UNCLASSIFIED
UNCLASSIFIED
UNCLASSIFIED
UNCLASSIFIED
Army Cloud Computing Strategy
and Emerging Cloud Policy AFCEA Fort Belvoir Chapter April Luncheon
Mr. Gary Blohm Director, Army Architecture Integration Center, CIO/G-6
22 April 2015
UNCLASSIFIED
UNCLASSIFIED 2
Agenda
Army CIO/G-6 • Vision, Mission, Role
• Lines of Effort
• Published Army Network Strategy Documents
Emerging Cloud Computing Strategy • Strategy Framework Overview
• Strategic Context and Intent
• Guiding Principles and Strategic Imperatives
• Cloud Deployment Models
• Commercial Cloud Hosting Policy
• Way Ahead
April 22, 2015
UNCLASSIFIED
UNCLASSIFIED 3
A secure, integrated, standards-based
environment that ensures uninterrupted global access and enables collaboration
and decisive action throughout all operational
phases across all environments.
CIO/G-6 Leads Army network modernization to deliver timely, trusted and shared information for the
Army and its mission partners.
CIO/G-6 Defines overall Army network
modernization plans and recommends priorities for the resourcing of network modernization activities.
Enabling Success For Today and Tomorrow
Network Vision CIO/G-6 Mission CIO/G-6 Role
Vision, Mission, Role
April 22, 2015
UNCLASSIFIED
UNCLASSIFIED
Provide Signal Capabilities to the Force
Enhance Cyber Security Capabilities
Increase Network Throughput and Ensure Sufficient Computing Infrastructure
Deliver IT Services to the Edge
Lines of Effort
4
1.1 Align force structure
1.3 Update doctrine
1.4 Align training and training support capability
1.2 Equip force
2.1 Minimize attack surface, establish physical path diversity,
strengthen data defense
2.2 Deploy passive & active cyberspace defense capabilities
2.3 Improve cyber-sensing infrastructure, harness big
data & increase info sharing
3.3 Standardize suite of centrally managed EUDs
3.1 Implement End-to-end transport
infrastructure
3.2 Transition from disparate data processing
3.4 Sync deployable
& fixed network
4.1 Plan for global Unified Capabilities
4.3 Integrate into tactical network
4.2 Transition to Unified Capabilities
5.1 Converge to single IT enterprise, reduce complexity
5.2 Define spectrum analytic
reqts
5.3 Centralize oversight of critical assets, integrate mgmt/
execution decisions
5.4 Enhance & extend incident response, audit,
cybersecurity mgmt & SA services
5.5 Develop CONOPS
Strengthen Network Operations (NetOps)
INTEGRATED
NETWORK
COMMON OPERATING
ENVIRONMENT
SIMPLIFIED,
PROTECTED AND
JOINT INTEROPERABLE
NETWORK
AGILE
EXPEDITIONARY
COMMAND POSTS
ENHANCED
HOME STATION,
TRAINING &
READINESS
April 22, 2015
UNCLASSIFIED
UNCLASSIFIED
Army Network Strategy Documents
5
Links Army & DoD Strategies
Describes network related end states at a high level and outlines the LOEs
Army Network Campaign Plan
2020 and Beyond
Focuses on network capabilities
Influences program resource planning within Program
Objective Memorandum (POM)
Implementation Guidance
Mid-Term (2017 - 2021)
Describes activities in year of execution
Reflects acquisition, resource and mission reality
Guides design & development of the next network capability
Implementation Guidance
Near-Term (2015 - 2016)
Establish and communicate the Army’s vision and
approach for transitioning to a cloud-enabled network
Army Cloud Strategy (Released 25 March 2015)
April 22, 2015
UNCLASSIFIED
UNCLASSIFIED 6
Document Evolution and Linkages
Cloud Services AQ Vehicle
Levels 3-5
PEO-EIS
CNDSP CONOPS
2A/ARCYBER
CIO/G6
Data Strategy
April 22, 2015
UNCLASSIFIED
UNCLASSIFIED 7
Cloud Computing Strategy Overview
Purpose:
• Establish and communicate the Army’s vision and strategy for delivering cloud-enabled network capabilities
• Satisfy requirement identified in the G-3/5/7 COE Implementation EXORD, dated 10 SEP 2014
Scope:
• Clarifies the strategic intent, provides guiding principles and identifies strategic imperatives and enabling
objectives to transition the Army to cloud computing within all defined COE computing environments, where
appropriate
Strategic Context
Vision and Strategic Intent
Guiding Principles
Strategic Imperatives
• 9 Enabling Objectives
Roles and Responsibilities
Challenges and Mitigations
Path Ahead
April 22, 2015
UNCLASSIFIED
UNCLASSIFIED 8
Strategic Context
April 22, 2015
• Enhanced Mission Command Planning/Mission Unified Action Partner collaboration & visibility
• Reduced technical complexity for end users
• Common user experience
• Continuous Access to Common Operating Picture/Information across mission environments
• Opportunity to harness “Big Data” analytics
• Reduced IT O&M costs and physical footprint
• Faster delivery of IT capability enhancements
Anticipated Benefits
UNCLASSIFIED
UNCLASSIFIED April 22, 2015 9
Strategic Intent
Deliver the most innovative, efficient and secure information to the
point of need
Simplify and extend access to timely and relevant information
Reduce Operations and Maintenance (O&M) costs
Speed technology insertions; limit end user interruptions
Increase capabilities and responsiveness of the operating and
generating force throughout all joint operational phases
Improve interoperability & security through COE & DISA CAPs
Synchronize of Army and external partner cloud activities
Drive more effective and efficient IT management and optimized
application transitions through strong governance processes
Continuous assessment of risk vs. benefits
UNCLASSIFIED
UNCLASSIFIED
Nuts and Bolts
Common standards
Enable resilience through dynamic security
Use the appropriate deployment model
Cybersecurity Cloud protection
Lower IT costs
Greater agility
Service delivery under DIL conditions
Minimization of redundant data sources
Interoperability & portability
Mission effectiveness
5.1 → Adopt Cloud Governance and
Management Practices
5.2 → Instantiate Cloud Computing Capabilities
Within the Army Network
5.3 → Manage the Modernization and Migration
of Applications, Systems and Data
5.4 → Secure and Manage Cloud Operations
9 Major Enabling Objectives
10
Guiding Principles Strategic Imperatives
Vision
By 2025, the Army will continue to maintain a strategic and tactical advantage over its adversaries through
information dominance by fully leveraging an optimal mix of approved government and commercial cloud service
providers that globally support Total Force requirements for quality of service. Cloud computing will enable
authorized users to harness the power of Big Data analytics through a COE that enables low-latency access to
required data elements, regardless of location or device. Moreover, these data elements will be customizable to the
desired format of mission commanders, senior leaders, decision makers and other authorized mission partners.
April 22, 2015
UNCLASSIFIED
UNCLASSIFIED 11
Cloud Deployment Models
Army Cloud Computing Deployment Models
On-Premise
(DoD Network & Facilities)
Off-Premise
(Non-DoD Federal or
Commercial Facilities)
* Must be within defined US
Jurisdictional areas Only
Off-Premise
(Non-DoD Federal or
Commercial Facilities)
* Must be within defined US
Jurisdictional areas Only
Operationally
Deployable
Gov’t
Owned
Gov’t
Operated
(GOGO )
Gov’t
Owned
Cml
Operated
(GOCO)
Cml
Owned
Cml
Operated
(COCO)
Federal Tenants Only Multi-Tenant Army Tactical
Infrastructure
DoD Community/Private Clouds Federal Community Cloud Public / Federal
Community Cloud
DoD Community /
Army Private Cloud
CC SRG
Impact Levels up to 6
CC SRG
Impact Levels up to 6
CC SRG
Impact Levels up to 4
CC SRG
Impact Levels 4 to 6
April 22, 2015
UNCLASSIFIED
UNCLASSIFIED 12
Commercial Cloud Policy Major Points
Applies to all Army systems and applications migrating
to a CSPs
Excludes Army Intelligence/Crypto/Weapons and C2
systems
Reinforces mandate for the use of AAMBO for required
Applications Migration
Reinforces and provides guidance for the Use of the DoD
IT BCA Template
Submission of the completed BCA Template to the HQDA
CIO/G-6 for Approval ( and Provided to DoD CIO)
Defines the criteria and process for Waiver requests
Outline required steps to verify compliance for Systems
and Applications that have already migrated to commercial CSPs
PURPOSE: Provide guidance for the migration to and use of commercial Cloud Service Providers (CSPs)
April 22, 2015
UNCLASSIFIED
UNCLASSIFIED 13
Way Ahead
Next Steps:
Publish the Army Commercial Cloud Policy - April/May 15
Validate Cloud specific Common Services – 4Q/FY15
Validate Cloud Security requirements – 4QFY15
Commercial Cloud Pilot opportunities – 1QFY16
Conduct Cloud Services Provider Industry Day – 1QFY16
Establish Army Commercial Cloud Hosting contract vehicle – 1QFY16
Initial Transition to Army Cloud Enablement (IOC) – FY16
Mission Areas/Domain/Commands begin migration to:
Gov Cloud
Mil Cloud
Commercial Cloud
Transition and Cloud Ops Adjustment – FY17
Cloud Operations (FOC) – FY18
April 22, 2015
UNCLASSIFIED
UNCLASSIFIED 14
QUESTIONS / DISCUSSION
QUESTIONS!!
April 22, 2015
UNCLASSIFIED
UNCLASSIFIED April 22, 2015 15
Backup
UNCLASSIFIED
UNCLASSIFIED 16
Information Security Impact Levels
Information Security
Impact Levels Definitions
CSM CC SRG
1
2
Unclassified, publicly releasable information, e.g., recruiting
websites
2 Unclassified, publicly releasable information with access
controls, e.g., library systems
3
4
Non-National Security System (non-NSS) Controlled
Unclassified Information (CUI) – low confidentiality impact,
moderate integrity impact, e.g., training systems
4 Non-NSS CUI – moderate confidentiality impact, moderate
integrity impact, e.g., human resource systems, personally
identifiable information (PII), and protected health information
(PHI)
5 5 NSS CUI – moderate confidentiality impact, moderate integrity
impact, e.g., email systems
6 6 Classified information up to and including Secret – moderate
confidentiality impact, moderate integrity impact, e.g.,
command and control systems
April 22, 2015
UNCLASSIFIED
UNCLASSIFIED April 22, 2015 17
Army Transition to the Cloud
Top Related