DISA CLOUD CLOUD SYMPOSIUM

Similar documents
About the DISA Cloud Playbook

Defense Information Systems Agency (DISA) Department of Defense (DoD) Cloud Service Offering (CSO) Initial Contact Form

What is milcloud 2.0?

Introduction to the Federal Risk and Authorization Management Program (FedRAMP)

OFFICE OF THE ASSISTANT SECRETARY OF DEFENSE HEALTH AFFAIRS SKYLINE FIVE, SUITE 810, 5111 LEESBURG PIKE FALLS CHURCH, VIRGINIA

COMPLIANCE IN THE CLOUD

Migrating Applications to the Cloud

FedRAMP Digital Identity Requirements. Version 1.0

DISA Cybersecurity Service Provider (CSSP)

Welcome to the DISA Cloud Symposium

Naval Enterprise Networks Industry Day #2 NGEN Re-compete Acquisition Approach

Supporting the Cloud Transformation of Agencies across the Public Sector

Next Generation Enterprise Network- Recompete (NGEN-R) Industry Day

Defense Information Systems Agency

Service Management. What an Acquisition Practitioner Needs to Know. Karen Gomez Defense Information Systems Agency Mission Support Division

10 Considerations for a Cloud Procurement. March 2017

Moving Data through Early Planning into Design and Operations

Accelerate your Azure Hybrid Cloud Business with HPE. Ken Won, HPE Director, Cloud Product Marketing

November 17, The Honorable Patrick Shanahan Deputy Secretary of Defense U.S. Department of Defense. Dear Mr. Shanahan:

AFCEA BELVOIR. Industry Day. Joint Service Provider Overview. Victor O. Shirley Chief of Staff Joint Service Provider April 4, 2018

Cloud Managed Services for Government (CMSG) A secure strategy for the Department of Defense at an IBM-operated, Level 5, DoD Facility

IT-CNP, Inc. Capability Statement

Virtustream Cloud and Managed Services Solutions for US State & Local Governments and Education

Virtustream Managed Services Drive value from technology investments through IT management solutions. Tim Calahan, Manager Managed Services

From Cloud adoption to Cloud first Enabling effective Cloud usage

Practical Guide to Hybrid Cloud Computing. Cloud-Computing.

DHS Cloud Strategy and Trade Nexus. May 2011

FEDERALLY COMPLIANT HYBRID IT QTS GOVERNMENT SOLUTIONS

Introduction to AWS GoldBase

NS2 Cloud Overview The Cloud Built for Federal Security and Export Controlled Environments. Hunter Downey, Cloud Solution Director

Click to edit Master title style

Contemporary Challenges for Cloud Service Providers Seeking FedRAMP Compliance

Agency Guide for FedRAMP Authorizations

RE: Request for Comments on the 2018 Federal Cloud Computing Strategy

Cloud Computing. Presentation to AGA April 20, Mike Teller Steve Wilson

IT Consulting and Implementation Services

Service Provider Consulting

Secure Cloud Computing Architecture (SCCA)

TRIAEM LLC Corporate Capabilities Briefing

CompTIA Cloud Essentials Certification Exam Objectives EXAM NUMBER: CLO-001

Practical Guide to Platform as a Service.

AWS SECURITY AND COMPLIANCE QUICK REFERENCE GUIDE

FedRAMP: Understanding Agency and Cloud Provider Responsibilities

Office of Acquisition Program Management (OAPM)

Cloud Overview. Mr. John Hale Chief, DISA Cloud Portfolio February, 2018 UNITED IN SERVICE TO OUR NATION UNCLASSIFIED 1

Joint Federated Assurance Center (JFAC): 2018 Update. What Is the JFAC?

Cloud First Policy General Directorate of Governance and Operations Version April 2017

Securing Data in the Cloud: Point of View

The Challenge of Cyberspace Defense and CSSP Services

CollabNet. Case Study: Building Agile ALM in the Cloud. Mike Kochanik Vice President CollabNet Federal. Agile ALM for Distributed Development

Risk Management Framework for DoD Medical Devices

Accelerate Your Enterprise Private Cloud Initiative

Taking your next integration or BPM project to the cloud WebSphere Integration User Group, 12 July 2012 IBM Hursley

Akamai White Paper. FedRAMP SM Helps Government Agencies Jumpstart their Journey to the Cloud. FedRAMP. Federal Risk Authorization Management Program

Government IT Modernization and the Adoption of Hybrid Cloud

Next-Generation HCI: Fine- Tuned for New Ways of Working

DISN Evolution. TDM Elimination. Mr. Jessie L. Showers, JR., SES Infrastructure Executive (IE) 15 June 2017 UNITED IN SERVICE TO OUR NATION

A sanity check on Cloud from a Benelux point of view. Is Cloud turning into Fast Food? Are we conscious of the health risks?

Marine Corps Tactical System Support Activity

Dell helps you simplify IT

Enterprise Services & Unified Capabilities Development & Delivery

The Latest EMC s announcements

DEPARTMENT OF DEFENSE 6000 DEFENSE PENTAGON WASHINGTON, D.C

Department of Defense Fiscal Year (FY) 2014 IT President's Budget Request Defense Media Activity Overview

Fundamental Concepts and Models

Cloud Services. Infrastructure-as-a-Service

Air Force Acquisition

UNCLASSIFIED. FY 2016 Base FY 2016 OCO

Cloud Computing Strategy

5 Steps to Government IT Modernization

FedRAMP Security Assessment Framework. Version 2.1

Health Information Exchange - A Critical Assessment: How Does it Work in the US and What Has Been Achieved?

(MC-Cloud) for Mission Critical

What you need to know about cloud backup: your guide to cost, security, and flexibility. 8 common questions answered

Defense Engineering Excellence

ACCENTURE & COMMVAULT ACCENTURE CLOUD INNOVATION CENTER

Guidance and Policy For Department of Defense (DoD) Global Information Grid (GIG) Computing

Branding Guidance December 17,

INTO THE CLOUD WHAT YOU NEED TO KNOW ABOUT ADOPTION AND ENSURING COMPLIANCE

HISTORY: ADMINISTRATION AND COST CONTROL:

DISDI Plenary Session

CompTIA Cloud Essentials Certification Exam Objectives EXAM NUMBER: CLO-001

White Paper Impact of DoD Cloud Strategy and FedRAMP on CSP, Government Agencies and Integrators.

ERP Solution to the Cloud

Guide to Understanding FedRAMP. Version 2.0

Enterprise Private Cloud. Fully managed private cloud as a service in your data centre or ours.

The intelligence of hyper-converged infrastructure. Your Right Mix Solution

Building Trust in the Era of Cloud Computing

Department of the Navy Data Server and Data Center Waiver Scope Matrix and FAQ

FedRAMP Security Assessment Framework. Version 2.0

Cloud Computing An IT Paradigm Changer

AZURE CLOUD SECURITY GUIDE: 6 BEST PRACTICES. To Secure Azure and Hybrid Cloud Environments

Getting Hybrid IT Right. A Softchoice Guide to Hybrid Cloud Adoption

Advanced Cyber Risk Management Threat Modeling & Cyber Wargaming April 23, 2018

Cloud Computing, SaaS and Outsourcing

The U.S. Coast Guard s Role in Cybersecurity

Cloud Computing Strategy

The Business of Security in the Cloud

Implementing a Modular Open Systems Approach (MOSA) to Achieve Acquisition Agility in Defense Acquisition Programs

Capgemini Dynamic Services

Transcription:

DISA CLOUD P L A Y B O O K CLOUD SYMPOSIUM

DISA Cloud Adoption Cycle LEARN CHOOSE BUY CONFIGURE TRANSITION UTILIZE CLOUD CONSUMER What Mission Partners Should Know and Do Cloud Policies Goals (Fit, Leverage, Evolve) Information Impact Level Cloud Models Adoption Expertise Outreach Business/Case Analysis (BCA) Requirement Definition Application Rationalization Contract Options Period of Performance Color of Money SLA CSSP Services Specifications Environment Technology Virtual Machine Information Development/Test User Roles Authentication/ Access Monitor Data Consumption Leverage Cloud Functions Recognize efficiencies CLOUD PROVIDER What Cloud Providers Should Tell You FedRAMP/JAB PA Status Cloud Service Offering Cost Models Service Models Attributes Service Level Agreement COOP/DR Model Contract Vehicle On boarding process Consumption visibility Engineer Support IA Compliance Transition Support Operational Transparency Scalability/ Flexibility Innovation DOES IT MEET THE ORIGINAL NEED?

Learn Choose Have I read the December 5, 2014 memorandum DoD Updated Guidance on the Acquisition and Use of Commercial Cloud Computing Services? Have I reviewed the DAU Guide to Cloud Adoption? What are my cloud goals (Fit, Leverage, Evolve)? Do I understand the security requirements for cloud adoption? (RMF/ATO) Impact Levels (IL) IL2, IL4, IL5, IL6 Have I allocated resources to support cloud adoption? Do I have the current FedRAMP/JAB PA approval list? Do I know the cloud offerings of individual CSPs? Have I identified the CSSP roles and responsibilities? Do I understand Cloud Access Points? Have I completed a Business Case Analysis? What cloud services will I need? (IaaS, SaaS, PaaS) What is my ideal cloud deployment model (Public, Private, Community, Hybrid) What is my ideal compute hosting environment? (On Premise, Off Premise) Which of my applications are cloud ready, have potential, or not cloud compatible? What is my COOP/DR requirement and which applications require it? What CSPs meet my cloud requirements? COA Analysis/ Best fit? Do I have stakeholder buy in? Have I identified my migration cost?

Buy Configure What is the contract vehicle lifecycle? What is the contract vehicle ceiling? What color of money can I use? Does the period of performance have fiscal year alignment? What is the contract SLA/Terms and Conditions? Have I identified a CSSP for my cloud solution? How do I contract? What is the onboarding process? What is the payment model? Will I have computing consumption visibility? Does the CSP provide engineering support? Have I configured my COOP/DR? Do I know my specifications (below)? VM Name OS Hostname OS Type & Version vcpu RAM (gb) Root Volume Size (gb) NIC IP NIC Network Data Volume 1 Type Data Volume 1 Size (gb) Example

Transition Utilize Does the CSP have a development and test environment to support production? Is my authentication and access solution operating in accordance with user roles? Is the Cloud Solution maintaining FedRAMP/JAB PA compliance? Have I established my security posture? What transition support to I need and where do I get it? Have I tested the COOP/DR capability? Am I able to monitor and receive data consumption alerts? Am I able to sustain my security poster? Am I optimizing scalability? Is there a cost savings? Am I leveraging all cloud tenants? Am I recognizing program efficiencies?

Acronym Guide Contact Information ATO Authorization to Operate BCA Business Case Analyses COA Course of Action COOP Continuity of Operations CSP Cloud Service Provider CSSP Cyber Security Service Provider DAU Defense Acquisition University DR Disaster Recovery FedRAMP Federal Risk and Authorization Management Program IA Information Assurance IaaS Infrastructure as a Service JAB PA Joint Authorization Board Provisional Authorization NIC IP Network Interface Card Internet Protocol OS Operating System PaaS - Platform as a Service RAM Random Access Memory RMF Risk Management Framework SaaS - Software as a Service SLA Service Level Agreement vcpu Virtual Central Processing Unit DISA Mission Partner Engagement Office Providing Mission Partners with a Single Point of Entry into DISA DEFENSE AND FEDERAL AGENCIES Department of Defense Offices and Agencies Office of the Secretary of Defense (OSD) Federal Agencies United States Coast Guard (USCG) Intelligence Community disa.meade.bd.mbx.bdm1-agency-federal@mail.mil UNIFORMED SERVICES AND COMMANDS Combatant Commands (CCMD) Joint Staff Military Services o US Air Force (USAF) o US Army (USA) o US Marine Corps (USMC) o US Navy (USN) disa.meade.bd.mbx.bdm2-ccmd-services@mail.mil INTERNATIONAL RELATIONS & ENGAGEMENTS disa.meade.bd.mbx.bdm3-international@mail.mil GENERAL MISSION PARTNER SUPPORT disa.meade.bd.mbx.bdm4-mpeo-support@mail.mil 301-225-5303

This playbook is intended to help DISA s mission partners navigate the cloud adoption process. Is not intended to address the full spectrum of considerations associated with cloud adoption, which are different for every organization and mission. Mission partners are encouraged to annotate the playbook with organization and mission-specific questions and processes, and to use it as a discussion guide when working with internal stakeholders and DISA subject matter experts to develop a formal cloud transition plan.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback