DISA customer & industry forum 2011




DoD Information Assurance Certification and Accreditation Process (DIACAP

Overview of the DISA certification accreditation process.

Automating STIGs

The briefing will provide information on the progress FSO has made towards Automating STIGs.

DISA Quality Management Program

The DISA QA session will discuss both DISA circular rewrites, as well as, trends and analysis. The circulars discussion will provide an overview of current rewrites of status reporting (DISAC 310-55-1), DISN tech control facilities (DISAC 310-70-1), and a workmanship circular that will establish DoD installation standards for DISA sites and equipment. Trends and analysis will cover how DISA collects information, makes recommendations, and then publishes the information for customers and decision makers to ascertain the status of the Global Information Grid and DISN services.

Node Site Coordinator

This session will cover the duties and responsiblities of a DISN Node Site Coordinator. This brief include functions performed, references and training as well as an overview of the DISN Node Site Coordinators' Conference hosted annually by DISA CONUS to provide direct collaboration between DISN node site coordinators and DISN operations managers.

DISN NetOps Service Assurance

Information sharing zone, OSS Central, and key service assurance systems will be described. The briefing will specify the applications, the purpose of each, the type of information provided, and their relevance to DISA customers. Specific systems in scope are the Information Sharing System, OSS Central, Service Quality Management (SQM), Integrated Network Management System (INMS) and Global Trouble Management Systems (GTMS)

Mission Transformation To Sustain the Power to Connect (Enterpise Connection Approval)

The Enterprise Connection Division provides mission services that are all aligned with the 2011 Campaign Plan's Lines of Operation. Congruent to the triad structure titled "Enabling Information Dominance"  that is featured at the beginning of the 2011 Campaign Plan. The Connection Approval Office (CAP), Ports, Protocols and Service Management (PPSM) and the Defense Information Assurance Security Accreditation Working Group  (DSAWG) are all collaborating points of the triad structure that continuously provide full-scope support as the Lines of Operation to ensure that customers are always provided "the power to connect" both efficiently and securely while maintaining the health of the global information grid's (GIG) security posture.

SATCOM GIG Integration

GIG infrastructure is increasingly complex and diverse. To achieve the Joint vision for Net Centric Operations, the GIG must be capable of responding in near real time to strategic, tactical, and environmental conditions that are very dynamic. This session will cover the GIG converging to the use of Internet Protocol (IP) as the main networking protocol in both terrestrial and SATCOM network and the need to standardize integration of network management interfaces and tools.


The COMSATCOM Update will consist of a panel briefing with a "Question and Answer" Session following the briefings. The briefing will consist of four presentations, given by four panelists. Topics are (1) COMSATCOM Introduction and Overview, (2) an Enhanced Mobile Satellite Services Update (3) COMSATCOM Services, and (4) a Future Commercial Satellite Acquisition (FCSA) Update/Lessons Learned and Provisioning. Entire Session will be one hour.

(FOUO) Command Cyber Readiness Inspection (CCRI) Phase II Changes

CCRI:  Command Cyber Readiness Inspections (CCRIs) replaced Enhanced Compliance Validations (ECVs) in October 2009 as the mechanism by which Commanders would begin being held accountable for their respective network and enclave security posture. Phase I of the CCRI program implemented a rigorous new grading criteria which provided greater objectivity and analytical measurements of a site's security posture by reviewing technology areas, vulnerability scan results, compliance with US Cyber Command  (previously Joint Task Force-Global Network Operations) issued Computer Network Defense (CND) Directives, and non-technical aspects of an information assurance (IA) program (culture, conduct, and capability). Phase II of the CCRI program, implemented May 2011, implements changes to the CCRI grading methodology derived from lessons learned from Phase I, and also begins process changes to shift the CCRI methodology from strictly a compliance based inspection toward an operational readiness inspection. This session will review the Phase II changes.

(FOUO) Strategic NetOps: Situational Awareness

As the DCC has matured, a major challenge is solidifying  the operational and reporting roles of the DISA Command Center to provided strategic NetOps situational awareness.  What are the functional requirements for current ops as well as network assurance?

(FOUO) Computer Network Defense Service Provider (CNDSP) Program & Tier 2 Update

DISA is the Certifier for the General Service (GENSER) CNDSP program. This briefing will provide the latest updates to the CNDSP Program, to include changes in the Evaluator's Scoring Metrics (ESM).

(FOUO) Incident Response: Missions, Trends and Tools

This briefing/discussion will cover current trends identified by the Incident Response team and checklist, tools, and recommendations for site security managers and system administrators to use. This brief will include examples on how  organizations use FSO developed HBSS Policy Auditor Benchmarks and First Responder Guide to identify compromised/infected systems that were previously undetectable.