The US Pentagon Is Speeding-Up Its Cloud Strategy

Amid two high-profile, multibillion cloud procurements, the Defense Department has released its military cloud strategy this month, laying a path forward for how the military branches and Pentagon components will adopt cloud technology.

Key aspects of the strategy are the Pentagon’s desire for both speed in adopting cloud and support from multiple cloud providers. The strategy also takes a “warfighter first” approach, cloud solutions must be built “in a manner that never puts the warfighter at risk”, and emphasises lethality.

The department will embrace a few types of clouds: general purpose clouds, fit-for-purpose clouds and internal clouds. The department’s Joint Enterprise Defense Infrastructure program, for example, will serve as a general cloud available for large-scale computing.

MilCloud 2.0 is considered a fit-for-purpose cloud, though the strategy states such clouds will need authorisation and to operate with the department’s general purpose clouds. Internal clouds would host items such as office tools.  

“At all times, the Defense Department needs to ensure that cloud is addressing the needs of improving military lethality,” the strategy states. “By constantly challenging itself around lethality with red teams, the Defense Department can ensure that the cloud will be positioned to support the challenges of the global environment.”

The strategy makes clear that while the Pentagon will retain some traditional data centers, only cloud computing will “enable the department to harness the full power of its data and information systems.”

Cloud will be the default for storing, accessing and processing data, apps, programs and other IT services, and will “lay the foundation for the Defense Department to accelerating AI and machine learning capabilities,” according to a Pentagon press statement.

“This marks a milestone in our efforts to adopt the cloud and also in our larger efforts to modernise information technology across the Defense Department enterprise,” Defense Department Chief Information Officer Dana Deasy said in a statement.

“A modern digital infrastructure is critical to support the warfighter, defend against cyberattacks and enable the department to leverage emerging technologies like machine learning and artificial intelligence.”

Cloud will be more important than ever in the coming year for the Pentagon. The Pentagon recently released a draft solicitation for its multibillion Defense Enterprise Office Solutions contract, while bids for its $10 billion JEDI contract are under evaluation.

Contracting experts at Deltek also predict 2019 will be the first year the Defense Department spends more than $2 billion on cloud computing.

DefenseOne

You Might Also Read:

Microsoft, Amazon CEOs Vow To Continue Defense Work:

« Russia May Disconnect From The Internet
Will Blockchain Change the World? »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

BSI Group

BSI Group

BSI is the business standards company that equips businesses with the necessary solutions to turn standards of best practice into habits of excellence

DriveLock

DriveLock

Our security solution is designed to prevent external attacks, which are evermore sophisticated as well as monitor, document and even prevent internal incidents.

Paessler

Paessler

Paessler is a leading worldwide provider of network monitoring software.

ABL Cyber Academy

ABL Cyber Academy

ABL provide certified training courses in the field of cyber security and IT project management.

Dataglobal

Dataglobal

Dataglobal is an industry-leading provider of Information Archiving/Governance and Unified Data Classification solutions.

Post-Quantum

Post-Quantum

Post-Quantum offer a unique, patented quantum-resistant encryption algorithm that can be applied to existing products and networks.

GovCERT Austria

GovCERT Austria

GovCERT Austria is the Austrian Government Computer Emergency Response Team. Its constituency consists of Austria's public administration.

Uppsala Security

Uppsala Security

Uppsala Security built the first crowdsourced Threat Intelligence platform known as the Sentinel Protocol, which is powered by blockchain technology.

CICRA

CICRA

CICRA is Sri Lanka's pioneering cyber security training and consultancy provider.

ShiftLeft

ShiftLeft

ShiftLeft is a continuous application security platform, purpose-built for the modern software development life cycle.

Riddle&Code

Riddle&Code

Riddle&Code combines the security of smart cards with the potential of Bitcoin Technology and the Internet of Things (IoT) to help master the challenges of our digital society.

Cybersecure Policy Exchange (CPX)

Cybersecure Policy Exchange (CPX)

Cybersecure Policy Exchange is a new initiative dedicated to advancing effective and innovative public policy in cybersecurity and digital privacy.

MagiQ

MagiQ

MagiQ QPN is a market leading Quantum Cryptography solution that delivers advanced network security.

FortifyData

FortifyData

FortifyData is the next generation of cyber risk management–a comprehensive platform that continuously evaluates your third-party, internal and people risks.

Diligent

Diligent

Diligent's SaaS GRC platform gives leaders a connected view of governance, risk, compliance and ESG across their organization.

Zerify

Zerify

Zerify Meet is the industry’s only video conferencing platform built with a zero-trust architecture to keep your meetings secure, private and business compliant.