Cyber Operations

Abstract

A number of key Information Technology (IT) strategies were identified in the Department of Defense (DoD) IT Enterprise Strategy and Roadmap issued by the Deputy Secretary of Defense in 2011. The IT Roadmap specifically addresses the need to improve Cybersecurity. It states that DoD networks are under constant attack from cybersecurity threats launched from various sources. The Missile Defense Agency (MDA) must meet the National Command Authority Directives for rapid deployment of the Missile Defense System while complying with the key principles of Cybersecurity standards to ensure MDA remains a secure member of the DoD Information Network. DoD Instruction 8500.01 Cybersecurity issued in March 2014, requires continuous monitoring, data analysis, reporting and incident mitigation of DoD classified and unclassified, mission, test and administrative networks. To comply with the Instruction, MDA must implement a multi-tiered cybersecurity risk management capability to protect critical Missile Defense System data and systems from rapidly evolving internal and external threats. This project provides funds to sustain the Risk Management Framework (RMF) and Controls Validation Testing (CVT) activities, analysis of validation results, risk assessments and reviews of proposed Program Manager/Information Systems Security Manager (PM/ISSM) Plan of Action and Milestones (POA&M) for the MDA mission, test and common-use IT systems. Maintains the Authorization and Assessment (A&A) data repository, capturing the RMF documentation (artifacts, validation results, and Cybersecurity Risk Assessment results, and Authorizing Official (AO) decisions) and POA&M on all MDA information systems. Supports the monitoring and tracking of Cybersecurity mitigations detailed in IT cybersecurity POA&Ms. Activities include preparation of A&A documentation and authorization recommendations to the MDA PM/ISSM and AO. Independent Verification and Validation team actions ensure the availability, integrity, confidentiality and non-repudiation of the MDA mission, test and common-use IT systems. Activities in the Project are necessary to comply with Federal Information Security Management Act (FISMA). This project funds the MDA Global Network Operations and Security Center (GNOSC) responsible for monitoring, managing, patching, and maintaining MDA network and core IT services; issuing and tracking Technical Compliance Orders; and coordinating overarching Enterprise NetOps. The GNOSC provides the network security operations centers and supporting processes to protect and defend the MDA Enterprise information and information systems. The MDA's Tier II Cybersecurity Service Provider- Computer Emergency Response Team (CSSP-CERT), monitors the MDA classified and unclassified information technology research, development, test and evaluation (RDT&E) and common-use IT networks and reports vulnerabilities. The MDA CSSP coordinates with U.S. Cyber Command to identify and implement network vulnerability updates and patches to comply with U.S. Cyber Command vulnerabilities identified for DoD networks. In FY 2020, the MDA CSSP began taking over CSSP responsibilities from United States Strategic Command in accordance with CJCSI 6510.01F, DoD O-8530.1 and the DoD Cybersecurity Discipline Implementation Plan. The project funds Cybersecurity governance management and administrative management support, annual Agency-wide computer-based Cybersecurity training and metrics reporting, implementation of Public Key Infrastructure and Enabling Communication Security (COMSEC) related activities. Facility-related control systems (FRCS) include building management systems, electronic security systems, industrial control systems, and supervisory control and data acquisition systems in support of facility operations. This project provides for the management of MDA's FRCS cybersecurity program, cybersecurity engineering for FRCS incorporated in MDA facility plans for construction and upgrades, as well as the implementation of RMF and Computer Network Defense (CND) on FRCS in MDA facilities.

Document Details

Document Type

Project

Publication Date

Oct 01, 2024

Source ID

MC30_0603890C_4_0400_PB_2024

Tags

Related Documents

• Root: BMD Enabling Programs
• Child Accomplishment: Preventing Malicious Cybersecurity Activity
• Child Accomplishment: Planning, Policy Development, Workforce Training & Force Management
• Child Accomplishment: Continuous Monitoring
• Child Accomplishment: Detect, Analyze and Mitigate Intrusions
• Child Accomplishment: Outside Federal Outreach - Defense Industrial Base
• Child Accomplishment: Facility Related Control Systems (FRCS)
• Child Cost Item: acf7af0ac9142d8eb41c859526377976
• Child Cost Item: febebb8138772dddce34aa53f630fdf7
• Child Cost Item: 0dd5ae257cc93af3c79b8be1e187c584
• Child Cost Item: 63ca9fc9c37f0d131a6f6db7806137e7
• Child Cost Item: def7c3fac6699d939ac3f3ae34dc34b7
• Child Cost Item: c8489a7dc819e8cbb348572505a61dc9
• Child Cost Item: 30c79ee615f888a60ff8b17c7b2e538e
• Child Cost Item: 14177476d62e2b9953ff99ffa8d0934e
• Child Cost Item: 13624ba2e4fa7375b7784abfb44547fd
• Child Cost Item: 20f0e8d71ba94d6b85186843eccfbdd7
• Child Cost Item: 19b33ee124c3a5ef072041b2bf738daf
• Child Cost Item: 2bdf595ff18796f5763b995894721ee8
• Child Cost Item: bf6e50ce92e80cfc3929ad32e8282254
• Child Cost Item: 14eca076a9e1e346cc1371e0ccf69073
• Child Cost Item: 0742ab12130f73d86f85d403742d6895
• Child Cost Item: 16e2d9e85cc4df2332be8c67facdb4f9
• Child Cost Item: 0a5b9b6d8073c1436853d1c5b9e5a83b
• Child Cost Item: d12b294b1f84617ef72e4c3b4128d4d9