The Principles-based Assessment for Cybersecurity Toolkit (PACT) is a tool for assessing the toughest cybersecurity problems. CACR chief policy analysts developed the tool in collaboration with NSWC Crane. As a naval installation, Crane uses technologies that many would consider atypical, and which require custom cybersecurity solutions. PACT provides cybersecurity professionals with guidance to efficiently develop custom cybersecurity solutions for unusual environments in the naval environment and operational technologies like control systems.
The Principles-based Assessment for Cybersecurity Toolkit (PACT) is a tool for assessing the toughest cybersecurity problems.
Apply for an Opportunity to Participate in an Innovative Cybersecurity Assessment
The Indiana University Center for Applied Cybersecurity Research (CACR), in collaboration with the US Navy, is accepting applications to participate in a high profile cybersecurity assessment free of charge. The application period closes on 01 December 2018.
The selected applicant will receive a rigorous cybersecurity assessment conducted by distinguished experts in the field. The selected applicant will also receive tailored, actionable guidance on steps they can take to improve their cybersecurity posture. Finally, the applicant will be contributing to the advancement of our national defense by helping refine a new assessment methodology. Detailed assessment planning and execution will be conducted over a 6-month period, beginning in Q1 2019.
- 15 OCT 2018: Begin accepting applications
- 01 DEC 2018: Application deadline
- 11 JAN 2019: Applicants notified of
- JAN 2019: Kick-off assessment planning
- MAR 2019: Kick-off assessment execution
The assessment methodology is PACT: the Principles-based Assessment for Cybersecurity Toolkit. PACT was developed through a collaboration between CACR and Naval Surface Warfare Center Crane
NOTE: PACT is both life-cycle neutral and subject-matter neutral, and therefore can be conducted on any organization, platform, or system, at any phase in its development, from early design and conceptual phases to
PACT was developed for use in environments which rely on unconventional IT infrastructure. The applicant selection process considers a number of factors, including the presence of any of the following: distributed systems, ICS/SCADA systems, hard
NOTE: After the applicant is selected, the applicant and CACR will coordinate to finalize the more fine-grained details of the assessment (e.g., timeline, information management, POCs, and team membership).
If you have questions regarding the PACT assessment, the application process, or the status of your application, please contact Craig Jackson, Program Director, IU CACR ( firstname.lastname@example.org).