Information Systems Security

The Information Systems Security Program, managed by the Defense Information Systems Agency (DISA), is dedicated to enhancing the cybersecurity infrastructure of the Department of Defense (DoD). It focuses on providing strategic and innovative cyber solutions to support DoD missions. The primary objectives include strengthening enterprise services through a joint information assurance model, which manages risks associated with information use, storage, and transmission. This model supports a wide range of information-sharing policies across both unclassified and classified communities.

Key capabilities of the program include Cyber Analytics, which develops tools to enhance DoD cyber information sharing for agile responses in defending the DoD Information Network (DoDIN). The program also emphasizes Perimeter Defenses, which protect network boundaries against web and email attacks while facilitating secure data transfer between different security domains. Notable components such as Enterprise Break & Inspect (EBI) and Sharkseer are integral to these defenses, providing decryption services for inspection and detecting cybersecurity threats.

Endpoint Security is another critical aspect, focusing on developing and delivering security functions that ensure compliance with DoD standards. This includes quarantining non-compliant devices to limit risks. Additionally, Thunderdome represents DISA's Zero-Trust Architecture initiative, which enhances security by continuously validating user credentials throughout digital interactions. This approach modernizes DISA's cybersecurity infrastructure to improve security posture and user access dynamically.

Ongoing efforts include procuring software licenses and hardware upgrades necessary for reducing vulnerabilities within the DoD network. These efforts aim to prevent exploitation by adversaries and ensure safe information sharing across classified and unclassified networks. Significant investments are planned for expanding capabilities such as Cyber Analytics probes, Perimeter Defense enhancements, Endpoint Security solutions, and Thunderdome's SD-WAN units to support secure routing of traffic from remote locations.