Skip to Main Content
Official Seal - Department of Defense Cyber Crime Center (DC3)


Department of Defense
Cyber Crime Center

A Federal Cyber Center

VDP Selected for 2019 DoD Chief Information Officer Award

By Stephen Murphy, DC3 Public Affairs

The DoD Cyber Crime Center (DC3) Vulnerability Disclosure Program (VDP) is the recipient of the 2019 DoD Chief Information Officer (CIO) award for Cybersecurity.

The VDP is one of four team recipients of the annual award that recognizes accomplishments in areas such as cybersecurity, cloud computing, C3 modernization, Artificial Intelligence, or other areas of information technology modernization.

“We are truly honored to be selected amongst a very competitive pool of 135 nominees for the DoD CIO award for Cybersecurity,” said VDP director Kris Johnson. “I believe this demonstrates the importance of our program to protecting the DoD Information Network (DoDIN), how VDP should be added as another layer to a defense-in-depth strategy, and the awesome capability of the white-hat researcher community. The DoD VDP team would like to thank the researchers and our critical partnerships with the U.S. Cyber Command, Joint Task Force Headquarters-DoDIN (JFHQ-DoDIN) and the Defense Digital Service. VDP is a team sport, and we could not have achieved this level of success without them.”

The VDP was established in November 2016, and DC3 was tasked as the DoD’s single focal point for crowd-sourced vulnerability reporting and interacting with private white hat cybersecurity researchers, popularly referred to as “ethical hackers.”

Since then, VDP has processed more than 10,000 vulnerabilities discovered by researchers within DoD’s publically facing websites, with nearly 70 percent confirmed by VDP as being genuine and requiring action by JFHQ-DoDIN to mitigate.

Executive Director Jeffrey Specht said, “The VDP Team can and should take tremendous pride in this well-deserved recognition.” “The VDP has an incredibly positive impact in protecting DoD-wide programs and equities. I am confident the positive impact of the VDP will only continue to grow in the months and years to come.”

DoD components nominate individuals and teams during DoD CIOs annual call for awards. Nominations are evaluated and scored by a DoD CIO Senior Executive Service panel against a set of criteria including mission impact, innovation, and management efficiencies.

The awards ceremony is scheduled for 2 p.m. on Monday, Nov. 4, in the Pentagon Auditorium room BH-650 and will be live-streamed for public viewing. The live-stream link will be made available as the event draws closer.

For more information on the Vulnerability Disclosure Program, visit