UNCLASSIFIED

UNCLASSIFIED

UNCLASSIFIED

UNCLASSIFIED

Army Cloud Computing Strategy

and Emerging Cloud Policy AFCEA Fort Belvoir Chapter April Luncheon

Mr. Gary Blohm Director, Army Architecture Integration Center, CIO/G-6

22 April 2015

UNCLASSIFIED

UNCLASSIFIED 2

Agenda

Army CIO/G-6 • Vision, Mission, Role

• Lines of Effort

• Published Army Network Strategy Documents

Emerging Cloud Computing Strategy • Strategy Framework Overview

• Strategic Context and Intent

• Guiding Principles and Strategic Imperatives

• Cloud Deployment Models

• Commercial Cloud Hosting Policy

• Way Ahead

April 22, 2015

UNCLASSIFIED

UNCLASSIFIED 3

A secure, integrated, standards-based

environment that ensures uninterrupted global access and enables collaboration

and decisive action throughout all operational

phases across all environments.

CIO/G-6 Leads Army network modernization to deliver timely, trusted and shared information for the

Army and its mission partners.

CIO/G-6 Defines overall Army network

modernization plans and recommends priorities for the resourcing of network modernization activities.

Enabling Success For Today and Tomorrow

Network Vision CIO/G-6 Mission CIO/G-6 Role

Vision, Mission, Role

April 22, 2015

UNCLASSIFIED

UNCLASSIFIED

Provide Signal Capabilities to the Force

Enhance Cyber Security Capabilities

Increase Network Throughput and Ensure Sufficient Computing Infrastructure

Deliver IT Services to the Edge

Lines of Effort

4

1.1 Align force structure

1.3 Update doctrine

1.4 Align training and training support capability

1.2 Equip force

2.1 Minimize attack surface, establish physical path diversity,

strengthen data defense

2.2 Deploy passive & active cyberspace defense capabilities

2.3 Improve cyber-sensing infrastructure, harness big

data & increase info sharing

3.3 Standardize suite of centrally managed EUDs

3.1 Implement End-to-end transport

infrastructure

3.2 Transition from disparate data processing

3.4 Sync deployable

& fixed network

4.1 Plan for global Unified Capabilities

4.3 Integrate into tactical network

4.2 Transition to Unified Capabilities

5.1 Converge to single IT enterprise, reduce complexity

5.2 Define spectrum analytic

reqts

5.3 Centralize oversight of critical assets, integrate mgmt/

execution decisions

5.4 Enhance & extend incident response, audit,

cybersecurity mgmt & SA services

5.5 Develop CONOPS

Strengthen Network Operations (NetOps)

INTEGRATED

NETWORK

COMMON OPERATING

ENVIRONMENT

SIMPLIFIED,

PROTECTED AND

JOINT INTEROPERABLE

NETWORK

AGILE

EXPEDITIONARY

COMMAND POSTS

ENHANCED

HOME STATION,

TRAINING &

READINESS

April 22, 2015

UNCLASSIFIED

UNCLASSIFIED

Army Network Strategy Documents

5

Links Army & DoD Strategies

Describes network related end states at a high level and outlines the LOEs

Army Network Campaign Plan

2020 and Beyond

Focuses on network capabilities

Influences program resource planning within Program

Objective Memorandum (POM)

Implementation Guidance

Mid-Term (2017 - 2021)

Describes activities in year of execution

Reflects acquisition, resource and mission reality

Guides design & development of the next network capability

Implementation Guidance

Near-Term (2015 - 2016)

Establish and communicate the Army’s vision and

approach for transitioning to a cloud-enabled network

Army Cloud Strategy (Released 25 March 2015)

April 22, 2015

UNCLASSIFIED

UNCLASSIFIED 6

Document Evolution and Linkages

Cloud Services AQ Vehicle

Levels 3-5

PEO-EIS

CNDSP CONOPS

2A/ARCYBER

CIO/G6

Data Strategy

April 22, 2015

UNCLASSIFIED

UNCLASSIFIED 7

Cloud Computing Strategy Overview

Purpose:

• Establish and communicate the Army’s vision and strategy for delivering cloud-enabled network capabilities

• Satisfy requirement identified in the G-3/5/7 COE Implementation EXORD, dated 10 SEP 2014

Scope:

• Clarifies the strategic intent, provides guiding principles and identifies strategic imperatives and enabling

objectives to transition the Army to cloud computing within all defined COE computing environments, where

appropriate

Strategic Context

Vision and Strategic Intent

Guiding Principles

Strategic Imperatives

• 9 Enabling Objectives

Roles and Responsibilities

Challenges and Mitigations

Path Ahead

April 22, 2015

UNCLASSIFIED

UNCLASSIFIED 8

Strategic Context

April 22, 2015

• Enhanced Mission Command Planning/Mission Unified Action Partner collaboration & visibility

• Reduced technical complexity for end users

• Common user experience

• Continuous Access to Common Operating Picture/Information across mission environments

• Opportunity to harness “Big Data” analytics

• Reduced IT O&M costs and physical footprint

• Faster delivery of IT capability enhancements

Anticipated Benefits

UNCLASSIFIED

UNCLASSIFIED April 22, 2015 9

Strategic Intent

Deliver the most innovative, efficient and secure information to the

point of need

Simplify and extend access to timely and relevant information

Reduce Operations and Maintenance (O&M) costs

Speed technology insertions; limit end user interruptions

Increase capabilities and responsiveness of the operating and

generating force throughout all joint operational phases

Improve interoperability & security through COE & DISA CAPs

Synchronize of Army and external partner cloud activities

Drive more effective and efficient IT management and optimized

application transitions through strong governance processes

Continuous assessment of risk vs. benefits

UNCLASSIFIED

UNCLASSIFIED

Nuts and Bolts

Common standards

Enable resilience through dynamic security

Use the appropriate deployment model

Cybersecurity Cloud protection

Lower IT costs

Greater agility

Service delivery under DIL conditions

Minimization of redundant data sources

Interoperability & portability

Mission effectiveness

5.1 → Adopt Cloud Governance and

Management Practices

5.2 → Instantiate Cloud Computing Capabilities

Within the Army Network

5.3 → Manage the Modernization and Migration

of Applications, Systems and Data

5.4 → Secure and Manage Cloud Operations

9 Major Enabling Objectives

10

Guiding Principles Strategic Imperatives

Vision

By 2025, the Army will continue to maintain a strategic and tactical advantage over its adversaries through

information dominance by fully leveraging an optimal mix of approved government and commercial cloud service

providers that globally support Total Force requirements for quality of service. Cloud computing will enable

authorized users to harness the power of Big Data analytics through a COE that enables low-latency access to

required data elements, regardless of location or device. Moreover, these data elements will be customizable to the

desired format of mission commanders, senior leaders, decision makers and other authorized mission partners.

April 22, 2015

UNCLASSIFIED

UNCLASSIFIED 11

Cloud Deployment Models

Army Cloud Computing Deployment Models

On-Premise

(DoD Network & Facilities)

Off-Premise

(Non-DoD Federal or

Commercial Facilities)

* Must be within defined US

Jurisdictional areas Only

Off-Premise

(Non-DoD Federal or

Commercial Facilities)

* Must be within defined US

Jurisdictional areas Only

Operationally

Deployable

Gov’t

Owned

Gov’t

Operated

(GOGO )

Gov’t

Owned

Cml

Operated

(GOCO)

Cml

Owned

Cml

Operated

(COCO)

Federal Tenants Only Multi-Tenant Army Tactical

Infrastructure

DoD Community/Private Clouds Federal Community Cloud Public / Federal

Community Cloud

DoD Community /

Army Private Cloud

CC SRG

Impact Levels up to 6

CC SRG

Impact Levels up to 6

CC SRG

Impact Levels up to 4

CC SRG

Impact Levels 4 to 6

April 22, 2015

UNCLASSIFIED

UNCLASSIFIED 12

Commercial Cloud Policy Major Points

Applies to all Army systems and applications migrating

to a CSPs

Excludes Army Intelligence/Crypto/Weapons and C2

systems

Reinforces mandate for the use of AAMBO for required

Applications Migration

Reinforces and provides guidance for the Use of the DoD

IT BCA Template

Submission of the completed BCA Template to the HQDA

CIO/G-6 for Approval ( and Provided to DoD CIO)

Defines the criteria and process for Waiver requests

Outline required steps to verify compliance for Systems

and Applications that have already migrated to commercial CSPs

PURPOSE: Provide guidance for the migration to and use of commercial Cloud Service Providers (CSPs)

April 22, 2015

UNCLASSIFIED

UNCLASSIFIED 13

Way Ahead

Next Steps:

Publish the Army Commercial Cloud Policy - April/May 15

Validate Cloud specific Common Services – 4Q/FY15

Validate Cloud Security requirements – 4QFY15

Commercial Cloud Pilot opportunities – 1QFY16

Conduct Cloud Services Provider Industry Day – 1QFY16

Establish Army Commercial Cloud Hosting contract vehicle – 1QFY16

Initial Transition to Army Cloud Enablement (IOC) – FY16

Mission Areas/Domain/Commands begin migration to:

Gov Cloud

Mil Cloud

Commercial Cloud

Transition and Cloud Ops Adjustment – FY17

Cloud Operations (FOC) – FY18

April 22, 2015

UNCLASSIFIED

UNCLASSIFIED 14

QUESTIONS / DISCUSSION

QUESTIONS!!

April 22, 2015

UNCLASSIFIED

UNCLASSIFIED April 22, 2015 15

Backup

UNCLASSIFIED

UNCLASSIFIED 16

Information Security Impact Levels

Information Security

Impact Levels Definitions

CSM CC SRG

1

2

Unclassified, publicly releasable information, e.g., recruiting

websites

2 Unclassified, publicly releasable information with access

controls, e.g., library systems

3

4

Non-National Security System (non-NSS) Controlled

Unclassified Information (CUI) – low confidentiality impact,

moderate integrity impact, e.g., training systems

4 Non-NSS CUI – moderate confidentiality impact, moderate

integrity impact, e.g., human resource systems, personally

identifiable information (PII), and protected health information

(PHI)

5 5 NSS CUI – moderate confidentiality impact, moderate integrity

impact, e.g., email systems

6 6 Classified information up to and including Secret – moderate

confidentiality impact, moderate integrity impact, e.g.,

command and control systems

April 22, 2015

UNCLASSIFIED

UNCLASSIFIED April 22, 2015 17

Army Transition to the Cloud