instrumentation, targets, threat simulators and sof ... sponsored... · blue teams vulnerability...
TRANSCRIPT
1
Instrumentation, Targets, Threat Simulators and SOF Training Systems (PM ITTS) Cyber Capabilities
Sharmila Vaswani-BowlesAssistant Program Manager, Cyber Acquisition Blue Teams
Ensuring Cyber Resiliency In All Phases of Acquisition
2
PEO Cyber Core Competencies
3
A Complex Joint Cyber Landscape Stakeholders
CYBER RANGE EXECUTIVE AGENTS
TESTTRAINING
REQUIREMENTS
US CYBERCOM AND SERVICE CYBER COMPONENTS
PCTE EXECUTIVE BOARD
OTHER JOINT STAKEHOLDERS(not inclusive)
PROJECT MANAGER
INTEREST / OVERSIGHT
PROGRAM EXECUTIVE OFFICER
ASA (ALT)
NATIONAL CYBER RANGE
4
PM ITTS Cyber Capabilities
TEST TRAINING
ACQSUPPORT
OPSSUPPORT
Cyber Blue TeamManagement
National Cyber Range Complex National Cyber
Range Complex
National Cyber Range Complex
National Cyber Range Complex
Cyber TrainingAssessment
System Vulnerability Assessment
System Vulnerability Assessment
COCOM AssessmentProgram
Cyber Test InfrastructureHybrid Cloud and NOSC
PCTE Hybrid CloudInfrastructure and NOSC
Persistent Cyber Training Environment
Closed CyberEnvironments
Closed CyberEnvironments
Certified Cyber Red Team
IntelligenceSupport
COCOM AssessmentProgram
Threat Environments
Certified Cyber Red Team
Cyber EnvironmentReplication
Independent Commercially Compatible Cellular Network System
5
National Cyber Range Complex (NCRC)What is a “Cyber Range”?
Traditional Open Air Ranges
• Physical Environment• Weapon Testing• Mission Rehearsal• TTP Development
Cyber RangesVirtual Environment
I. Cyber Capabilities Testing Mission Rehearsal• TTP Development
The NCRC provides virtualized, high-fidelityrepresentations of cyber-contested environments
6
NCRC Typical Use Cases
Vulnerability Assessment• How resilient is a System or a Systems-of-Systems (SoS) to a given set of threats?• What are the external system dependencies that can impact overall cybersecurity posture?• What is the impact to mission effectiveness?Cyber Mission Force (CMF) Training• Create realistic mission tailored, unconstrained environments (at scale) to support training, certification and exercises• Provide the most realistic training possible from classroom to force-on-force• Enable cyber operators to train from home stationProduct/Solution Evaluations• Does adding a new product increase or decrease your security posture?• How well does the product perform in different scenarios?
7
Persistent Cyber Training Environment (PCTE)
• PCTE provides joint training experimentation and certification, as well as the assessment and development of cyber capabilities, tactics, techniques, and procedures for missions that cross boundaries and networks.
• PCTE further provides a persistent and realistic training environment to DoDCyber Mission Forces through:
• Distributed regional compute and storage capability• Discover/modify existing content; create new content• Automated process for Planning and designing events• Automated provisioning of range resources• Assessment data for readiness • Training plan and content with task, condition, standard to build scenario• Cyber tools (OCO and DCO)
8
In 2016 ASA(ALT) directed PM ITTS to act as Office of Primary Responsibility for oversight and management of Cyber Blue teams supporting Army Acquisition.
• Ensure Information Assurance and Cyber Resiliency is integrated fully into all phases of acquisition.
• PM ITTS to provide management oversight of the execution of Cyber Blue Teams vulnerability assessment capabilities in support of acquisition and test communities.
• CABT partnership with ASA (ALT) Cyber Focal to support a shift left initiative to provide blue team assessment within each key acquisition milestone phase.
• Establishing and managing certification standards and processes required of Acquisition Cyber Blue Teams authorized to support acquisition activities
Cyber Acquisition Blue Teams (CABT)
9
Upcoming PCTE FeaturesCIC#2 Order Portal
CIC#2 Content Repo
Link to Live Dev System: www.somethinghere.com
Link to Live Dev System: www.somethinghere.com
Need to update Screenshots
with actual GUI Mockup
Thank You
If you have any questions feel free to reach me at:
407-384-5240