By Joe Charlaff
Special Contributor to In Homeland Security
Israel is reorganizing its cyber defense, with Israel Defense Forces (IDF) looking to refocus its efforts against an ever-changing threat.
In recent years, numerous events have taken place within the strategic environment of the State of Israel, leading to changes in the nature of threats. While conventional threats are on the decline, an increase has been detected in unconventional threats, one of them being in the sphere of cyber security. Experts predict that in the future, 40 percent of warfare will take place online. Combating this threat demands a new approach.
Israel’s Cyber Defense
Israel remains one of the top countries in regards to cyber defense, however there are many updates needed to keep up with the ever-changing threats, especially critical to the IDF. The most significant threat in the world of cyber warfare is posed by attempts to damage military information systems by hacking into them, and the assessment is that there exists a real threat to the IDF’s cyber defenses. Over the last two years there has been an increase in attempts to attack their systems and facilities mainly from the northern border, including several attempts by the Syrian Electronic Army (SEA).
In response to the ever increasing threats, the IDF is continuing its reorganization in order to strengthen its cyber defenses, and in order to maintain cyber superiority plans to invest heavily to achieve that goal.
Col. (res) Gabi Siboni, director of the Military and Strategic Affairs Program and Cyber Security Program at INSS (Institute of National Security Studies), pointed out that defense is the prime issue at stake, especially in view of the fact that organizations like Hizbullah and Hamas are developing their cyber capabilities, as well as hostile states such as Iran, hence the decision of the Chief of Staff to enhance the IDF’s cyber defense capabilities. In addition, intelligence gathering is equally critical. “This is an ongoing conflict not only during wars.”
Even though its direct responsibilities over cyber warfare are limited to military networks, the IDF is in close cooperation with civilian cyber bodies – the national cyber warfare HQ in the Prime Minister’s Office, the Defense Ministry’s cyber HQ (responsible for protecting the ministry’s networks, as well as those of military industry companies), and the Shin Bet’s cyber HQ (which protects the country’s critical infrastructure).
Israel: ‘IDF Strategy’
Last year, Chief of Staff, Lieutenant General, Gadi Eizenkot, released a document known as the “IDF Strategy”, in which he announced the plan to establish a command dedicated to cyberwarfare by the end of the army’s current multi-year plan ending in 2020.
The decision to establish a cyber command was taken following the recommendation of a multi-branch team appointed by the Chief of Staff when he assumed office, led by the head of the Military Intelligence Directorate, to examine ways to enhance the military operational effectiveness in the cyber realm.
Now, the IDF’s new multi-year plan will focus particularly on intelligence collection, data fusion, and new search engines, prioritization methods and other upgrades to the C4i network to improve connectivity among service branches and combat disciplines. The plan includes substantial investment in technology and manpower committed to strengthening cyber capabilities.
This reorganization reflects an increasing understanding within the IDF of the growing importance of cyber activity as a major component of military operations on both offensive and defensive levels.
A senior IDF officer who cannot be named for security reasons, explained the reorganization.
“We started a process two years ago under a committee led by General HaLevi. The first stage was to reinforce the cyber defense element by establishing a Cyber Chief of Staff. Following his appointment the department expanded into a division, bringing the Brigadier General under the direct command of the Deputy Chief of General Staff, General Yair Golan.”
The process of building a full cyber command is underway and this is expected to be fully operational by the end of the multi-year plan. The unnamed source explained that at present they are reinforcing Israel’s cyber defense under the J6 information directorate. The Cyber Chief of Staff unit was moved from the Deputy’s office to the J6, providing J6 with a Brigadier General, Signals Officer, IT Division, and Cyber Defense Division.
Building the Cyber Command
The main focus is currently on defense, and to that end the IDF is building a Cyber Command, which is a gradual process. There is an understanding at the General Staff level that the IT component cannot be separated from the defense capability, the result being that cyber defense, IT, networking etc will be under the same roof. In the coming months the IDF is going to be investing heavily in software, hardware, and other cyber elements.
Meanwhile the entire cyber effort will remain under the J2 (intelligence directorate). A decision was made to create an operational doctrine to have the capability to operate the cyber domain under the J3 which has full responsibility for all operations (operations directorate). The J6 will work with the operational cyber domain together with the J3. This will result in streamlining the chain of command and facilitate rapid response which is vital in the current environment.
Asked for his assessment of Hamas and Hizbullah’s cyber capabilities, our source said that “every modern terror organization is trying to reinforce their offensive capabilities. “We are seeing Hizbullah and Hamas achieving more cyber capabilities than in the past. It’s much easier to build cyber units now. Hizbullah gets funding from Iran and they send their people for training to the American University of Beirut, and after four years they receive a qualification in computer science qualifying them to become hackers.
“At present, we are in a strong position to defend our capabilities and in the near future we should be even stronger. Our technologies are improving in quantum leaps and we are basing our cyber defense elements on technology developed by the IDF”.
The IDF is on a new path regarding its defensive capability. “We see the cyber element as a multi -service factor which also connects the ground forces, navy and airforce,” explained the source. “We need to think differently in how to integrate the cyber function with the other arms of the IDF”.
He expects that the reorganization will most likely be completed by the end of 2020.
Meanwhile, an extensive multi-year financial plan, nicknamed Gideon, places the emphasis of the budget on the main sectors of the IDF for five years and gives the commanders the option of investing in selected areas such as cyber defense.
Israel’s recent political declarations and decisions puts it in an even more precarious position, at risk of attack from various dissenters. As it has done with more crude methods of attack, including its world renowned airport security programs, Israel is now trying to stay one step ahead of those who intend harm in cyberspace.
About the Author
Joe Charlaff is a freelance journalist, based in Israel, with over 15 years’ experience writing on security and business matters for publications including Homeland Security Today, various IHS Jane’s titles, The Economist, Knowledge@Wharton, RUSI Monitor, and CNBC Business.