25 AF Directorate of

Communications (A6)

and

625th Air Communications

Squadron (ACOMS)

This briefing is:

UNCLASSIFIED

Col Michael L. Cote

Commander

25 Air Force Mission

UNCLASSIFIED

ISR – Intelligence, Surveillance,

Reconnaissance

UNCLASSIFIED

Air Force

To fly, fight and win in air, space and cyberspace.

25 AF/A6

Provide planning, implementation

and advocacy for cyberspace

guidance, modernization and

investments to advance ISR

operations and readiness.

625 ACOMS

Provide cyberspace planning,

implementation, operations, security,

and maintenance for the AF JWICS

enterprise, 25 AF HQ and AF IC

systems to enable worldwide ISR.

25 AF

We execute worldwide intelligence, surveillance, and reconnaissance to

protect and defend the United States and its global interests.

Air Combat Command

ACC organizes, trains, and equips combat-ready Airmen to control and exploit the Air on

behalf of the Joint Force.

25 AF / A6 and 625 ACOMS

Mission Alignment

25 AF/A6

Directorate of Communications

UNCLASSIFIED

Cyberspace Footprint Across 25 AF

• Total of 3,100+ cyber personnel in 116 units (not including contractors)

• 33 units with substantial cyberspace personnel (88%)

• Some units are primarily cyber and others have cyber personnel

embedded for ISR systems support

• Heavy mission assurance focus:

• 100 – Targeting/Analysis

• 247 – Global Hawk (RQ-4)

• 654 – AF Distributed Common Ground System (DCGS)

• 155 – Rivet Joint (RC-135)

• 1278 – National Intelligence

• 230 – AF JWICS Operations

• 445 – Base Support

UNCLASSIFIED

25 AF Staff & Wings

363 ISRWJB Langley-Eustis

9 RWBeale AFB

70 ISRWFort Meade

25 AF

Commander

55 WGOffutt AFB

AFCO

• 9 CS • 55 CS

• 55 SCS

• 707 CS

• 531 IS• 363 ISS • 709 CYS• 319 CS

• 9 AMXS

• 69 MXS• 390 IS

• 488 IS

• 55 ISS

• 94 IS

• 301 IS

• 566 IS

• 668 ALIS

• 32 IS

• 7 IS

• 35 IS

• 373, Det 1

• 547 IS

• 20 IS

• 27 IS

• 485 IS

• 303 IS, D1

= Cyber Ops / Spt Units

= Units w/embedded Cyber

480 ISRWJB Langley-Eustis

• 10 IS

• 48 IS

• 693 ISS

• 694 ISS

• 792 ISS

AFTACPatrick AFB

319 ABWGrand Forks AFB

A1Personnel

A2/3ISR / Ops

A4Logistics

A5/8Strategic Plans

A6Comm

625

ACOMS

625th Ops

CenterA6

Comm

625

ACOMS

625th Ops

CenterA6

Comm

25 AF A6 & Supported Cyber Units

UNCLASSIFIED

25 AF A6 Priorities

▪ Fielding / upgrades for Mission Defense Teams (5 in 25 AF)

▪ Development of IC integrated defense – synergy with DoDIN

▪ Improving risk management framework (RMF) / ATO process

▪ Implications of IC IT Environment (ODNI) – cloud, DTE and apps

▪ NSA Secure the Net – thin / thick client implementation

▪ Enterprise IT as a Service – pilot and way ahead

▪ 24 and 25 AF – alignment of cyber operations / organizations

▪ Cyber unit readiness and CCRIs

625 Air Communications Squadron

(ACOMS)

UNCLASSIFIED

625 ACOMS Mission Areas

▪ AF Joint Worldwide Intelligence Communication System (JWICS)

▪ AF Intelligence Community Information Systems Security

▪ 25 AF Headquarters Support

UNCLASSIFIED

AF IC Security and AF JWICSAuthorities & Relationships

AF IC Ops

Reporting

DIA

AF IC

Security Operations

ACC/A2AF JWICS

OT&E

25 AFAF JWICS C2

AF JWICS

Operations

AF JWICS

PolicyAF/A2

ACC/A2AF IC Security

OT&E

25 AFAF IC

Security

IC

Security

PolicyAF/A2 ODNI

625 ACOMS

UNCLASSIFIED

AF JWICS EnterpriseGlobal C2 for 24/7 Operations and Maintenance

Delivering ISR to the Warfighter

EC-ESC

ACOMS

WC-ESC

ACOMS

EU-ESC

1 ACOSNCR *

NASIC

AFCENT *

A2PA-ESC

PACAF/A2

625 ACOMS

EOC

UNCLASSIFIED

Air Force Intel Systems SecurityMissions and Systems Supported

Insider Threat

Incident Response

Center

Information

AssuranceAF JWICS

Security Coord

Center

Security

Assessors

RPAs

DRSN

NSANET

AF JWICS

Cross Domain Solutions

Big Safari

DCGS

NC3

TAPS

Securing Cyberspace for the AF IC

UNCLASSIFIED

625 ACOMS

Enterprise Operations Center

Missions Systems

SecurityOperations(AF IC SCC)

AF JWICSOperations

Enterprise Ops Center (EOC)

ISR CIO (AF/A2)

IC Sec Coord Ctr (SCC)(ODNI / DIA)

625 ACOMS

25 AF/ OC

25 AF/CC

AF IC CISO (ACC/A2)

MAJCOMCISOs

UnitISSOs

Enterprise Svc Ctrs

Site Providers

Users

UNCLASSIFIED

Headquarters Support

25th Air Force

Document Destruction

Web Content

Management / SharePointKnowledge Management Center

(Mail, VTC, Mobile Devices, CATV)

Touch Maintenance for

AF JWICS, SIPR & NIPR

Records Management,

Freedom of Information

Act and Privacy Act

Print Plant (up to TS-SCI)

New RequirementsPublications & Forms

UNCLASSIFIED

AF IC Security(Security Assessments for ATOs)

Perform risk management assessments for AF SCI and ISR systems,

platforms and software (RPA, DCGS, DRSN, NC3, IC networks)

UNCLASSIFIED

AF IC Security(Insider Threat – User Activity Monitoring)

▪ Gathers, integrates, and analyzes information to identify insider threats and refers to proper authoritative entities

▪ Executive Order (Oct 11): sharing/safeguarding classified

▪ Dec 13 Nat’l Insider Threat Task Force evaluated AF IC UAM → IOC

▪ Jun 15 field intel activity funds established for FY 17-21

▪ Sep 15 SAF/AA delegated SAF/AAZ management and oversight

▪ Feb 16 AF/A2 directed 120 day Pilot (AF JWICs only)

▪ 625 ACOMS I-Hub Pilot (May 17); SAF/AAZ & SAF/CDM PMO

▪ Expands to include other sources and classified networks

▪ Significant interest - Army, Navy, AFOSI, USDI, NITTF, other govt agencies

▪ Developing log access to 24 AF systems (i.e. SIPR)

UNCLASSIFIED

625 ACOMS Priorities

▪ Win 10 Implementation – AF JWICS

▪ C2 of AF JWICS / Security – guidance / authorities / org alignment

▪ Developing SPIN / SOPs / hosting summits w/ field to sync TTPs

▪ Fielding new capabilities for enterprise management

▪ Integrated defense operations – expanding to mission systems

▪ Security assessments for ATOs – timeline / process

▪ Expanding insider threat pgm – all cleared AF psnl / Nat’l Task Force

▪ Fighting on JWICS – expansion

UNCLASSIFIED

Questions?