What is DOD Cloud IaC?
DOD Cloud Infrastructure as Code (IaC) is a collection of preconfigured templates that use automation to build secure cloud environments. The DOD Cloud IaC templates, called “baselines,” use automation to generate preconfigured, preauthorized, Platform as a Service (PaaS) focused environments. These IaC baselines for Azure, AWS and Google can be deployed by a mission partner to establish their own cloud platform.
DOD Cloud IaC helps customers adopt cloud smarter and faster, providing our customers with the best value service for their cloud journey. HaCCers deploy the baselines in a short onboarding session, which significantly shortens our customers’ cloud journeys.
Why DOD Cloud IaC?
DOD Cloud IaC streamlines cloud deployment, authorization, and security for mission partners, shortening the typical cloud journey by seven months. DOD Cloud IaC uses automation to accelerate cloud adoption in the form of baselines that build out cloud environments in hours. It also speeds up the authorization process with inheritable common controls and the use of PaaS services, which eliminate the need for Security Technical Implementation Guides, Assured Compliance Assessment Solution and Host Based Security System. The DOD Cloud IaC baseline has successfully shortened the deployment of the networking, identity, and security policies for security compliance from the standard 30 weeks down to just two hours.
Features.
DOD Cloud IaC supports accelerated adoption by leveraging automation in the form of IaC templates that build out cloud environments in minutes. DOD Cloud IaC also speeds the authorization process with inheritable common controls and the use of PaaS services which eliminate the need for Security Technical Implementation Guides (STIGs), Assured Compliance Assessment Solution (ACAS) and Host Based Security System (HBSS). This means that DOD Cloud IaC can deliver organizations a PaaS environment quickly and efficiently.
-
Authorization to Operate (ATO) from DISA Risk Management Executive (RME).
-
100+ Common Controls in Enterprise Mission Assurance Support Service (eMASS) to expedite mission application Assessment & Authorization (A&A).
-
Complete identity solution for both privileged users and application-level CAC users, including integration with DISA’s Global Directory service to federate with DOD’s Enterprise Identity Infrastructure.
-
Baselines at IL2, IL4, IL5 and IL6
-
Real-time continuous monitoring & compliance
-
Architecture standardization support across all Impact Levels (IL) and classifications
-
Cloud service provider offerings including native security services and Platform as a Service (PaaS), which improve integration and technology insertion, reducing the burden of middleware integration, hardening and patching for mission owners.
Identity Solution.
DOD Cloud IaC provides a complete identity solution for both privileged users and application-level CAC users. It also integrates with DISA’s Global Directory service to federate with DOD’s Enterprise
Identity Infrastructure.
How to order DOD Cloud IaC.
DOD Cloud IaC currently has 20 service deployments across the Department. Baselines are currently available for Microsoft Azure and Amazon Web Services and the HaCC is piloting Google baselines. If you are interested in ordering DOD Cloud IaC, please use the contact us feature and we will be in touch shortly.