The wide spread use of the Internet for communications and streamlining workflow has resulted in new challenges for ensuring the security of information systems. The Department of Defense, US Army and the National Guard have all begun to create military units to address these issues. Some of these include United States Cyber Command and Army Cyber Command, along with several new National Guard Cyber Protection Teams. The Army has created a cyber branch and the 17-series career field to support these efforts.

It is time for State Defense Forces to start considering the creation of their own cyber protection teams. They have the opportunity to attract computer security specialists to the cyber mission that might not be willing to go on active duty or join National Guard units. Some states have already acted on this idea.

The Maryland Defense Force Cyber Security Unit was created in 2010 at the request of the Adjutant General of Maryland, Major General James A. Adkins. He realized that the threat of a cyber emergency in the State of Maryland was growing and wanted to tap as much private sector talent as possible to supplement the Maryland Air and Army National Guard cyber teams. It started with two soldiers.

The Maryland cyber unit developed into a team of 26 soldiers that provides training on computer network defense, emergency response, compliance to standards and best practices. They have participated with the Army and Air Guard in several cyber exercises, including one with the North Atlantic Treaty Organization.

Based on the Maryland experience, it appears that training is a good focus for starting state defense force cyber protection teams. Demand for trainers provided the Maryland Defense Force with opportunities to participate in state, national and international exercises. Providing trainers doesn’t necessarily require Department of Defense security clearances. This expands the pool of potential candidates that state defense forces can select from.

U.S. Department of Defense (DoD) Manual 8570.01 can be used as a reference for determining training requirements. It is the same reference being used by the U.S. Army and other military services.

Sustaining cyber protection teams would require recruiting, retention, personnel and training support, much like existing units. Volunteers would be expected to bring their knowledge, skills and abilities, just as other guard members are. Cyber protection team members would need to be tenacious users of technology as a communications medium.

State defense forces could choose to use the cyber branch in their units. In the US Army, the cyber branch is a combat arms branch, rather than being combat support or a combat service support branch. Use of the cyber branch would allow the entire focus of its soldiers to be on the complicated and fast moving cyber mission.

State defense forces could start small, perhaps with a cyber protection detachment. It’s likely that candidates may have extensive education. A detachment might prove to be more flexible in this situation. A good example of this is Army Special Forces. Due to their soldiers experience and specialized skills, they use operational detachments for their organization.

To conclude, this is a good opportunity for State Defense Forces to start some sort of cyber protection team. The need has become clear on the national, state and local level. There is action being taken at all of these levels to provide these sorts of protections. The work done by the military at the national level provides us with a template for doing something at the state level. The political environment is also promising. It’s a good time to act.