JRSS Improves the DoD Cybersecurity Posture

Joint Regional Security Stack (JRSS) Improves the DoD Cybersecurity Posture

CHALLENGE: The Joint Information Environment (JIE) is a paradigm shift for DoD and represents the largest joint IT modernization effort since Global Information Grid-Bandwidth Expansion (Gig-BE). This new enterprise is built on several critical foundational components including JRSS, which must be rolled out across hundreds of sites in every Unified Combatant Command around the world. NES Associates, LLC has been involved with the DoD initiative to build a common JIE network since the very beginning of the effort. We have supported the development of the architecture from the detailed design phase to execution, and most importantly with the rollout of JRSS.

At the core of this multi-network, multi-tenant/multi-agency enterprise is a standardized core Internet Protocol (IP) transport service network (Multi-Protocol Label Switching (MPLS) Service Network), with regionally collapsed security stack services (Joint Regional Security Stacks (JRSS)), and a standardized Base / Post / Camp / Station (B/P/C/S) campus area distribution network (Installation Campus Area Network (ICAN)). This enterprise is transported on an extremely high-speed 100Gb optical backbone.

SOLUTION: NES has been developing architecture, solutions and capability for the infrastructure and implementation of JRSS. As part of the architecture, design and implementation process, NES provides each customer with technical solutions that tie each of these components together in a unified manner in order to realize the enterprise vision, and actively work toward fulfilling the vision of the JIE.

JRSS provides network traffic intrusion detection, intrusion prevention, multi-tier firewall services, content filtering, logging, packet capture services and inter Virtual Routing and Forwarding (VRF) policy filtered routing services for all participating B/P/C/S. The JRSS has been designed to provide these security services to all participating Department of Defense (DoD) Agencies no matter what B/P/C/S they reside on, within a JRSS’ regional boundaries.

RESULT: NES fielded the JRSS worldwide in key locations throughout the United States, Europe and Southwest Asia. The JRSS serves as a perimeter security boundary and also ensures lateral traffic, such as inter-regional IP traffic, can traverse JRSS control points. This design provides higher visibility into the network and provides DoD agencies with end-to-end cybersecurity visibility and control.