Info Systems Security Program (ISSP)

The Information Systems Security Program (ISSP) is a comprehensive Navy initiative focused on ensuring the protection of Navy and joint cyberspace systems from exploitation and attack. The program encompasses a broad range of systems, including wired and wireless telecommunications, cybersecurity infrastructure, and the content processed, stored, or transmitted within these networks. ISSP's primary goal is to provide the Navy's warfighters with essential information trust characteristics such as availability, confidentiality, integrity, authentication, and non-repudiation. It is designed to adapt rapidly to evolving cyber threats and vulnerabilities. The program is managed under the Navy's Other Procurement appropriation and specifically supports cryptographic equipment and cybersecurity capabilities across both afloat and ashore environments.

Public Key Infrastructure (PKI) is a key component of ISSP, designed to implement secure infrastructure for the generation, management, and delivery of digital certificates. PKI supports secure electronic transactions, two-way authentication for networks and applications, and secure email communications. The Navy Certificate Validation Infrastructure (NCVI) and hardware token products are procured to ensure robust certificate management for both classified and unclassified networks. The program plans to procure additional PKI systems, with ongoing support and installations managed by the Defense Manpower Data Center in Alexandria, VA.

Navy Cyber Situational Awareness (NCSA) provides Navy commanders with timely, trusted, and comprehensive situational awareness of the cyberspace domain. NCSA enables near real-time visualization of network health, vulnerabilities, and operational readiness through the Readiness Analytics and Visualization Environment (RAVEN) and the Navy Commander's Cyber Dashboard (NCCD). The program implements hybrid cloud-based Big Data Platform (BDP) instances for data sharing between Navy Defensive Cyberspace Operations and joint cyber situational awareness systems. Planned procurement and installation of NCSA suites will support Fleet Cyber Command, Maritime Operations Centers, and Navy Network Warfare Command.

Computer Network Defense (CND) focuses on securing Navy networks both afloat and ashore. CND ashore systems include host-based protection tools, vulnerability assessment tools, cyber remediation hardware and software, and deployer toolkits. These systems are tailored to specific site missions and threat environments, supporting regional Network Operation Centers, Navy Cyber Defense Operations Command, and Theater Network Operations & Security Centers. Additional ashore and afloat systems are scheduled for procurement and installation, with ongoing support and training provided to ensure operational readiness.

Navy Cryptography (Crypto) modernizes legacy cryptographic equipment for both afloat and ashore platforms. The program procures and installs NSA Type-1 end cryptographic units, including Advanced Cryptographic Capabilities, In-Line Network Encryptors, and devices supporting Cryptographic Modernization mandates. These upgrades are essential to meet NSA requirements and to ensure secure communications for Navy, Marine Corps, and Coast Guard platforms. Increased investment is driven by modernization requirements and NSA directives.

Key Management (KM) provides the infrastructure for secure distribution and management of cryptographic keys. KM includes Tier 1 Key Management Infrastructure, Tier 2 security equipment, and Tier 3 key load devices such as Simple Key Loader, Tactical Key Loader, and Next Generation Load Device. The program supports regular tech refresh cycles mandated by NSA, ensuring that hardware and software components are updated every five years. Additional key load devices and KMI tech refresh installations are planned for both afloat and ashore environments.

SHARKCAGE is the Navy's Defensive Cyberspace Operations analysis enclave, providing attack sensing and warning capabilities for maritime forces both afloat and ashore. SHARKCAGE consolidates cyber event data from multiple platforms, enabling integrated workflow, collaboration, and analysis for Defensive Cyberspace Operations forces. The program procures analytic suites, sensor nodes, and workbenches to support passive network monitoring, intrusion detection, and real-time alerting. Planned procurement and installation of SHARKCAGE suites will support Fleet Cyber Command, Navy Cyber Defense Operations Command, and regional cyber defense operations.