Cyber Operations Aren’t Slow — Our Thinking Is
Timothy N. Neslony
May 14, 2026
Cyber Operations Aren’t Slow — Our Thinking Is
The phone rang at 3:45 pm on a Friday afternoon. We were winding down for the weekend when the caller ID lit up — it was the counterterrorism analyst in our office we affectionately called “CT Brian.” When he called, it was never good news. An al-Qaeda-affiliated group seized an American aid worker. Her captors were preparing to move her within the hour and special operations forces needed cyber to pinpoint her location in 30 minutes or less. An assault team stood by, ready to launch — if we could tell them where to go. Weekend plans evaporated. Screens brightened. People leaned in. But inside the cyber cell, the faces told a different story. In cyber, 30 minutes might as well be 30 seconds.
As a cyber operator, I have lived moments like that more times than I can count over 20 years — hostage recoveries, counter-terrorism missions, combat operations, and embassy evacuations. In every case, lives hung in the balance and time determined the outcome. Too often, what throttled U.S. Cyber Command’s ability to contribute wasn’t skill or technology. It was a force design inherited from the National Security Agency’s intelligence culture — one built around patience, not speed, where operations unfolded over months and years rather than minutes. Breaking through that inheritance requires three things: understanding why the current model is too slow, rethinking how the force is built and trained, and pushing authority down to where it can actually be used.
The Speed, Control, and Intensity Tradeoff
U.S. Cyber Command’s operational model consistently prioritizes control and intensity at the expense of speed. Operations that could contribute to a crisis in hours instead take weeks or months, not because the technology demands it, but because the organization was designed around a fundamentally different clock.
Cybersecurity analyst Lennart Maschmeyer captured this dynamic precisely. Based on how cyber forces have operated, he identified a fundamental tradeoff: You can optimize for any two of speed, control, or intensity — but not all three. Pursue speed and you sacrifice precision — an operation rushed to meet a crisis window may hit the wrong system or produce unintended effects that compromise the broader mission. Prioritize control and the timeline stretches — the exhaustive testing and approval chains that ensure precision add days or weeks to every action. Maximize intensity and both suffer — a high-impact operation demands both careful planning and rapid execution, and under the current model, the organization cannot deliver both.
https://warontherocks.com/cyber-operations-arent-slow-our-thinking-is/
