CLASSIFICATION
Mr. Eric MarklandMr. Eric Markland
Deputy Director, NGEN Fleet Implementation Deputy Director, NGEN Fleet Implementation and Transition Team (FITT)and Transition Team (FITT)
10 March 200910 March 2009
NGEN and the Future of Navy Network Command and Control
UNCLAS
UNCLAS
Did You Know
Information is the Ammo
Our portfolio:
• IO
• Intel
• Cyber
• Networks
• Communications
• Space
• Fleet C4 and Mod
• COMSEC
• Spectrum Management
Established in 2002, mission has evolved to include many different Echelons
NCMO
2005
NMSC
2005
NCMS
2005
USFF N6
2004
NAVSPACE
2002NAVCOMTELCOM
2002
Fleet Intel
2008
NNSOC
2006
NAVSECGRU
2005
2
UNCLAS
NETWARCOM’s Role
• Man, Train, and Equip for:– Information Technology– Networks– Cryptology– Information Operations– Space– Intelligence
• Lead Network Warfare & FORCEnet Enterprise (NNFE)
• Community Leadership & Management• FFC N6
13,604 personnel with 35 worldwide Commands/Detachments
• Operate, Maintain, and Defend Networks
• Operational Authority for Info Ops (EW, CNO, PSYOP, MILDEC, OPSEC IAW NWP 3-13)
• Conduct Space Operations• Serve as Functional Component
Commander to USSTRATCOM for Space, Info Ops & NetOps
Readiness Operations
3
UNCLAS 4
NNE Alignment with GIG 2.0
CENTRIXS-M
Excepted Networks
ONE-NetBLII
ISNS
SCI Networks
NMCI
Enterprise networks are key to GIG 2.0
NNEToday
NCES
DKO
Enterprise Portal
Joint Enterprise
Data Strategy
DISA DECCS
Navy DECCS (DECC-N)
DoD DMZ
NNE SOA
Global NavalINTRANET
Attribute basedAccess
Strong AuthenticationSingle DoD Portal
DISN Core & TELEPORTBackbone
Central NNEGovernance under
JTF-GNO C2
Tactical Agility
GIG 2.0 “Top 5”
Common Policies& Standards
GlobalAuthenticationAccess Control
JointInfrastructure
Services“From the Edge”
Unity ofCommand
CANES
NGEN
UNCLAS
Next Generation Enterprise Network
The Next Generation Enterprise Network (NGEN) baseline will include the services currently offered on NMCI. NGEN will be an enterprise network that will provide secure, net-centric data and services to Navy and Marine Corps personnel. NGEN forms the foundation for the DON’s future Naval Network Environment (NNE) that will be interoperable with other Department of Defense (DoD) provided Net-Centric Enterprise Services.
5
UNCLAS
• Navy owned and managed network enables improvements in:
– Security • Compliance with National Security Agency IA Standards
• Ability to combat SIPRNet threats
– Warfighting Capability• Warfighter C2
• Ease of transition to new capability/application requirements
– Governance• Increased accountability for performance• Standardized business rules, infrastructure and architecture
– Adaptability• Enhanced responsiveness to increasingly dynamic requirements• Incorporates new technologies when and as required
– Reliability• Contingency/Disaster Recovery, Path Diversity, Data Storage
NGEN Tenets
6
UNCLAS
• Gain Government C2 of the network
– Initially provides continuity of NMCI-like services
– Employs common DON Enterprise Governance, Standards and Architecture
– Increases responsiveness to changes in DON business rules and operational warfighting requirements
– Re-aligns network capabilities to ensure joint requirements are met
– Enables industry proven, responsive, leading edge network security improvements
– Leverages industry expertise and proven standards (ITSM)
Why Change?
7
UNCLAS
What is Network C2?NetOps Framework
8
UNCLAS
Unified C2Exerting Control over IT Services
9
IT Service Management
NetOps functions are mapped to a framework for IT Service Management. The advantage of mapping the NetOps mission essential tasks into this framework is that processes, functions, and terminology are clearly defined and provide a common lexicon to describe NetOps processes and functions to vendors/contractors.
• IT Infrastructure Library (ITIL). ITIL will be used for individual certifications and to describe NetOps processes.
• ISO 20000. ISO 20000 compliance check sheet will be used to certify a command. ISO 20000 is fully consistent with the ITIL framework.
IT Service Management
NetOps functions are mapped to a framework for IT Service Management. The advantage of mapping the NetOps mission essential tasks into this framework is that processes, functions, and terminology are clearly defined and provide a common lexicon to describe NetOps processes and functions to vendors/contractors.
• IT Infrastructure Library (ITIL). ITIL will be used for individual certifications and to describe NetOps processes.
• ISO 20000. ISO 20000 compliance check sheet will be used to certify a command. ISO 20000 is fully consistent with the ITIL framework.
Network Control
NetOps requires the ability to direct and manage available resources, or allocate them to specific missions. The ability to exert control over these resources enables command functions, which is the ability to direct changes to resources as necessary to achieve a desired result within a specified timeframe.
• Network control is achieved with the ability to:– Prioritize responses to events/incidents/problems
using event/incident/problem management processes– Closure of events and incidents using event and
incident management processes– Establish policies and direct changes in response to
cyber threats or attacks using information security management processes
– Direct move, add, changes (MACs) using change management processes
– Grant/revoke access to IT services using access management processes
– Establish criteria for and/or direct the implementation of continuity of operations activities using IT service continuity management processes
Network Control
NetOps requires the ability to direct and manage available resources, or allocate them to specific missions. The ability to exert control over these resources enables command functions, which is the ability to direct changes to resources as necessary to achieve a desired result within a specified timeframe.
• Network control is achieved with the ability to:– Prioritize responses to events/incidents/problems
using event/incident/problem management processes– Closure of events and incidents using event and
incident management processes– Establish policies and direct changes in response to
cyber threats or attacks using information security management processes
– Direct move, add, changes (MACs) using change management processes
– Grant/revoke access to IT services using access management processes
– Establish criteria for and/or direct the implementation of continuity of operations activities using IT service continuity management processes
Objective:Define critical NetOps control functions within an IT service
management framework
UNCLAS
Shared Situational Awareness
10
Shared situational awareness
Near real time information on the status of IT services and supported commands improves the quality and timeliness of collaborative decision-making regarding the employment, protection and defense of the network
• Situational Awareness is achieved with:– Service level status from service level
management processes– Threat reporting from information security
management processes– Vulnerability assessment from information
security management processes– Event/Incident/Problem status from
event/incident/problem management processes– GIG/Service network status
Shared situational awareness
Near real time information on the status of IT services and supported commands improves the quality and timeliness of collaborative decision-making regarding the employment, protection and defense of the network
• Situational Awareness is achieved with:– Service level status from service level
management processes– Threat reporting from information security
management processes– Vulnerability assessment from information
security management processes– Event/Incident/Problem status from
event/incident/problem management processes– GIG/Service network status
Network Common Operational Picture (NETCOP) synthesizes current performance of IT services, operations, and threats into an integrated picture that supports both NetOps commanders as well as operational commanders by reporting the status, threat, vulnerability, and mission impact of degradation in a manner tailored to their areas of responsibility/interest.
Network Common Operational Picture (NETCOP) synthesizes current performance of IT services, operations, and threats into an integrated picture that supports both NetOps commanders as well as operational commanders by reporting the status, threat, vulnerability, and mission impact of degradation in a manner tailored to their areas of responsibility/interest.
Objective:A common set of reporting
procedures, tools, and standards to share situational awareness
information in near real-time with relevant decision-makers.
UNCLAS 11
NETWARCOM Role During TransitionNGEN Fleet Implementation and Transition Team (FITT)
• Mission Statement:
The NGEN FITT exists to develop, maintain and promulgate a coordinated executable strategy to ensure effective transition from NMCI to NGEN
• Purpose:
– Support the short- and long-term goals and objectives of the Naval Networking Environment (NNE) 2016 Strategy
– Provide guidance and assistance to transition from NMCI to NGEN
– Act as the NGEN Stakeholder Communications Lead for the Fleet
– Persistent NNWC LNO physically located at the SPO
• Objectives:
– Define detailed Command and Control (C2) functions through Early Transition Activities (ETA)
– Prevent network disruptions during roll-out
– Develop operational and user processes and coordinate training
– Minimize impact on DON warfighter mission and users
UNCLAS 12
NETWARCOM Role During TransitionNGEN Fleet Implementation and Transition Team (FITT)
• Stand-up Global Network C2 structure for NGEN
• Developing the personnel, processes and tools needed to support NGEN NetOps requirements and capabilities
– Visibility into the health and status of NGEN operations
– Ability to associate performance issues with specific NGEN segment
– Focus on network defense activities
– Development of tools and processes to exercise C2 over NGEN
• Implement global, regional, and local NetOps authorities under NGEN as documented in the signed NGEN NetOps CONOPS
NetOps CONOPS signed by VADM Starling (NETWARCOM), VADM Edwards (OPNAV N6), and BGEN Allen (HQMC C4)
UNCLAS
Summary
• Starting with NGEN, DON is working towards implementing the NNE
• NETWARCOM’s FITT is leading operational transition from NMCI to NGEN
• Three major pre-Transition efforts will effect NETWARCOM and its Commanders
– Stand-up of the Global NetOps C2 structure for NGEN
– Development of People, Processes and Tools for operational control
– Implementation of Open Standards for IT Service Management (ITSM) and employment of industry-proven ITIL framework
NETWARCOM and its Commanders will retain Operational C2 of the network under NGEN. Preparation starts now.
13