DISA creates 'demilitarized zone' for unclassified network

Also on tap: DISA command center, performance-based contracts

The Defense Information Systems Agency has created a "demilitarized zone" for unclassified applications to help manage access between the public internet and Unclassified but Sensitive IP Router Network (NIPRNet), according to Dave Mihelcic, DISA's CTO.

The DMZ also protects against cyberattacks, he said. In the case of a cyber attack, the DMZ would allow increased security while still leaving critical servers open to the internet as necessary

DISA has taken a leadership role to lock down military cybersecurity, and the DMZ is one of two programs that are emerging as key components to maintaining the security of DOD’s most sensitive data, officials have said.

“We have to share information safely,” said Richard Hale, DISA chief information assurance executive. “If we break sharing, we’ve broken a lot of things…but we still have to keep things secret.” Hale and Mihelcic spoke as part of a DISA panel at a luncheon held in Arlington, Va., and sponsored by the DC chapter of AFCEA.

The DMZ is “a collection of services to secure both inbound and outbound traffic, and control what is exposed and what isn’t,” Mihelcic said.

According to Hale, the DMZ concept – which he said will be re-named "Project Lightning" because “DMZ is the worst name possible” – emerged from combatant commanders’ need to take mission risks without putting other commands and leaders at risk.

“This will let us improve sharing; no more one-size-fits-all NIPRNet, and no one-size-fits-all reactions to problems on NIPRNet,” Hale said. He said the design and network restructure plans for Project Lightning/DISA DMZ have been agreed upon and will take about two years to roll out across all DOD networks.

Also being implemented is the DISA command center (DCC), which is designed to fill the gap between the closure of Joint Task Force-Global Network Operations and the establishment of U.S. Cyber Command. The command center will provide continuous oversight of DISA’s network and 13 subordinate regional operations centers.

“The DCC’s primary job is to be the synchronizer and director of all those operations centers to develop tactics, techniques and procedures to make sure the infrastructure is responsive,” said Larry Huffman, DISA principal director of Global Information Grid systems. “It will be the eyes and ears for the director and for the seniors of the agency. As we see issues out in the infrastructure, those get fed back so we can quickly fix things and mitigate issues in the field.”

Huffman said the center will employ a mix of 220 contractors, civilian employees and military personnel, and is currently at about 60 percent strength. The DCC is expected to be fully operational when DISA moves to Ft. Meade, Md.

Panelists also discussed the increasing focus on contractor accountability, which DISA is pursuing beginning with an upcoming performance-based Global Solutions Management (GSM) contract award, expected by Feb. 16.

Tony Montemarano, DISA component acquisition executive, acknowledged that moving to a performance-based contract is new to the agency, but stressed that DISA has worked hard to ensure a level playing field despite the complicated nature of the contracts.

He also said the agency's move to performance-base contracts is part of broader DOD plans – so industry needs to get ready.

“In addition to the normal contracting issues, you have to recognize that we have this insatiable desire for situational awareness and security,” he said. “We are going to want to have visibility into your solutions and those solutions are going to have to be secure in accordance with whatever we happen to tell you it has to be secured with, and that varies. The point is that you have to walk into it eyes open.”

About the Author

Amber Corrin is a former staff writer for FCW and Defense Systems.

FCW in Print

In the latest issue: Looking back on three decades of big stories in federal IT.


  • Shutterstock image: looking for code.

    How DOD embraced bug bounties -- and how your agency can, too

    Hack the Pentagon proved to Defense Department officials that outside hackers can be assets, not adversaries.

  • Shutterstock image: cyber defense.

    Why PPD-41 is evolutionary, not revolutionary

    Government cybersecurity officials say the presidential policy directive codifies cyber incident response protocols but doesn't radically change what's been in practice in recent years.

  • Anne Rung -- Commerce Department Photo

    Exit interview with Anne Rung

    The government's departing top acquisition official said she leaves behind a solid foundation on which to build more effective and efficient federal IT.

  • Charles Phalen

    Administration appoints first head of NBIB

    The National Background Investigations Bureau announced the appointment of its first director as the agency prepares to take over processing government background checks.

  • Sen. James Lankford (R-Okla.)

    Senator: Rigid hiring process pushes millennials from federal work

    Sen. James Lankford (R-Okla.) said agencies are missing out on younger workers because of the government's rigidity, particularly its protracted hiring process.

  • FCW @ 30 GPS

    FCW @ 30

    Since 1987, FCW has covered it all -- the major contracts, the disruptive technologies, the picayune scandals and the many, many people who make federal IT function. Here's a look back at six of the most significant stories.

Reader comments

Mon, Jan 10, 2011 Dave

It's FANTASTIC that DISA is going eliminate the name, "DMZ" in favor of the much more appropriate "Project Lightning!"

Sarcasm aside, I agree with the previous commenter. Mr. Hale, (DISA chief information assurance executive) needs to focus on getting the job done last week, not figuring out what to call the project!

Sat, Jan 8, 2011

Give me a break in saying that DISA has taken a leadership role. It's a well known fact that all the services had their DMZ's up and running protecting themselves from DISA's wide open NIPRNET. The fact this article discussed that the DISA CTO is now in 2011 is finally putting in a DMZ between DISA NIPR and the internet speaks volumes to why they need to go away and have the mission taken over by Cyber Command. Mr. Gates do you want to save billions? Please look at getting rid of DISA.... DISA customer

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group