Security Sales & Integration April 2022 - 42

Management
Commercial
Cybersecurity Program
The security
integrator's
role will change
dramatically.
Along with the
CSfC program
comes a role of
the CSfC trusted
integrator.
Trusted
integrators
support the
client in the
implementation
of the various
CSfC CPs to
ensure secure and
proper solution
functionality.
implemented within a system. End users benefit
by using CSfC solutions that have been
well-vetted and that eliminate ambiguity in
architectures that are incompatible or do not
achieve the mission assurance objectives that
the system was intended to perform.
Some of the available CPs include:
▶ Mobile Access
▶ Campus Wireless LAN
▶ Multi-Site Connectivity
▶ Data at Rest
▶ Wireless Intrusion Detection
▶ System/Wireless Intrusion Prevention
End users also benefit by using CSfC CPs offering
organizations to implement high assurance
risk models to reverse the attack surface
and enable you to confidently meet stringent
regulatory requirements. This also provides a
clear understanding of system functionality,
and predictable, reliable, operation and functionality
within the environment.
To illustrate how CPs work, we will use the
Multi-Site Connectivity (MSC) Capabilities
package (see diagram). The MSC package consists
of a nested, layered encryption package
known as the black, gray, and red network. The
NSA has approved this package as a remote
tool that can securely connect users from an
untrusted network (i.e. the Internet) to other
secure networks that are secured at different
security classification levels. The black network
can be managed by an untrusted third party,
however, the solution owner must be able to
block any unwanted protocols.
One specific use case outlining the benefit
of CSfC is the ability for IT support personnel
from within the intelligence community
and military to work from alternative or Work
From Home (WFH) environments. Previous
requirements to perform classified support required
onsite customer visits. Using a WFH
environment can result in 40% operational
cost efficiency and productivity increases by enabling
a remote workforce capable of performing
classified operations remotely.
Impact to Integrators
A strong case could be made that every organization
in the U.S. (regardless of size, revenue
or sector specific market) should consider and
evaluate what their security objectives and requirements
are to determine if they can shift
to adopt a trusted computing model and CSfC-approved
CP. This represents a challenge
42
Security Sales & Integration APRIL 2022
to the security systems industry to modernize
IT infrastructures and immediately transition
to next-generation systems and services. This
undertaking will include capital, workforce
reskilling and a comprehensive review of common
interoperability platforms.
While the disparity of system types and deployment
models is very wide, evolution and
adoption of software-defined networking,
Cloud computing and emerging technologies
that include AI and blockchain leverage stronger
mechanisms for audit, access control, protection
of data at rest and overall information assurance.
The security integrator's role will change dramatically.
Along with the CSfC program comes
a role of the CSfC trusted integrator. Trusted
integrators support the client in the implementation
of the various CSfC CPs to ensure secure
and proper solution functionality. To become
a CSfC trusted integrator, you must complete
a questionnaire and be interviewed by the
NSA CSfC Program Management Office and
demonstrate your proficiency, knowledge and
program level understanding to implementation
of conformant solutions.
Remaining Vigilant
Shifting to CSfC will be no easy task, especially
during the global pandemic, and now emerging
military conflicts in the East, resulting in
increased cyber-network exploitation activities
against the U.S. However, the benefits of deploying
far outweigh the cost avoidance and risks.
Declining cost and greater levels of interoperability
and security make it imperative to deploy
best-of-breed, verified product components and
integrated technologies available immediately.
Lengthy testing and evaluation within individual
organizations is not viable with the current
adversarial threats we now face.
Benefits from the deployment of these CSfC
solutions include supply chain validation and
formal technical approval by government-approved
validation labs that use stringent test and
performance metrics to determine the suitability
of end-to-end integrated products that specifically
address the organizational mission need. Anyone
that requires high assurance cybersecurity
would be well advised to use CSfC solutions as
a baseline to increase their security posture. SSI
DARNELL WASHINGTON (dwashington@
securexperts.com) is President and CEO of
SecureXperts.
securitysales.com
http://www.securitysales.com
Security Sales & Integration April 2022

Table of Contents for the Digital Edition of Security Sales & Integration April 2022
