Department of the navy, chief information office don cio dod enterprise software initiative esi commander, navy installations command cnic dau acquisition community connection. Omb policy memorandums m0314, m0408, m0416, and m0525. Rankings based of off effectiveness of attribute with 1 being least conducive to the acquisition process benefiting product to end user and 5 being most beneficial. It category management and the dod enterprise software initiative. Dod devsecops initiative value for dod programs defense. Hardens the 172 dod enterprise containers databases, development tools, cicd tools, cybersecurity tools etc. Improve and at times also to distribute the software. Lead in the establishment and management of enterprise cots information technology it agreements, assets, and policies for the purpose of lowering total cost of ownership across the dod, coast guard and intelligence. Dod enterprise software initiative esi is a joint project originally established to implement a software enterprise management process within dod. Jun 06, 2019 the defense department is pursuing an aggressive software development program, called the dod enterprise devsecops initiative.
Category management enables the government to eliminate redundancies, increase efficiency, and deliver more value and savings from the governments acquisition programs. Establish one or more new acquisition pathways for software that prioritize continuous integration and delivery of working software in. Establishes policies and procedures relating to the acquisition of all programs and systems containing it, across all of the acquisition pathways defined in dodi 5000. Ato n working with dau to bring state of the art devsecops curriculum n. This attribute map compares the key factors in department of defense dodsponsored and privately held companies that participate in the government acquisition process.
Rankings based of off effectiveness of attribute with 1 being least conducive to the acquisition process benefiting productto end user and 5 being most beneficial. Chief software officer nicolas chaillan is leading the mission to make the digital air force a reality by supporting our airmen with software enterprise capabilities and is the colead for the dod enterprise devsecops initiative. The enterprise software initiative esi is a joint project designed to implement a true software enterprise management process within the department of defense dod. Hot topic forum using devsecops to create dod software. Defense acquisition university 9820 belvoir road fort belvoir, va 22060 contact us. Dod has stood up a number of clouds that have not been architected or designed for enterprise use.
Dod components will purchase removable storage media and data. Defense departments devsecops initiative is on the move. Identify contract types most suitable for it software systems. Office of the undersecretary of defense for acquisition and sustainment and the services focused on bringing automated software tools, services and standards to dod programs so that warfighters can create, deploy and operate software applications in a secure, flexible and interoperable manner.
Acquisition of information technology it executive services. Department of defense, the defense agencies, the dod field activities, and all other organizational entities within the dod hereinafter referred to collectively as the dod. Meanwhile, the worlds largest enterprise network the navy marine corps intranet nmci is going through a transition. It is more efficient but more costly than traditional software acquisition strategies procedures for esi are specified in dodd 8500. William roper, the assistant secretary of the air force for acquisition, technology and logistics, arlington, virginia. Acquisition university dau on new software acquisition pathways for. You are on an integrated product team ipt working on putting. Office of the under secretary of defense for acquisition and.
The dau devsecops academy is a partnership between dods software innovators, devsecops pioneers, elite academia. Department of defense dod enterprise software initiative esi. He is also the colead for the department of defense enterprise devsecops initiative with the department of. It is imperative that dod has a cloud strategy to ensure that legacy applications are not moved to cloud without properly rearchitecting them to make use of the data, security. Security technical implementation guides stigs that provides a methodology for standardized secure installation and maintenance of dod ia and iaenabled devices and systems. Aug 20, 2019 the current department of defense dod software acquisition process is not responsive to the needs of our warfighters. Airmen with software enterprise capabilities and is the colead for the dod enterprise devsecops initiative. Reform and reshape the defense institution, key strategic initiative improving competitiveness through accountability and efficiency and so 5.
Instead, software should enable a more effective joint force, strengthen our ability to work with allies, and improve the business processes of the dod enterprise. Department of defense enterprise software initiatives ltc tom loper office of the director for information systems for command, control, communications and computers 25 july 2000 thomas. Dod components will purchase removable storage media and. I n t e g r i t y s e r v i c e e x c e l l e n c e what is the dod enterprise devsecops initiative. Dod enterprise devsecops initiative nicolas chaillan, chief software. Defense acquisition university 9820 belvoir road fort belvoir, va. Enterprise software initiative department of navy chief. Describe what the dod enterprise software initiative esi is and under what conditions it should be used.
Department of defense dod information technology it. Its mission is to provide the acquisition community with the right learning products and services to make smart business decisions. Department of defense, the defense agencies, the dod field activities, and all other organizational entities within the department of defense hereafter referred to collectively as the dod components. Improve financial processes, controls, and information via audit readiness. The purpose of this web site is to facilitate effective information flow about the dod enterprise software initiative dod esi. Dod enterprise software initiative esi community homepage. Jun 20, 2019 the dod enterprise devsecops initiative so far has 29 organizations working with it, including special operations command, transportation command, naval air systems command, and the naval. Department of defense enterprise software initiatives.
It is designed to acquire software that is tailored to the specific needs of a particular dod service or agency. Fully compliant with the dod enterprise devsecops initiative dsop with dod wide reciprocity and an ato. Congress and dod should refactor statutes, regulations, and processes for software, enabling rapid deployment and continuous improvement of software to the field and providing increased insight to reduce the risk of slow, costly, and overgrown programs. The dsop is joint effort of the dods chief information officer, office of the undersecretary of defense for acquisition and sustainment and the services focused on bringing automated software tools, services and standards to dod programs so that warfighters can create, deploy and operate software applications in a secure, flexible and. Take advantage of dod enterprise software initiative esi, particularly when. Standardizing metrics and define acceptable thresholds for continuous ato. Therefore, it is difficult for the dod to keep pace with our potential. Nicolas chaillan, special advisor for cloud security and devsecops to the under secretary of defense for acquisition and sustainment, pres. Dod enterprise devsecops architecture defense acquisition.
The dod enterprise software initiative esi is a contract mechanism that establishes and manages commercialofftheshelf cots information technology it agreements, assets, and policies for the purpose of lowering total cost of ownership across the dod, coast guard and intelligence communities. The department of defense enterprise software initiative, established in 1998 and sponsored by the dod chief information officer, was created to consolidate requirements for commercial software applications and negotiate with vendors to save time and money in the acquisition of software. New dod enterprise software initiative agreements by chips magazine julyseptember 2004 department of defense enterprise software initiative esi blanket purchase agreements bpas were recently established for systems integration services with accenture, bearingpoint, computer sciences corp. All defense technology projects and acquisition programs, including acquisitions of services. Category management and strategic sourcing defined category management is an approach the federal government is applying to buy smarter and more like a single enterprise. Xacta ia manager establishes a centralized security management platform that facilitates compliance assessment, continuous risk and compliance management, and security process enforcement. Dod it enterprise strategy and roadmap 1 1 introduction in august 2010, the secretary of defense secdef announced a department of defense dod wide efficiencies initiative to move americas defense institutions toward a. Enterprise software management is becoming more pervasive throughout the u. Enterprise software and the dod military embedded systems. Dod esis mission extends across the entire commercial it lifecycle combining the dods. Recall the critical considerations and requirements that should be a part of rfp planning for software systems 9 which of the following best characterizes the dod enterprise software initiative esi.
Unclassified dod enterprise devsecops initiative software factory. The dod enterprise devsecops reference design leverages a set of hardened devsecops tools and deployment templates that enable devsecops teams to select the appropriate template for the program application capability to be developed. For those seeking software solutions and maintenance for open java. Ensures dod it standards are established and maintained, in accordance with dodi 8310. It presents a single dod negotiating position to dod vendors. Dod components will purchase removable storage media and data at rest dar products from the dod enterprise software initiative esi blanket purchase agreements program. Starting with twentythree software best practices identified and adopted by the dod esi working group, dod esi has implemented a dodwide business process for acquiring, distributing and managing. Nicolas chaillan, a highly qualified expert, is appointed as the first air force chief software officer, under dr. Dod enterprise devsecops initiative defense acquisition.
Intellectual property rights and the us government arthur k. Oss is treated by dod as commercial cs, so licenses must be. Dod enterprise software initiative esi currently selected. Secnav don cio navy pentagon washington, dc 20350. The dod enterprise software initiative dod esi is a joint, chief information officer ciosponsored project designed to. Describe what the dod enterprise software initiative is and under what conditions it should be used explain typical best practices for softwareintensive systems identify typical best practices summarize course materials recognize other relevant it and sam courses irm 101 basic information resources management dau course objective crosswalk. The effort is focused on bringing automated software tools, services and standards to dod programs so that warfighters can create, deploy and operate software applications in a secure, flexible and interoperable manner, explained nicolas chaillan, chief software. Starting with twentythree software best practices identified and adopted by the dod esi working group, dod esi has implemented a dod wide business process for acquiring, distributing and managing. Dod enterprise devsecops initiative defense acquisition university. The dau devsecops academy is a partnership between dods software innovators, devsecops pioneers, elite academia, and industry experts. Instructions and additional detail can be found in subpart 208. Recall characteristics of the dod enterprise software initiative esi. Smartbuy enterprise software agreement fa877116a0001 xacta ia manager.
Fedscoop public sector innovation summit dod enterprise. Dod enterprise software initiative the dod enterprise software initiative esi is a contract mechanism that establishes and manages commercialofftheshelf cots information technology it agreements, assets, and policies for the purpose of lowering total cost of ownership across the dod, coast guard and intelligence communities. In addition to identifying risks, xacta ia manager automatically initiates. S91 requirements for commercial software and related services, such as software maintenance, in accordance with the dod enterprise software initiative esi shall not require a signed dd form 2579 by the office of small business programs providing the contracting officer or ordering officer completessigns a new dd form 2579 for the contract. Dod esis mission extends across the entire commercial it lifecycle combining the dods buying power with commercial software publishers. You are on an integrated product team ipt working on. The dod enterprise software initiative esi website offers several training videos sponsored by. By pooling commercial software requirements and presenting a single negotiating position to leading software vendors, esi provides pricing advantages not otherwise available to.
Outline the critical considerations and requirements that should be a part of rfp planning for software systems. Leverages the dod hardened containers while avoiding onesizefitsall architectures. Dod business website links dod component cost estimate dod directive 5000. Fully compliant with the dod enterprise devsecops initiative dsop with dodwide reciprocity and an ato. Technology excellence in execution is enabled by avoid vendor lockin at the infrastructure and platform layer by leveraging foss with kubernetes and oci. Countless past studies have recognized the deficiencies in software acquisition and practices within dod, but little seems to be changing. Pages dod enterprise software initiative esi community. Department of defense because of its cost advantages and the inherent security advantages of having one network based on common standards. Department of defense dod enterprise software initiative. Technology excellence in execution is enabled by avoid vendor lockin at the infrastructure and platform layer by leveraging foss with kubernetes and oci containers.
804 98 1532 654 894 565 1156 34 465 670 1617 80 1466 224 149 562 1331 1031 62 888 652 1621 573 1538 975 1179 769 625 1460 341 722 1428 1624 1483 1372 482 830 1312 863 1025 331 575 414 630 1157 1425 1090 1129