Department Of Defense SharePoint Architecture Guide (DSAG) Part 7 Secured Availability
The various Department of Defense activities that are offered allow for decisions to be made based on various types of information. Security is as much of a priority as availability. The network of information may have various threats that take place. Some of them can be internal but others are external including threats from terrorists or criminals.
Hacking is also a concern and so a line of defense has to be in place to help offset such problems. The information has to be maintained through the information assurance which is a foundation for addressing these various concerns. By delivering information on the Department of Defense net centric visions there is place of ability here. The sharing of the information around the various government organizations is only one of them. The partnerships shouldn’t be compromised and so efforts have to be in place to continually counteract such threats that may exist.
Secured availability makes sure that the challenges of the department are met continuously in that net centric environment. The idea is for protection and security to be essential parts of the criteria offered. The IT infrastructure allows for data to be exchanged and for the authentication of the GIG information to be secured for all of the transactions.
This same process makes it possible for securely respond to any types of events that will threaten the operations of the GIG. The Department of Defense has to make a transition to the net centric environment that is in place. There will be a variety of rules and principles in place here. The shift will be towards the entire enterprise though so that solutions within the program work across the board.
When you implementing the secure availability in the net centric environment there needs to be the addition of new technology as well as new policies. All of this will be collaborated in the department. This will affect it on local, state, and Federal levels. It will also affect the various coalition partners that they have in place. Successfully implementing the abilities of the secured availability will result in the Department of Defense covering a variety of key elements. These include:
Managing identities for all users and services so that they can function in a dynamic environment. This also will allow for them to share information across the various networks of organizations out there, even though various levels of trust will be found among them.
To permanently bind the metadata so that it is done at the time that an object is created. This is going ensure that the data is visible as well as properly handled. The risks and threats out there will be carefully assessed in regards to the software, hardware, and services available. The level of trust will be determined by the IT managers.
The modification of resources quickly and effectively should be a priority. This includes bandwidth, storing, and processing. This covers the entire span of the enterprise and all of the policies that are in place.
Making improvements to the management of the security services that are offered within the infrastructure. This includes the encrypted information, the identity, and the security configurations of the management. An audit should also be conducted in that system for effective control in the area of checks and balances.
The reality of it is that the threat to security is one that can be constant. Therefore the community needs to have methods in place to counter any and all threats within the Department of Defense systems. Effectively assessing the security of the changes is important. It will ensure that even with new technology coming along that the environment can be modified as needed in order to make sure the level of security remains constant for the Department of Defense.
There are initiatives though that require solutions to offer an immediate return on such investments. At the same time they have to be able to both expand on and maintain the quality of the computer network defense abilities. This is a huge advantage which is offered through the net centric operations. The GIG has to be able to fight and to continue to move forward in spite of such attacks. It is critical that everything continues to operate before, during, and after such attempts have been made.
The priorities of the department mean that it is very likely for features to be offered in order to adequately represent the progress of the security. It can be implemented as it needs to be across the entire net centric environment. There are a variety of commitments that need to have such high levels of protection in place while the data is being transferred.
The department has to ensure that all of the parts of the mission will be addressed as part of the overall risk assessment that is being done by the Department of Defense. The framework of policies, procedures, and initiatives that are in place will help to offset any concerns of violations occurring.
The Department of Defense has information programs and applications in place for the various computer networks. This is a way for all of the data to be protected while it is being transferred. The level of confidentiality that is in place will help to determine this. The mission assurance and level of exposure also influence this information.
The infrastructure of the applications and services need to have boundaries that are able to be configured for the operations. This all has to be in compliance with the various policies. Those policies have to adequately address different types of systems within the enterprise. This means the community is able to have an interest and to support the operational needs of the mission.
The Department of Defense also offers services for various computer networks so that they can be monitored. This is all in compliance with the different detections and reactions to any possible intrusions. The goal is to limit the interruption of service due to any threats that may be in progress against the department of defense.
The roles of management and administration need to be very clear to so that the security of the operation can be maintained. The provisions that need to be made for training various users in the area of security operations have to be clearly defined as well.
The information technology that is used can be on a global scale. The international aspect of the hardware and software need to be in place due to the increasing need for global providers. The IT communications and services here do introduce some new challenges when it comes to security. The resources of the GIG have to be managed and protected at all times so that there aren’t any breaches to this level of security.
The assets of the GIG have to establish a mission assurance ability that allows the hardware and software to be supplied adequately. This is all done through the engineering of the program. Assessments have to be done in order to reduce vulnerability.