System Security (SysSec)

The System Security (SysSec) directorate in the Science and Technology (S&T) Program Protection (STPP) Office focuses on policy and practice to ensure DoD systems are resilient to advanced cyber threats. SysSec considers security and protection through all phases of a system acquisition, from requirements through design and production to sustainment and disposal of military systems that may operate in physical or cyberspace domains.

SysSec influences standards, specifications, methods, and data requirements to ensure the security of engineering activities, considering both malicious and non-malicious activity.

STPP partners with the Office of the Under Secretary of Defense (OUSD) for Acquisition and Sustainment, the OUSD for Intelligence, the DoD Chief Information Officer, industry, academia, and engineers and technologists across the Department to bring innovative practices and solutions to the engineering and technology workforce.

     Objectives

  • Lead program protection planning and system security engineering policy and practices to mitigate the compromise and exploitation of advanced warfighting capabilities, mitigate malicious and non-malicious activity to mission-critical hardware and software in DoD weapon systems, and safeguard DoD-controlled technical information from exploitation through cost-effective countermeasures
  • Foster DoD engineering capability and convergence across secure cyber resilient design methods and anti-tamper protections for critical program information and controlled technical information practices and for mission-critical hardware and software assurance tools and technologies