Adopting an Operational Security (OPSEC) Approach

We’re excited to announce Tom Graham?has earned his Level I, Level II certification for OpSec through U.S. Army Command. Initially designed to keep the most sensitive government data secure, OpSec is now gaining traction across private industry. A veteran who served with both the US Army and US Air Force, Tom is the Federal Sector Director at Hexagon US Federal for j5 Operations Management Solutions and PAS Operational Technology/Industrial Control Systems (OT/ICS), bringing these solutions to federal civilian, defense, and intelligence community customers.

This certification is part of Hexagon US Federal’s commitment to leading the industry in cybersecurity expertise and bringing OT cybersecurity solutions to our customers.

Why OpSec?

As the digital age takes a broader hold of the modern business landscape, the need for cybersecurity awareness, protection, and best practices will grow tremendously. Operational Security (OpSec) is a security and risk management approach for protecting critical information from getting into the wrong hands. Implementing OpSec-based safeguards and maintenance strategies to your organization’s critical or sensitive information is necessary for protecting your organization against security threats. While there is no one-size-fits-all remedy to risk management, there are existing OpSec frameworks in place that can ensure your organization is prepared, protected, and on the path toward worry-free cyber risk management.

Risk Management

The key to identifying and combatting threats is completing regular risk assessments. If an organization can easily access sensitive information while posing as an outsider, adversaries can as well. A risk-based security mindset allows organizations to continuously assess, mitigate, and safeguard personal data against exploitation by adversaries.

When these checks are routinely completed and practiced continuously instead of periodically, the security implications of virtually every business activity can remain fettered while keeping sensitive information from being lost, stolen, or compromised. Disjointed cybersecurity and information security programs can result in weaknesses ripe for exploitation. As the digital landscape of business continues to evolve, so should cybersecurity technologies and security preparedness.

Operational Security

Organizations should strongly consider an Operational Security (OPSEC) approach to everyday operations. An OPSEC approach to risk management promotes understanding vulnerabilities from the perspective of an antagonist because, when looking from the outside in, the motivations of adversaries become increasingly clear and risks become more manageable to address.

Whether it’s related to processes, daily tasks, or software and hardware in use, OPSEC is proven to use risk management to unveil potential threats and vulnerabilities before an attack on critical infrastructure occurs. With proper OPSEC trainings and certifications, an organization can thwart existing and potential threats, vulnerabilities, and operational risks.

Bottom Line

In this day and age, the ever-changing digital landscape has created a tremendous need for cybersecurity awareness, protection, and best practices. Even though Operational Security was initially developed by and for military organizations, it is becoming an increasingly popular security measure in private business and industry. Hexagon US Federal is dedicated to bringing this expertise and experience to our customers, thanks to certified team members like Tom. View more information on Hexagon US Federal’s Cybersecurity and Operational Safety solutions.

Hexagon US Federal is headquartered in Chantilly, VA.