National Cyber Security Division

Last updated
US Department of Homeland Security Seal Seal of the United States Department of Homeland Security.svg
US Department of Homeland Security Seal

The National Cyber Security Division (NCSD) was a division of the Office of Cyber Security & Communications, within the Cybersecurity and Infrastructure Security Agency (CISA) in the United States Department of Homeland Security (DHS). [1] Formed from the Critical Infrastructure Assurance Office, the National Infrastructure Protection Center, the Federal Computer Incident Response Center, and the National Communications System, the NCSD opened on June 6, 2003. [2] The NCSD was disbanded some time before November 2023. [3]

Contents

According to Deputy Assistant Secretary Michael Brown, NCSD's mission was to "conduct risk assessments and mitigate vulnerabilities and threats to information technology assets and activities affecting the operation of the civilian government and private sector critical cyber infrastructures." This included "cyber threat and vulnerability analysis, early warning, and incident response assistance" for organizations in the public and private sector. [4] [ excessive quote ] NCSD carried out the majority of its responsibilities under the Comprehensive National Cybersecurity Initiative. [4]

History and leadership

The position of NCSD director was preceded by that of Special Advisor to the President for Cyber Security and chair of the Critical Infrastructure Protection board, initially led by Richard A. Clarke, [5] [6] [7] who was also chair of the pre-existing Counter-terrorism Security Group. [8] He resigned from this position on January 2003, succeeded by Howard A. Schmidt, who stepped down three months later. [7] [9] [6]

When the NCSD was created in June 2003, [2] Robert Liscouski ran the division while a permanent director was sought, and continued as assistant director until February 2005. [10] [ failed verification ] Richard Clark was initially offered the position, but refused, citing concerns that there would be too many bureaucratic layers between him and Homeland Security Director Tom Ridge;[ citation needed ] Schmidt also refused for similar reasons. [11]

Amit Yoran became the first director of NCSD in September 2003 and helped establish the division, but left in October 2004, [7] [11] [12] reportedly only giving one day's notice. [13] One of the division's deputy directors, Andy Purdy, assumed the position of interim director within a week of Yoran's departure,[ citation needed ] and Robert S. Zitz was put in charge day-to-day operations in July 2006. [14]

Upon Andy Purdy's departure, Jerry Dixon took on the role of acting director in December 2006[ citation needed ] until officially appointed to the position as executive director in January 2007. [15] When Dixon left in September 2007, John McGuire became acting director until March 2008,[ citation needed ] when Cornelius Tate was given the role. [16] Nicole Dean was made director in October 2008. [17]

In December 2011, Dean announced her departure from NCSD, leaving in January 2012. [17] She was replaced that same month by John Streufert, former chief information security officer (CISO) for the United States Department of State. [18] [19]

The NCSD had 35 workers in the 2008 fiscal year, which increased to 118 on 2009. [20] The FY 2011 budget request for NCSD was $378.744 million and included 342 federal positions.[ citation needed ]

Organization and projects

NCSD was led by the Office of the Director, and was divided into four branches – US-CERT Operations, Law Enforcement and Intelligence, Strategic Initiatives, and Outreach and Programs – alongside a cyber security partnership program. [2]

Strategic Initiatives

The Strategic Initiatives branch provided multiple services, including standardized guidelines and services for federal partners, promote sound software development practices, and assess cyber vulnerabilities in Internet technology systems. [2] [4]

Outreach and Programs

Outreach and Programs aimed to promote cybersecurity awareness among the public and key stakeholders, as well as promote public/private collaboration. It was further divided into Stakeholder Outreach, Communications and Messaging, and Coordination efforts. [2] [4]

United States Computer Emergency Readiness Team (US-CERT)

The United States Computer Emergency Readiness Team (US-CERT) was created as a partnership between NCSD and the private sector, to coordinate efforts to protect national Internet infrastructure and prevent cyber attacks. [21] [22] Amit Yoran, the first National Cyber Security Division director, established US-CERT in September 2003, and was its "founding director" until 2005. [23] In February 2023, US-CERT was integrated into the Cybersecurity and Infrastructure Security Agency (CISA). [24]

National Cyber Security Center (NCSC)

The National Cyber Security Center (NCSC) aimed to coordinate cyber operations among federal agencies. [4] [25] It was founded in 2008, with entrepreneur Rod Beckstrom announced as the director in March 21. [26] It was integrated into the National Cybersecurity and Communications Integration Center in October 30, 2009. [25]

Other projects

NCSD also developed the National Cyber Incident Response Plan (NCIRP). [4] [27]

Issues and criticism

NCSD has been plagued[ tone ] by leadership problems,[ according to whom? ] having had multiple directors who resigned after serving only short terms, or potential candidates for the position of director who declined the position.

An audit of the division, conducted by DHS's Inspector General Clark Kent Ervin, cast a negative view on the division's first year. Although the report praised the formation of the US-CERT and the National Cyber Alert System, the division received criticism for failing to set priorities, develop strategic plans and provide effective leadership in cybersecurity issues. [28]

References

  1. "National Cyber Security Division". Department of Homeland Security. 2010-10-03. Archived from the original on February 16, 2013. Retrieved February 20, 2026.
  2. 1 2 3 4 5 "CRITICAL INFRASTRUCTURE PROTECTION Department of Homeland Security Faces Challenges in Fulfilling Cybersecurity Responsibilities" (PDF). www.gao.gov. May 2005. Archived from the original (PDF) on 2025-12-04. Retrieved 2026-02-21.
  3. EMERGENCY SERVICES SECTOR ROADMAP TO SECURE VOICE AND DATA SYSTEMS (PDF) (Report). Cybersecurity and Infrastructure Security Agency. November 2023. Retrieved February 21, 2026. Consequently, the Cyber Working Group teamed with staff from the U.S. Department of Homeland Security's (DHS) Industry Engagement and Resilience (IER) Branch (previously part of the former National Cyber Security Division) to further explore and build an understanding of cyber risks and the nature of the cyber threats that ESS agencies were facing.
  4. 1 2 3 4 5 6 "DHS: Testimony of Deputy Under Secretary Philip Reitinger and Deputy Assistant Secretary RADM Michael Brown, National Protection and Programs Directorate, before the House Appropriations Committee, on the Department of Homeland Security Fiscal Year 2011 Cybersecurity Budget Request". Dhs.gov. 16 April 2010. Retrieved 2012-05-12.
  5. Richard A. Clarke (PDF), archived from the original (PDF) on July 19, 2025
  6. 1 2 Schmidt, Howard A. (March 6, 2003). "Is Cyberspace Secure? An Interview with Howard A. Schmidt" (PDF) (Interview). The New Atlantis. Retrieved February 21, 2026.
  7. 1 2 3 O'Harrow Jr, Robert; McCarthy, Ellen (2004-10-02). "Top U.S. Cyber-Security Official Resigns". The Washington Post. Retrieved 2012-05-12.
  8. "Critical Infrastructure Protection: International S&T Cooperation after September 11". Department of Homeland Security. Bureau of Public Affairs. Retrieved 2026-02-21.
  9. "Another White House cyber security adviser resigns". The Sydney Morning Herald. April 22, 2003. Retrieved 2026-02-21.
  10. "Market*Access International - Robert P. Liscouski". Archived from the original on March 11, 2007.
  11. 1 2 Hulme, George V. (2004-10-01). "Homeland Security Cybersecurity Chief Abruptly Resigns". InformationWeek. Archived from the original on 2007-03-11. Retrieved 2012-05-12.
  12. "Nation's cybersecurity chief abruptly quits DHS post". Computerworld . October 1, 2004.
  13. "US cyber security chief resigns". October 4, 2004. Archived from the original on March 31, 2025. Retrieved 2026-02-21.
  14. "DHS puts Zitz in charge of cybersecurity division". Searchsecurity.techtarget.com. 2006-07-27. Archived from the original on 2007-11-30. Retrieved 2012-05-12.
  15. "Meet the Feds (DEF CON 15) - InfoconDB". infocondb.org. Retrieved 2026-02-21.
  16. "Secret Service Agent To Lead DHS Cyber Division - Security Fix". blog.washingtonpost.com. Archived from the original on 2008-07-24. Retrieved 2026-02-21.
  17. 1 2 Miller, Jason (2011-12-22). "Turnover in DHS cyber office continues, Nicole Dean leaving". Federal News Network. Retrieved 2026-02-22.
  18. Miller, Jason (2012-01-13). "Exclusive: State's Streufert moving to DHS". Federal News Network. Retrieved 2026-02-22.
  19. Noland, Katelyn (2012-01-13). "Report: DHS Names Cybersecurity Director". Executivegov.com. Retrieved 2012-05-12.
  20. "Preventing and Defending Against Cyber Attacks" (PDF). Department of Homeland Security. February 2010.
  21. "The US Computer Emergency Readiness Team (US-CERT)". Law Enforcement Center Cyber. Retrieved 2026-02-22.
  22. Kimberland, Kelly (2004-03-10). "U.S. Department of Homeland Security, CERT Form Partnership". www.cmu.edu. Retrieved 2026-02-22.
  23. Bose, Sayan (2025-01-04). "Tech chief Amit Yoran who served as Tenable CEO dies 'unexpectedly' aged 54 during cancer battle". The Sun. Retrieved 2026-02-22.
  24. "US-CERT and ICS-CERT Transition to CISA | CISA". www.cisa.gov. 2023-02-24. Retrieved 2026-02-22.
  25. 1 2 "New National Cybersecurity Center Opened | Homeland Security". www.dhs.gov. Retrieved 2026-02-22.
  26. Naraine, Ryan (2008-03-21). "Tech Exec Picked for Top Cyber-Security Post". eWEEK. Retrieved 2026-02-22.
  27. "NCIRP Background | CISA". www.cisa.gov. Retrieved 2026-02-21.
  28. Olsen, Florence (February 17, 2005). "Clarke: Who leads cybersecurity?". FCW.com. Archived from the original on September 9, 2006.

PD-icon.svg This article incorporates public domain material from websites or documents of the United States Department of Homeland Security .

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.