Enterprise Connection Division: The Power to Connect

AUTHORITY AND RESPONSIBILITY

PRINT PAGE Add This

DoDI 8510.01, Certification & Accreditation Process Guidance (DIACAP), 28 November 2007

The DSAWG, under the DISN/GIG Flag Panel, is the community forum for reviewing and resolving C&A decisions related to the sharing of community risk. The DSAWG develops and provides guidance to the DAAs for IS connections to the GIG.

 DSAWG DIACAP Diagram 
View DSAWG DIACAP Process Diagram

CJCSI 6211.02C, Defense Information System Network (DISN): Policy and Responsibility, 9 July 2008

Enclosure B.
13. Defense IA/Security Accreditation Working Group (DSAWG). The DSAWG will:

a. Consist of representatives from the Joint Staff, Office of the Under Secretary of Defense for Intelligence, OASD(NII), USSTRATCOM, Services, DISA, DIA, NSA/CSS, Office of the DNI CIO, and the UCDMO. Other organizations may be invited to attend as technical advisors.
b. Support DISN/GIG Flag Panel in its role as the final risk decision authority for DISN connections.
c. Decide on or approve actions under authority delegated by the DISN/GIG Flag Panel.
d. Make connection approval recommendations to the DISN/GIG Flag Panel.
e. Make connection approval and risk decisions for those classes of ISs and circumstances delegated by the DISN/GIG Flag Panel (e.g., similar architectures and CD solutions previously approved by the DISN/GIG Flag Panel).
f. Recommend to the DISN/GIG Flag Panel disconnection or disapproval of a CD solution.
g. Recommend changes to DOD security policy and responsibilities.
h. Guide or assist development of DISN integrated system/security architecture changes.
i. Provide community risk assessments.
j. Report results of the assessments (and possible alternative proposals to mitigate risk) to the DISN/GIG Flag Panel as required.
k. Coordinate with the ADNI CIO through the UCDMO on CD connections between TOP SECRET/SCI and other DOD classified domains including connections to the DISN.
l. Establish a Cross Domain Technical Advisory Board (CDTAB). The CDTAB will:
(1) Assess technical risk of cross domain solutions.
(2) Report results of CD risk assessments and propose alternate solutions to mitigate risk.
(3) Advise and make recommendations to the DSAWG and CDRB on CD technical issues and details.
m. Monitor life cycle of the DISN long-haul service to identify and resolve security issues.
n. Recommend DISN resource prioritization for DISN connection requests to the DISN/GIG Flag Panel.
o. Provide security assessments to the Office of the Secretary of Defense (OSD) GIG Waiver Board in support of the DOD CIO GIG Waiver Process. Note: The OSD GIG Waiver Board supports the DOD CIO Executive Board for Requests for Waiver pertaining to the DISN.