25 af directorate of and 625th air communications squadron … · security assessments for atos...
TRANSCRIPT
25 AF Directorate of
Communications (A6)
and
625th Air Communications
Squadron (ACOMS)
This briefing is:
UNCLASSIFIED
Col Michael L. Cote
Commander
UNCLASSIFIED
Air Force
To fly, fight and win in air, space and cyberspace.
25 AF/A6
Provide planning, implementation
and advocacy for cyberspace
guidance, modernization and
investments to advance ISR
operations and readiness.
625 ACOMS
Provide cyberspace planning,
implementation, operations, security,
and maintenance for the AF JWICS
enterprise, 25 AF HQ and AF IC
systems to enable worldwide ISR.
25 AF
We execute worldwide intelligence, surveillance, and reconnaissance to
protect and defend the United States and its global interests.
Air Combat Command
ACC organizes, trains, and equips combat-ready Airmen to control and exploit the Air on
behalf of the Joint Force.
25 AF / A6 and 625 ACOMS
Mission Alignment
UNCLASSIFIED
Cyberspace Footprint Across 25 AF
• Total of 3,100+ cyber personnel in 116 units (not including contractors)
• 33 units with substantial cyberspace personnel (88%)
• Some units are primarily cyber and others have cyber personnel
embedded for ISR systems support
• Heavy mission assurance focus:
• 100 – Targeting/Analysis
• 247 – Global Hawk (RQ-4)
• 654 – AF Distributed Common Ground System (DCGS)
• 155 – Rivet Joint (RC-135)
• 1278 – National Intelligence
• 230 – AF JWICS Operations
• 445 – Base Support
UNCLASSIFIED
25 AF Staff & Wings
363 ISRWJB Langley-Eustis
9 RWBeale AFB
70 ISRWFort Meade
25 AF
Commander
55 WGOffutt AFB
AFCO
• 9 CS • 55 CS
• 55 SCS
• 707 CS
• 531 IS• 363 ISS • 709 CYS• 319 CS
• 9 AMXS
• 69 MXS• 390 IS
• 488 IS
• 55 ISS
• 94 IS
• 301 IS
• 566 IS
• 668 ALIS
• 32 IS
• 7 IS
• 35 IS
• 373, Det 1
• 547 IS
• 20 IS
• 27 IS
• 485 IS
• 303 IS, D1
= Cyber Ops / Spt Units
= Units w/embedded Cyber
480 ISRWJB Langley-Eustis
• 10 IS
• 48 IS
• 693 ISS
• 694 ISS
• 792 ISS
AFTACPatrick AFB
319 ABWGrand Forks AFB
A1Personnel
A2/3ISR / Ops
A4Logistics
A5/8Strategic Plans
A6Comm
625
ACOMS
625th Ops
CenterA6
Comm
625
ACOMS
625th Ops
CenterA6
Comm
25 AF A6 & Supported Cyber Units
UNCLASSIFIED
25 AF A6 Priorities
▪ Fielding / upgrades for Mission Defense Teams (5 in 25 AF)
▪ Development of IC integrated defense – synergy with DoDIN
▪ Improving risk management framework (RMF) / ATO process
▪ Implications of IC IT Environment (ODNI) – cloud, DTE and apps
▪ NSA Secure the Net – thin / thick client implementation
▪ Enterprise IT as a Service – pilot and way ahead
▪ 24 and 25 AF – alignment of cyber operations / organizations
▪ Cyber unit readiness and CCRIs
UNCLASSIFIED
625 ACOMS Mission Areas
▪ AF Joint Worldwide Intelligence Communication System (JWICS)
▪ AF Intelligence Community Information Systems Security
▪ 25 AF Headquarters Support
UNCLASSIFIED
AF IC Security and AF JWICSAuthorities & Relationships
AF IC Ops
Reporting
DIA
AF IC
Security Operations
ACC/A2AF JWICS
OT&E
25 AFAF JWICS C2
AF JWICS
Operations
AF JWICS
PolicyAF/A2
ACC/A2AF IC Security
OT&E
25 AFAF IC
Security
IC
Security
PolicyAF/A2 ODNI
625 ACOMS
UNCLASSIFIED
AF JWICS EnterpriseGlobal C2 for 24/7 Operations and Maintenance
Delivering ISR to the Warfighter
EC-ESC
ACOMS
WC-ESC
ACOMS
EU-ESC
1 ACOSNCR *
NASIC
AFCENT *
A2PA-ESC
PACAF/A2
625 ACOMS
EOC
UNCLASSIFIED
Air Force Intel Systems SecurityMissions and Systems Supported
Insider Threat
Incident Response
Center
Information
AssuranceAF JWICS
Security Coord
Center
Security
Assessors
RPAs
DRSN
NSANET
AF JWICS
Cross Domain Solutions
Big Safari
DCGS
NC3
TAPS
Securing Cyberspace for the AF IC
UNCLASSIFIED
625 ACOMS
Enterprise Operations Center
Missions Systems
SecurityOperations(AF IC SCC)
AF JWICSOperations
Enterprise Ops Center (EOC)
ISR CIO (AF/A2)
IC Sec Coord Ctr (SCC)(ODNI / DIA)
625 ACOMS
25 AF/ OC
25 AF/CC
AF IC CISO (ACC/A2)
MAJCOMCISOs
UnitISSOs
Enterprise Svc Ctrs
Site Providers
Users
UNCLASSIFIED
Headquarters Support
25th Air Force
Document Destruction
Web Content
Management / SharePointKnowledge Management Center
(Mail, VTC, Mobile Devices, CATV)
Touch Maintenance for
AF JWICS, SIPR & NIPR
Records Management,
Freedom of Information
Act and Privacy Act
Print Plant (up to TS-SCI)
New RequirementsPublications & Forms
UNCLASSIFIED
AF IC Security(Security Assessments for ATOs)
Perform risk management assessments for AF SCI and ISR systems,
platforms and software (RPA, DCGS, DRSN, NC3, IC networks)
UNCLASSIFIED
AF IC Security(Insider Threat – User Activity Monitoring)
▪ Gathers, integrates, and analyzes information to identify insider threats and refers to proper authoritative entities
▪ Executive Order (Oct 11): sharing/safeguarding classified
▪ Dec 13 Nat’l Insider Threat Task Force evaluated AF IC UAM → IOC
▪ Jun 15 field intel activity funds established for FY 17-21
▪ Sep 15 SAF/AA delegated SAF/AAZ management and oversight
▪ Feb 16 AF/A2 directed 120 day Pilot (AF JWICs only)
▪ 625 ACOMS I-Hub Pilot (May 17); SAF/AAZ & SAF/CDM PMO
▪ Expands to include other sources and classified networks
▪ Significant interest - Army, Navy, AFOSI, USDI, NITTF, other govt agencies
▪ Developing log access to 24 AF systems (i.e. SIPR)
UNCLASSIFIED
625 ACOMS Priorities
▪ Win 10 Implementation – AF JWICS
▪ C2 of AF JWICS / Security – guidance / authorities / org alignment
▪ Developing SPIN / SOPs / hosting summits w/ field to sync TTPs
▪ Fielding new capabilities for enterprise management
▪ Integrated defense operations – expanding to mission systems
▪ Security assessments for ATOs – timeline / process
▪ Expanding insider threat pgm – all cleared AF psnl / Nat’l Task Force
▪ Fighting on JWICS – expansion