PROVIDING THE WARFIGHTER S EDGE

Size: px

Start display at page:

Download "PROVIDING THE WARFIGHTER S EDGE"

Gavin Cooper
6 years ago
Views:

1 _AFCEA_New_Horizons_v5 PA Approved (Releasable version) AFCEA BOSTON NEW HORIZONS Lt Gen John Thompson Commander 3 March 2015 PROVIDING THE WARFIGHTER S EDGE

2 Enduring Life Cycle Management Framework DELIVER TO COMMITMENTS Providing the Warfighter s Edge 2

3 Enduring Life Cycle Management Framework DELIVER TO COMMITMENTS Providing the Warfighter s Edge 3

4 FY15 Cyber Campaign Plan Objectives/Lines of Attack Continue and Improve operational cyber mission thread analysis Tightly integrate security engineering into the systems engineering process Address cyber workforce development Vigorously address the need to enhance the adaptability of our weapon systems 4

5 LOA 1: System Access Points and Connections Mapping Data Provider Pilot Trainer Live Mission Data Ground Station Patents and Technical Papers VPN Over the Mission Results Common Data Link (CDL) Developer s Posts/Profile Mission Planning, Post Analysis Link 16 ADS-B Mission Plan Mapping System Maps and Geo data Flash Cartridge Data Transfer Unit (DTU) Comm/Nav Computer Open Source Map Software Avionics Development and Integration Facility Multi-Function Display (MFD) Left Software Development Tools Software Libraries Multi-Function Display (MFD) Right Joint Test Action Group (JTAG) MIL-STD-1553 OFPs, Mission Data, Maps Avionics Full-Duplex Switched Ethernet (AFDX) Switch Mission Computer OFP Control Panel Loader Development System ARINC 429 Board Components Display Computer/ Bus Controller Mission Computer OFP Mission CD Duplicator Computer Vendor Web Server Secret Protocol Router Network (SIPR) Loader Company Web server PC Test Signals Test Equipment Firmware Test Equipment Loader Updates, Windows-based OFP Loader/ Verifier Loader Software, Company Network PC Vendor Web Server CD Operating System Updates, Avionics Repair Facility Mailed CD CD Duplicator Duplicator Firmware, Loader Firmware, CD Images 5

6 LOA 1: System Access Points and Connections Mapping Data Provider Common Data Link (CDL) Data Transfer Unit (DTU) Live System focus must be expanded OFPs, to look across mission Mission Mission Data, Mission Computer Data Maps OFP Link 16 Loader Updates, ADS-B Avionics Full-Duplex Mission Windows-based CD Duplicator OFP Switched Ethernet Computer Loader/ Comm/Nav Computer (AFDX) Switch Vendor Web Server Verifier mission level dependency or impacts Ground Station Mission Computer OFP Secret Protocol Router Network (SIPR) Patents and Technical Papers VPN Over the Developer s Posts/Profile Mapping System Open Source Map Software Avionics Development and Integration Facility Software Development Tools Software Libraries Mission Multi-Function Display Multi-Function Display Planning, (MFD) Left (MFD) Right Post Joint Test Board Analysis Action Maps and Group Test Insufficient (JTAG) Equipment Vendor Web Server Mission resources to eliminate all potential vulnerabilities Geo data Firmware Plan Components Display Complicated Mission by sophisticated evolving Flash Computer/ threat Results MIL-STD-1553 Cartridge Bus Controller Test Control Pilot Focus Trainer must first be on securing Panel and designing resiliency Signals Test Avionics into: Repair Equipment Facility ARINC 429 CD Mission/safety critical functions spectrum Loader Development System Loader Company Web server PC Loader Software, Company Network Operating System Updates, System level criticality analysis does not always reveal PC Mailed CD CD Duplicator Duplicator Firmware, Loader Firmware, CD Images 6

LOA 1: Mission Thread Methodology 1. Map out the mission thread Define critical mission activities and information flows Identify mission-related systems and supporting infrastructure 2.

7 LOA 1: Mission Thread Methodology 1. Map out the mission thread Define critical mission activities and information flows Identify mission-related systems and supporting infrastructure 2. Determine vulnerabilities and threats Characterize the operational environment Look carefully at supporting infrastructure 3. Determine risks to mission success Assess individual program protection efforts Assess risk likelihood and impact 4. Recommend risk mitigations and resulting program actions Identify synergies across programs where appropriate 7

8 Dynamic Targeting Mission Network Enabled Weapon Example 8

9 Personnel Recovery Mission Example 9

10 Mission Thread Analysis Lessons Learned Critical capabilities are common to multiple missions (comms, PNT, VOIP, crypto) Require resiliency measures across the board Users must be involved in the analysis Measures of Effectiveness Assessment of Mission Impact TTPs and operational work-arounds Mission, system and architecture information all needed for analysis (e.g., CONOPs, DoDAF, UML, BPM, PPP) Analysis requires rigor and intellectual horsepower to perform; no silver bullet Hard to adequately assess risk without predictive cyber intelligence Analysis focused on cyber security, but Mission Assurance inextricably linked to safety, reliability, availability, etc. 10

11 FY15 Cyber Campaign Plan LOA 2: Tightly integrate security engineering into the systems engineering process Integrate program protection into systems engineering Transitioning to Cybersecurity- RMF Improving Cyber intelligence for risk assessments LOA 3: Address cyber workforce development Create a group of cybersecurity experts to matrix Create cyber red teams dedicated to acquisition LCM Provide Education and Training Provide Tools and Templates to program offices LOA 4: Vigorously address the need to enhance the adaptability of our weapon systems Develop AF Strategy for Open System Architecture Use OMS and UCI as the OA foundation Enable rapid countermeasures to emerging threats/vulnerabilities 11

12 Enduring Life Cycle Management Framework DELIVER TO COMMITMENTS Providing the Warfighter s Edge 12

Defense Acquisition Performance Assessment (DAPA) Report (2006) -- Restore organic capability in core functional areas Acquisition Improvement Plan (AIP) (2009) -- 5 initiatives -- #1 Revitalize AF

13 Defense Acquisition Performance Assessment (DAPA) Report (2006) -- Restore organic capability in core functional areas Acquisition Improvement Plan (AIP) (2009) -- 5 initiatives -- #1 Revitalize AF acquisition workforce ECSS AIR/CNA Report NE Acquisition & Sustainment Improvement Program AFLCMC Acquisition Workforce Snapshot w/out FMS Force Draft AF Strategic Plan & ACS CFSP Capability Gaps BBP 3.0/BTCC Validated LCM workforce shortfall of ~2000 authorizations * Budgetary Restrictions Resources Continue to Decrease Contractor Spt Limitations Hiring Limitations Reductions to workforce Increases to workload POM Reductions FY17 Req t= ~ auth ~80% funded Manpower reductions must be tied to strategic programmatic decisions CAUTION: IF programs not terminated, manpower must be restored; if programs added must add manpower 15% reduction FY17 Efficiencies Achieved to Live with Increased Workload & Decreased Resources AFMC Restructure * Staff size * Right-sized PEO FOG * Standard Processes Workload Continues to Increase - #s change daily! Programs ACAT I 61; ACAT II 41; ACAT III 346; Product Support new DAF programs since FY13 no additional resources Initiatives increasing no additional resources Reporting Requirements 13

and understanding those requirements and then authorizing and allocating resources Using a

14 Strategic Resource Management Ability to resource requirements (new, changing, recurring, or terminating) in a rapid, standard, and transparent manner By identifying, quantifying, and understanding those requirements and then authorizing and allocating resources Using a robust, responsive and streamlined process While managing instabilities in the environment. 14

Strong Governance Structure / Collaborative Environment Allocate Resources Authorize Resources Identify/Understand Requirements Developing & Standardizing Agile Factory IOC Implementation Agile

15 Strong Governance Structure / Collaborative Environment Allocate Resources Authorize Resources Identify/Understand Requirements Developing & Standardizing Agile Factory IOC Implementation Agile Factory FOC 1 Oct 14 Standardized Processes 1 Oct 15 Strategic Resource Management Key Activities Structural Elements Incoming Workload Management Developing An Agile Factory Program Transition PEO Assignment ASU Model & igal Workload Master List Risk-Based Tiering Programming (POM) Full Application Human Capital Competency Management Resourcing Allocation / Work Force Balancing Strategic Adjustments Process Maturation Measurement CPI UMD Management Hiring Process Recruiting Process Requirements to Resources (R2R) 15

16 SRM Summary Must be proactive to deal with current/future environment basis for change Process standardization and continual process improvement is necessary to success Requirements to Resources (R2R) is a system of systems architecture for Strategic Resource Management Significant number of initiatives occurring in parallel to meet Oct 15 FOC on track 16

17 Enduring Life Cycle Management Framework DELIVER TO COMMITMENTS Providing the Warfighter s Edge 17

18 Who is this? Joshua Lawrence Chamberlain Congressional Medal of Honor Winner Maj Gen, US Army, Governor of Maine President, Bowdoin College Commander, 20 th Maine Regiment Battle of Gettysburg, 1-4 July

19 Battle of Gettysburg, 1-3 July 1863 Day 3: Little Round Top 19

20 A Revolution in Acquisition and Product Support

21 88 ABW/PA Case Number: 88ABW SAF/PA Cleared: 27 Feb 2015 PAIRS Case Number:

UNCLASSIFIED. FY 2016 Base FY 2016 OCO

UNCLASSIFIED. FY 2016 Base FY 2016 OCO Exhibit R-2, RDT&E Budget Item Justification: PB 2016 Office of the Secretary Of Defense Date: February 2015 0400: Research, Development, Test & Evaluation, Defense-Wide / BA 2: COST ($ in Millions) Prior