Enterprise Modeling and Simulation (EMS):
Enhancing Cross-Company Collaboration to Improve the Quality of Solutions that Raytheon can Offer Our Customers
One of Raytheon’s core strengths is the broad and deep knowledge that exists across the company. Our collective expertise spans a wide range of high tech disciplines, providing a vast fund of knowledge that drives our success. However, knowledge in isolation does not generate solutions to the many complex technical challenges that our customers face. Enterprise Modeling and Simulation (EMS) addresses this problem by providing solutions to enable us to rapidly and effectively distribute our expertise, knowledge and simulation capability from where it resides to where it’s needed. This capability results in quick access to the information needed so our subject matter experts (SMEs) can provide innovative solutions to customer problems.
EMS is an effort that facilitates collaboration by permitting the sharing of data, including classified data, across the Raytheon Enterprise (Figure 1). EMS has partnered with Information Assurance (IA) and Information Technology (IT) specialists across Raytheon to provide governance and processes to facilitate analysis that benefits the government and Raytheon.
EMS has assisted in developing a strong mission analysis capability that supports the needs of our customers. Like a strong house, a strong mission analysis capability needs a good foundation. EMS provides this foundation by providing access to data and models, interacting with the customer modeling community, and enabling collaboration between a geographically dispersed set of SMEs. This work enables system and technology development to be more effective. Instead of starting from scratch, technology development efforts are able to leverage existing work within Raytheon or the customer modeling community. They are able to reach into Raytheon’s breadth of SMEs for support, which leads to more credible analyses. Credible analysis results produce more opportunities for customer engagement, improve investment strategy decisions, and help develop a better technical baseline to meet customer needs.
The EMS architecture encompasses a security framework, accreditation model and a secure product work environment that facilitate classified collaboration. Users of the infrastructure have modern tools available to them such as email, instant messenger, screen sharing and video teleconferencing. When users travel to different sites, they are already briefed to the information security plan and therefore they are able to use the same authentication credentials. They no longer have to think about having to “move” data from one site to another; they work in a common project workspace that is available from any deployed location.
Strong EMS governance, processes and procedures are employed to facilitate compliance with security requirements. The Security Framework pillar has responsibility for the creation and management of the governance that maintains compliance while providing a methodology that enables projects to succeed. Beyond collecting project requirements and generating the required security documentation, the most critical part of this pillar is the data co-use agreement. The co-use agreement is our mechanism for evaluating whether a specific set of program data can be moved and used for the specified project. Also included in the co-use agreement is whether the data has special handling requirements. EMS governance then ensures that the requirements stated in the co-use agreement are followed.
The second pillar of the EMS architecture is the Accreditation Model. The National Industrial Security Program Operating Manual describes two types of network accreditation: interconnected and unified. An interconnected wide area network (IWAN) comprises separately accredited systems and each site retains control and protects its own resources while a Unified Wide Area Network (UWAN) is a network accredited under a single system security plan. Each offers advantages and disadvantages in the areas of accreditation time, ability to add and remove hardware at different sites, and security infrastructure support for modern collaboration tools. Coordination with the Defense Security Service (DSS)1 resulted in the definition of an enhanced IWAN called IWAN 2.0. This approach provides granular control of the security environment at the participating site level, establishes one common active directory infrastructure, and is agile enough to efficiently support the dynamic nature of the WAN. The IWAN 2.0 accreditation model consists of one host site and multiple participant sites. The host site manages the Network Security Plan (NSP) and distributes a common security policy to the other sites, each of which customizes the policy to fit its needs. This accreditation architecture provides the ability to manage the network’s configuration without creating a high level of accreditation overhead, a highly desirable arrangement for both industry and DSS.
Secure Product Work Environment
The third pillar of the EMS architecture is the Secure Product Work Environment (SPWE). SPWE is the IT solution that meets the accreditation requirements of IWAN 2.0 while giving the users access to modern collaboration tools. The primary building block of the SPWE is named Program-in-a-Box (PnB). PnB is a common set of off-the-shelf hardware that creates a highly virtualized server and desktop infrastructure for streamlining the way we work within secure environments. It benefits users through collaboration services such as email, document sharing and instant messaging. At the same time, the PnB approach eliminates many redundant IT assets and lowers the management burden.
Enterprise Modeling and Simulation Accomplishments
Raytheon’s EMS team has led the development of three operational classified networks connecting six Raytheon locations across the country. Each network has its own unique contract security classification specification for specific technology projects, thus allowing the different sites within Raytheon to conduct collaborative program activities at a classified level. The classified networks allow much more than just the simple exchange of data. Each network contains a SPWE that provides a host of computer network collaboration services, including voice over Internet protocol (VoIP) communications; video teleconferencing (VTC); web-based project management; and numerous automation capabilities for system administrators, including software deployment, inventory and auditing.
Keys to Success
Partnering among IA, IT, and engineering is the key to our success. These relationships facilitate the sharing of best practices along with finding better ways to collaborate, lower operational costs and introduce innovative IT solutions into a complex accreditation environment. As the SPWE build-out continues and connectivity among Raytheon’s businesses expands, our governance, processes and procedures will become increasingly uniform, transparent and efficient across the company. We will continue to ensure protection of sensitive data while increasing the availability of information to people who require access.
1.The Defense Security Service is a U.S. Department of Defense agency that provides security support services to military services, defense and federal agencies and defense contractors.
Share This Story