On May 26, the Space Systems Command launched a new procedure to analyze the cybersecurity of commercial satellite operators doing business with the Defense Department.

Commercial suppliers of satellite-based services are examined based on their cybersecurity procedures and systems under the Infrastructure Asset Pre-Approval program, or IA-Pre. Suppliers who pass the government’s criteria are added to a pre-approved list and are not needed to submit lengthy cybersecurity questionnaires for each contract bid.

A-Pre replaces a self-assessment procedure in which commercial enterprises seeking to do business with the DoD have to fill out a questionnaire with the necessary information.

The Space Systems Command will conduct on-site cybersecurity compliance audits with third-party auditors accredited and licensed by the US Space Force Security Controls Assessor.

The IA-Preprogram was created in collaboration with commercial suppliers, according to Clare Garson, division chief of the commercial systems service’s office. “We’re looking forward to the great influence that IA-Pre will have on all of our stakeholders in the future,” she added.

What does this mean?

This procedure will ensure that appropriate protections are implemented and evaluated, and that gaps are repaired in order to limit cybersecurity threats that might jeopardize DoD operations.

REFERENCES

https://spacenews.com/space-force-rolls-out-cybersecurity-standards-for-commercial-providers-of-satellite-services/: Companies that pass a cybersecurity assessment will be pre-approved, eliminating the need for individual assessments for each contract.