CYBER SQUADRON – A Formal History of the Land Information Assurance Group 1999-2024

by Noel Hannan

The Land Information Assurance Group (LIAG) has played a pivotal role in shaping Defence cyber operations for over two decades. From Kosovo to Kabul, and from digital forensics to NATO cyber doctrine, its impact has been profound. This feature article rightly goes beyond a brief book review to explore the unit’s extraordinary journey, its operational legacy, and the enduring relevance of its unique structure and expertise. LIAG’s story is one of innovation, resilience, and quiet influence—deserving full recognition in these pages.

April 14^th 2025 saw the release of Cyber Squadron – A Formal History of the Land Information Assurance Group (LIAG).  A smartly designed and presented hardback detailing the activities of this cutting edge and innovative unit since its inception in 1999, this Jubilee anniversary edition (previously published as Hacker Troop in 2019 on the unit’s 20^th birthday) updates both the previous book and the intervening five years, a period which have seen a global pandemic and a brutal war on the European continent, both of which have seen LIAG involvement.

With its roots in the Strategic Defence Review of 1998, when the idea of ‘cyberspace’ as the fifth domain of warfare was barely an idea (what on earth was ‘cyber’ anyway?), the book starts with a comprehensive interview with Col Paul Acda, instrumental in the unit’s design and original recruiting methodology, an influential officer who could very much be classed as the grandfather – or at least the godfather – of the unit.  Col Acda, interviewed for the original Hacker Troop in 2019, details the initial concepts and challenges of a grouping originally called the ‘IT Pool’, given that ‘cyber’ (or Information Assurance as it was known back then) was seen very much as an ‘IT issue’ – and perhaps in some case still is?

Several significant early decisions laid the template for LIAG’s future structure, CONEMP and CONOPS which remain to this day.  Firstly, the requirement was driven by and actioned by the Royal Signals, and although consistently multi cap-badged (Army), it is always commanded by a Royal Signals Lieutenant Colonel.  Secondly, that the formation should be all-Territorial Army (including the CO) to recruit and retain personnel with the correct skills in order to carry out the core defined role, which was broadly referred to as ‘information assurance review’ (hence the unit title) but included such relatively nascent disciplines such as network penetration testing.  Thirdly, that for the first time the Royal Signals should utilise the mature Professionally Qualified Officer (PQO) route which had been pioneered over many decades (if not centuries!) by the military medical and legal services, to ensure the unit personnel held a commensurate rank to their civilian profession and would be able to have a ‘voice’ in a HQ staff environment.  Finally, that LIAG officers undertake appropriate military training for them to be able to operate safely in a deployed environment.  While changes have of course occurred in the intervening years to demographics, skill requirements, recruitment and training, all these conditions have broadly stood the test of time.

The first five members of the unit as at unit formal stand-up on 1 July 1999 were all ex-Regular or serving mainstream reservists, two Royal Signals officers, one Royal Artillery officer, and one senior NCO from the Royal Signals.  Later that same year, the first Royal Signals PQO, Capt Ed Moses, was selected, attested and commissioned in February 2000.

Link to full article.