United States Air Force – Cybersecurity

At Air Force Capabilities Integration Environment (AF CIE), AAC stood up cyber-surety/security test zones for applications in the sandbox environment at the AF CIE. This provides for instantiating software assurance tools as part of the Joint Federated Assurance Center (JFAC) effort. It also supports Risk Management Framework (RMF) requirements (continuous monitoring) providing code scans to assist program offices in making deployment decisions on a continuous basis. AAC staff use Security Readiness Review (SRR) scripts to automate the STIG process, Security Content Automation Protocol (SCAP) content to stay aligned with future DISA guidance/actions, and ACAS to automatically identify configuration vulnerabilities that could threaten DoD computer systems.

The infrastructure/platform team at AF CIE is responsible for STIG implementation/self-healing, hardware management and monitoring, patching, application and environment troubleshooting, and storage and network engineering. We maintain Defense Research and Engineering Network (DREN), Secure Defense Research and Engineering Network (SDREN), Secure Internet Protocol Router Network (SIPRNet), Non-secure Internet Protocol Router Network (NIPRNet), and *com network connectivity. We leveraged our technical expertise gained in DoD production environments as well as CIE development environments to deploy automation technologies such as WSUS, BladeLogic, and HP PPM to deliver consistent patch implementation in the CIE configuration zones.