in windows 10, and provides that to microsoft. one of the unique things is we took credit for doing that. you might say why did you do that? i am sure that there were people telling you that you shouldn't do that. the reason that i decided to do that was because i think there is a certain importance that goes with our technical expertise, when we stand behind something and say, this is a
4:50 am
bone ability that we at the national security agency have found. we have taken that idea and also expanded it into, how do we do threat advisory? we have done a number of cybersecurity advisories with fbi, dhs, cisa, and we say these are the activities, tradecraft of what the chinese are doing, the top 25 issues with vulnerability, or this is what select russian actors have done. all at the unclassified level. i think that is a really important piece of what we have done at the nsa. let me go to the cyber com side. much has been talked about, hunt forward operations. in 2018, we decided to send a series of teams to different parts of the world at the invitation of our friends and allies, to assist them to hunt on their networks with them. we were able to find a series of malware. when we found that malware, we provided it to a commercial
4:51 am
cybersecurity provider that rapidly spread information to all other cybersecurity providers. think about that. you just inoculated a lot of networks based on malware that we were able to find that our adversaries were using. that is the type of work we have to do to enable and act in terms of being able to assist the private sector. if i might, i know a little bit long-winded, let me talk about the private sector. a couple weeks ago, i was able to speak with kevin at his conference. we highlighted the fact that during the solar winds intrusion, the tuesday before thanksgiving, kevin came into nsa to say i think we have a problem here. he came to nsa to have that discussion because the partnership was tight. he knew exactly what we could do, we had worked with him.
4:52 am
then we were able to put the pieces of the puzzle together with kevin. think about that. someone with that type of expertise coming forward and working with us, and then much to kevin's credit, going public and talking about this intrusion. that is an example of really effective outlook-private activity. raj: thank you. it sounds like a core theme is the collaboration happening, whether it is the tri field products going out to the government or the public and private collaboration. gen. nakasone: can i make one follow-up statement? because i think it is important, and really a credit to the work that kevin and so many did. if you are an adversary, the success of being an adversary is not being found. being able to expose something like solar winds, that was able to take down what had been a very broad attack against so
4:53 am
many different sectors of our nation, and then being able to find it and expose it, that is a loss for our adversaries. that is credit to the private sector and some of the folks here working at nsa and other parts of the government to be able to expose them. raj: that's a really interesting point. we read a lot about exposures of campaigns that are out there, and a pessimist might say, another thing is happening and we have now uncovered it. to your point, exposure and attribution, calling adversaries out, can be viewed, and is viewed as a success, i take it. gen. nakasone: in a perfect world, we always want to be left of theft. to the point of, were you trying to drive the agency in command? we want to be that ready and able to do that. but we also have to put this in perspective as well.
4:54 am
when you're able to uncover that, when you're able to inoculate so much of our cybersecurity end points in terms of our malware, we have to take that into equation as well. raj: one theme we are referring to is collaboration, and there are a couple of relatively new centers at an essay and cyber command. the cybersecurity collaboration center, and then something at cyber command. could you tell the audience about what these efforts are, what they are really about? gen. nakasone: you asked me previously, what has changed in three years? when i came to the agency in the command in 2018, one of the things that was pointed out to me was that this city to get the ideas outside of the agency and command into the agency and
4:55 am
command. dreamport is a good example. u.s. cyber work closely with the maryland innovation security institute. we bring together both our developers and the private sector to talk about our most pressing problems. if we are talking about zero trust architectures, identity management, talking about how is the best way to architect the networks of the future, it is done in a place like dreamport where you park your car, walk inside, have a discussion. it is different than coming to our headquarters where you cannot park your car and walk inside and have a discussion. that is the same idea that really motivated us to think about the cyberspace collaboration center for nsa. we wanted to have a place where we could bring private industry, people from academia, other partners to have a conversation,
4:56 am
whether in person or virtually, to be able to do this. if you are thinking about cybersecurity, and so much of the talent and work being done is also being done on the private sector, we certainly don't have a monopoly on that. what we have found is working at the cyberspace collaboration center, which is less than two years old, our focus is the defense industrial base. the portion of our critical infrastructure that is really fine tuned to providing us capabilities in the department of defense. we have over 100 partners, working day and night, doing two things. first of all, getting information, and then sharing information. that is the hole in valuable piece of having centers like this, to have the public-private partnership. raj: you referred to the ease of meeting with people, driving your car up to a building, and for folks on the outside, nsa and cyber command feel like
4:57 am
impenetrable classified environments. these centers sound like great strides forward to have these kind of discussions. to my mind, it seems unimaginable a few years ago. can you talk about the challenges of breaking through that sense of secrecy at nsa, cyber command to facilitate something like this? gen. nakasone: i think, raj, when you're really speaking to is culture. how do you change culture in terms of what is transpiring in the environment? i would offer a team effort. as we were operating in cyberspace for a number of years, the government didn't have the monopoly necessarily on great ideas. we saw so much being done in the private sector. we came to the realization pretty quickly that if we are going to be effective in being able to work with this series of partners, we had to have this capability.
4:58 am
we had a lot of discussions, but at the end of the day, i get great credit to the leaders at the agencies and command to get these things done. and we have learned a lot. if you think about what is the private sector thinking of us? that is an interesting question. one of the things that i think they believe about us is, there are couple of really valuable things. one, we bring the insight of foreign intelligence. the insight of foreign intelligence, that is the secret sauce that is really in the cyberspace collaboration center. secondly, we bring huge talent, whether on cyber command or nsa side, being able to talk to someone that has that level of expertise, that has looked at the development of a network, variations of malware, pretty powerful. the last thing is, there is a greater appreciation that our
4:59 am
focus on getting to an outcome is raj: i have a question from the audience. traditionally, the intelligence community's greater successes are closely guarded secrets. how do you figure out how transparent the nsa can be when it succeeds in uncovering and adversaries cyber operation? how do you strike that balance between secrecy and being transparent with the public and partners? gen. nakasone: that is an excellent question. our agency has changed over the past several years. i think first of all i would tell you that be there no doubt within the one in the nation
5:00 am
that our fundamental commitment to civil liberties and privacy and the fourth amendment is rocksolid. it is something that we swear an oath to and that we trained to, that we have oversight to, that we take extremely seriously. i think when we consider what is it exactly that we need to share, it does begin with the idea that is this going to the able to have a positive impact on the security of the nation question mark that is where i begin. certainly there is a number of different factors that play into that, the sources, methods, what might be the second quarter effects but it comes down to is this going to be the betterment of the security of the nation, so it is an easy way of saying that in a much more complex process as it plays out. raj: i am sure you are living it
5:01 am
everyday. earlier we talked about the surf national cyber director, and he obviously is an alum of the nsa having previously served as deputy director and we has -- we have also alums now with jenny seeley heading --deputy national security adviser for cyber. could you tell us a little bit how nse -- nsa interacts with the office of the national cyber direction -- director? gen. nakasone: we are proud of chris and jen and ann. to be named to those positions that are in the leadership of what we are doing is great credit not only to them but to our agency and the weekly --work we have done for many years. chris could not have been a better choice in terms of being the national cyber director based upon his work on the
5:02 am
commission. right now being able to bring together so many different players in how we defend the nation in cyberspace in the thought process of what are the unique values that each element of the government brings, so we as an element of the department of defense are very closely working with chris and in both our role as national security agency and as u.s. cyber command. chris has done a great job to really start to bring together the key players of how we do this as we take a look at the vulnerabilities that our nation has. jenny has both the responsibility for our 16 sectors of infrastructure and defending the .gov and now with the program that she has put together and the partnership
5:03 am
with the private sector, that ties closely to our cybersecurity director. being able to have the conversations where we have folks at cisa and cisa has folks here has been powerful. i would add another piece that we did not mention but that is really important, the fbi. under the direction of chris right we have worked closely with the fbi and since a beginning with the elections, but the power of what they do and being able to bring their talent and their capabilities together with what we are doing has proven to be very effective. raj: thank you. i will ask a little bit about the cybersecurity director, but before i do, maybe a little inside baseball. i know that you and others were involved in standing up to cyber command and now could you tell us a little bit about your role back then in helping to set up
5:04 am
cyber command? raj: in two thousand nine, in march, chris english had called down to my office and asked that i come out to talk with him. little did i know in march of 2009 that really what he was talking about was putting together an idea to stand up to this command that became known as u.s. cyber command. between myself and jenny and tj and major general davis, we worked for about 13 months to put together the construct that became approved as u.s. cyber command. raj: that is fantastic. it is obviously a success, and you get to live with that, but any failures? let me ask you a little bit about the cyber security director. can you tell us what that is at
5:05 am
nsa, the role, and why did you look to stand it up? gen. nakasone: as we talked about at the beginning, the national security agency has two missions, to forward intelligence and the other is cyber security. when i arrived, one of the things that i came to the realization is that we had lost a little bit of our way in cybersecurity, and i wanted to reinvigorate what i felt was going to be an important mission for our agency. the best way that i knew how to do that was to put one person in charge, to give them the resources and also the mission, to make sure that they were successful. in the fall of 2019 we stood up the cybersecurity director under the leadership of ann newberger and from that, we decided that as we moved forward there were two elements that the director
5:06 am
was responsible for. one was the prevention pizza, going back to making code, the encryption mission. the other piece was a new piece, the eradicate piece. people said eradicate? what we want to be is not reporting on threats, we went to get to the outcomes against those threats. so that word was the second piece of what cybersecurity is responsible for. how do we look at an adversary and how to use a number of different partnerships, capabilities to be able to get after them, and hopefully with a true end state of being able to eradicate that threat. raj: maybe this would be a good time for a question from the audience. what are the nsa and the
5:07 am
community doing to help eradicate the ransomware system? gen. nakasone: i think the first piece is generating insights paid one of the things that we have learned, particularly in the work in election security is you have to know the adversary better than the adversary sometimes knows himself who are the actors, why are they operating from, what are their capabilities? and how do we bring more partners into what is a very difficult mission, so to the point of if you are looking to have an impact against ransomware, you need partners beyond nsa and cyber command. how do we be able to get dhs to co-sale aligned and what we are doing and work in collapse and --collaboration so rapidly? what we have found is speed matters when you're dealing with adversaries like this.
5:08 am
so that is what we have really focused on and i would tell you that we continue to work that extremely hard because as quickly as we are moving, the adversary is moving as well. raj: that ties nicely into another question from the audience about speed of the threat. unlike some other military domain, you spoke about readiness earlier. could you speak about how the mindset needs to be adjusted and mobilization needs to happen differently when it comes to cyber security as opposed to other traditional military domains? gen. nakasone: let me give you a story. this is important to illustrate perhaps as the question has alluded to this idea of new thought. in the fall of 2020, we worked closely with the connecticut national guard.
5:09 am
that connecticut national guard was working with u.s. cyber command through a capability we call the cyber nine liner, the capability to provide information about activities that you might be seeing. identifying ransomware rapidly in connecticut, these guards were able to wring us information to cyber command and able to search on it and working in partnership, and all credit to the connecticut national guard, they were able to be able to obviate a threat to public school system in a significant portion of connecticut. this is the fall of 2020, as kids are getting ready to go back to school. for me, in 2018, when someone would say put speed, i probably would not have thought speed like that. that is an example of that program where the capability was so quickly able to identify and
5:10 am
then some capable people being able to address it. raj: a great way to relate it. thank you. i will turn to some other questions, but i wanted to return to this question of the workforce, since that was something we discussed earlier. what efforts are being done to develop this cyber work foss -- force, and are the things you think we could be doing better at least from a government perspective? gen. nakasone: let me start from the latter portion. if someone would say explain to me about the ecosystem of talent management for both the command and the agency, i would say we do a tremendous job of being able to recruit people. we do not have a shortfall in trying to find people that want to work with us or for us. then we do an equally good job of training these people.
5:11 am
retention, that is more difficult in terms of trying to retain someone. i will come back to that in just a second, but there is the area that we really are struggling with that i think we have to address, how do you allow them to rejoin you? if you leave the government sector and go to the private sector, coming back is difficult, not something that is easily done, and it takes a long time. how do we do that more quickly, encourage people that perhaps are not like me, but want to leave and want to come back, i what those people back. i want them to come back rapidly with all of the insight of what they've done in the private sector and come back and be able to do what they want to do in our missions state street that is something that we just have to get after. i think we will, but it is
5:12 am
something that your last point is a challenge. now back to the first point, what really matters is i heard bill mcraven just recently talk about the greatest national security threat to the nation. you would think you could name different things. what he said was k-12 education. interesting. i was thinking, one of the things that we work hard at nsa is to develop these cyber generation caps -- camps with the national science foundation and others to be able to across the country encourage young people that science, technology, engineering, mathematics, is a great place, and the opportunities are unlimited. it is this idea that really gets the ill -- to bill's point, that coding is cool and the idea that you have a future at a place
5:13 am
like cyber command or nsa, whatever it is, it is this population of the folks that we need in the future. see the numbers now. we are short. this is one of the ways that we are interested in and one of the ways that we hope to generate interest. raj: that is well said. i have a 10 of questions from the audience and i will pose a few to you in the time that we have. the first has to do with -- are the things that you would like to see from congress? whether it has to do with approval, and i guess i would just ask you how do you view the bipartisan issue dynamic when it comes to cybersecurity?
5:14 am
clearly washington is a pretty partisan place and cyber security may be one of those areas that lends itself to cooperation. i welcome your thoughts. gen. nakasone: in terms of the policy, i think this is best left to chris english and and newberger and those that deal with the policy framework. where i see it as an operational leader are some of the work that has been done on both the senate committee and the committee on intelligence to generate new capabilities, that allows us to hire people more rapidly. we welcome those and those have been beneficial to what we have done. in terms of cybersecurity, no doubt, it is an issue that everyone is focused on. i think everyone agrees this is a critical piece, so in my role i see it as being able to not
5:15 am
only report on a problem, but what we are doing about it in terms of my role as commander of u.s. cyber command. clearly a lot of interest on the hill and other places on cybersecurity. raj: another question has to do with international norms, and without getting into this the best civics -- specifics, but as an operational leader, you think there any rules of the road out there when it comes to foreign threat actors or really have we not set any guardrails, and are you seeing at least operationally, people are willing to do almost anything? gen. nakasone: i can speak from where i sit as the director of nsa, we have norms that we abide by and we obviously abide by the laws and the rules of how we operate. i think that one of the things that we certainly have learned in the past several years is
5:16 am
that persistent engagement, the ability to operate in cyberspace against adversaries is an important way in which our adversaries understand what is important to us. i think the work that we have done in events like security of elections is important to that. raj: you mentioned persistent engagement. we have a question about the defense department defend forward strategy. could you explain that, the import of that way of thinking. gen. nakasone: in 2018 that dod released their strategy and one of the elements of the strategy was this idea of defense forward, how do we operate outside the united states and the department to be able to identify threats and counteract those threats and ensure those threats perhaps did not come to the homeland. from that idea of defend forward, we at that cyber
5:17 am
command developed the idea of persistent engagement. persistent engagement is really two things, the ability to enable partners and also to act. so enable our partners, whether or not they are international or inter-agency or industry partners, and that is the ability to act, acting outside the united states. being able to disrupt the infrastructure of perhaps an attack by an advertiser --adversary coming to the united states. that is the idea of persistent engagement, ensuring that we are operating within the construct of the defense forward missions. raj: thank you. another question is about deterrence, and the question really is about getting your thoughts on the value of deterrence in cyberspace, sort of the operational goal and how you think we are doing in terms of deterring foreign threat
5:18 am
actors from taking action even more extreme than we are seeing? gen. nakasone: i began with the topic of deterrence, so that is not nuclear deterrence. they are obviously very unique things in their own right. i think, i talk about the domain of cyberspace and we are still learning about how to apply deterrence. one of the things that the secretary of defense is integrating deterrence, to use the partners, how do we operate in a way that is different to be able to impact. we have done that now in a series of operations. one of the things that i have learned and operating in cyberspace is that it is something that needs to be continuous, to be an operation that is always ongoing, whether
5:19 am
or not you are operating to build resilience or to give greater insights. it is something that you don't just stop and then in five weeks or five months or two years, decide to start operating again. this is a different domain. raj: thank you. i have a question about election security. i think i will frame it this way, could you discuss a little bit about the efforts that have gone into election security, and it feels from the outside that we have made quite a bit of progress, but maybe just describe what it looks like from your spot. gen. nakasone: in 20 18, as we were getting ready for the midterm elections, one of the things we had done is we looked back and said what are our adversaries doing in previous elections, and one of the things
5:20 am
that they were successful at, and what were their vulnerabilities, and one of the realizations we came to was if we were going to have success, we needed a strong series of partnerships. the first one we needed was between an essay and cyber command, the genesis of the birth of the --group, the best of the agency and the command underwent leader to be able to get after what was at the time we thought a very dangerous election oncoming. we had a success. the things that we learned was that we had success not because just u.s. cyber command and an essay or working together, but because of our partners. we were focused on one threat in 20 18, and i think the follow on question is what changed in 2020. our partnerships got bigger. it was not only just nsa and fbi and cisa.
5:21 am
it was broader partnerships within the federal and local and state government and also academia, being able to work with a series of good subject matter experts that understood the threat. and the big thing was a series of other threat actors that were operating, so again having that ability to work with partnerships and that ability to understand the threat and being able to have the ability to act i thought was instrumental in the successes that we had. raj: a few questions related to this theme of partnership and one has to do with international partners. if you could speak to what have we learned from our international partnerships, and where do you see that succeeding? gen. nakasone: certainly we learned a lot from our international partnerships. whether or not it is a very small group or whether not a broader group like nato, one of the first things that we learned is that there is talent everywhere.
5:22 am
when you go to a series of different countries, in europe or the pacific, the first lesson that we learned is that talent is not just here. we really have a series of insights that we garner from our partners that work in specific parts of the world. we learned this in our counterterrorism efforts against isis, operating with a series of different foreign partners that were seeing different variants of isis, they provided us a texture to the threat that we just did not have. i think on the cybersecurity piece, this was the second thing, that localized understanding of the threat that we did not have. the third piece is that there is strength in numbers, so when you are looking at an adversary, in the terms of trying to impact
5:23 am
them or whether it is ransomware, always better to have more than less partners. there is strength in numbers. raj: thank you. there are a couple of other questions about the theme of partnerships, and maybe i will boil it down to one question, if there is one thing you could ask for from the private sector, one way they could --with the government, what would be the one thing you want to make sure a lot of the private sector would take away? gen. nakasone: the tremendous partnerships that we need to develop with the collaboration center, jc d.c. for other major elements working in the private sector, this outreach to organizations like that, that is what is going to give us strength, what is going to have impact, where we went to be able to get to scope and scale.
5:24 am
if i might, in terms of our defense industrial base, we have tens of thousands of members of the base and being able to get to scope and scale is being able to work with key partners that have the ability to have so many. we want that same ability, and i am sure that jen feels the same way. the major partners being able to have those partners work with others, that is the critical piece that i think gets us to success. raj: having spoken with you and chris and jen over the last couple of weeks, to my mind, there is a shift from information sharing to more operationally oriented collaboration, whatever that may mean. is that a fair way to think
5:25 am
about it? is that a concerted effort among these partners to try to move forward from the old school days of just information sharing? gen. nakasone: i don't think --we are not going to information share out of the problems that we see today. we have to think innovatively. one of the things that we might be able to provide, whether or not it is being able to do scanning against a series of partners, or whether or not there are other pilots that might be able to identify malware, or what we might be able to do in terms of domain name services, and ensure they are not impacted, these are all services that we have seen other foreign partners and allies do that have been able to be effective. i think moving from awareness to action, that is the key piece that we want to be at. raj: thank you. we are very mindful of your time so i went to close with one last
5:26 am
question, which is cybersecurity is often a lot of doom and gloom. mere perspective, are you optimistic, and what is the best possibility about having some positive news in the future, maybe not tomorrow or the next day, but in the future in the cybersecurity space? gen. nakasone: i see a couple of things. i see a definite momentum. you talked about an inflection point earlier my think there is an inflection point, not only the fact that we have awareness that we have action that is taking place. leadership, a focus on being able to outreach into the private sector. we have had successes in election security and ransomware, all good indicators that we moved from awareness to action. i think action, while it has not been perhaps as robust as all of
5:27 am
us would like, it is momentum that i find heartening, and i think the last piece is that when i leave the store here and i walk outside and walk back to my office, i will pass a number of different offices that people are committed in working on a friday afternoon to be able to get to success. that is the spirit of what is being done here at nsa and cyber command. i am sure it is shared in other places in our government. i really do look forward to the future. raj: that is a positive note to close on. given everything you have on your plate, we cannot thank you enough. a huge thank you, and i will turn the floor to you. gen. nakasone: thank you. i think this has been a great opportunity to have a discussion
5:28 am
with someone that i have worked with and have eight tremendous amount of respect for. as we get ready to end cybersecurity awareness month, one of my great hopes for the future is that cybersecurity awareness becomes cybersecurity action. that is the key piece that we as a nation are moving towards and i look forward to having that discussion in the future. thank you. raj: thank you thank you thank you, sir.
5:29 am
5:30 am
5:31 am


info Stream Only

Uploaded by TV Archive on