CYBER_BRIEF.PDF

UNCLASSIFIED/-@R-OFHCHE-US=OhE— Doc ID: 6611716 WAYNE M. MURPHY DIRECTOR OF OPERATIONS PRESIDENT ELECT IC TRANSITION TEAM CYBER BRIEF Approved for Release by NSA on 02-22-2018 THE OVERALL CLASSIFICATION OF THIS BRIEF IS —FOP-SECRETSHOREONNGFORN— UNCLASSIFIED//F6R-6CFHCrAL SSE SORE

(U/-F6@00) NSA conducts 24/7 network defense activities to discover, characterize and counter threats to U.S. national security systems - (U) Foreign Intelligence (50 USC § 3038(b)(1), EO 12333, FISA) - Provides unparalleled insight into adversary’s plans, intentions, and operations ¢ (U) Information Assurance (EO 12333, NSD-42, EO 13587) - Advances security architectures, develops and operates unmatched cyber defense Capabilities and services, examines National Security Systems and evaluates their vulnerability to foreign exploitation UNCLASSIFIED//2OR-6-=16+4—6—-08-4

WHOM) 001081 108010 MIAO OROCN 1 Doc ID: 6611716 oa! oo 8 “4 % (U/A-OUG) NSA provides Computer Network Defense (CND) services. NSA currently has services deployed on National Security Systems, the Department of Defense Information Network (DODIN ¢ (U) Strategic Vulnerability Discovery - Comprehensive assessment of network vulnerabilities - NSA leverages threat intelligence to strategically assess networks —SHREL) Hunting and Finding - Persistent and on demand search for adversarial tactics, rebhniques and procedures and tradecraft - NSA postures itself in critical networks to identify advanced…

1m OC 7, Th NIGCA vi yeh. NIE 2 tt 2 YT a 0 att " pil =N pe 0)’ c NU 1 17791 18 Te IC | ’ y. | N1NG 010 ; 1 & oc ID: 66 e | PL 86-36/50 USC 3605 CURITY DOMAIN -- AS a= = 4" aie -- oi tt J io ie --" oi 5 -- (U/H-@¥E) NSA conducted[__| Vulnerability assessments/authorized hacking operations in 2016 using a combination of commercial and government tools. During these operations NSA continues to find routinely that basic cyber security “best practices” have not been implemented, or have been poorly implemented, in networks critical to U.S. National Security. (U) Common vulnerabilities present in c…

Doc ID: 6611716 EO 1.4.(g)

/p) | oO = Lu oO <x (=) = < w” — = Lu = = a < Lu [=m = = Lu = = [a Lu => oO oO ” a) GLOBAL CYBERSPACE | ¢ Investigate, attribute, disrupt and prosecute cyber ° crimes ¢ Lead domestic national security operations ° * Conduct domestic collection, analysis, and dissemination of cyber threat intelligence ° ¢ Support the national protection, prevention, ° mitigation of, and recovery from cyber incidents ° ¢ Coordinate cyber threat investigations DOJ/FBI LEAD FOR Enforcement Roles and Responsibilities i Ci Investigation & Coordinate the national protection, prevention, mitigation of, and recovery fr…

IPL 86-36/50 USC 3605 . i] f sures 07 VUUTOTU | | 4 E 7 i E 7 E 7 i i i JITUOTTUOTOOUTUUTE TIOTOE JOTOTOUTT OC DUO TUTUTOUG DU TVUOTOVR ee } . : e (U) Fragmented cybersecurity authorities/responsibilities across the USG e (U/E-OY¥O) Getting classified, actionable data into non-National Security system domains e (U) Salary/incentive limitations for employees with critical cybersecurity skills UNCLASSIFIED //-eR-6—=16+44—46—-0h1=¢