DoD-Defense Industrial Base (DIB) Collaborative Information Sharing Environment (DCISE)
Defense Industrial Base Collaborative Information Sharing Environment Overview

Designated as the single focal point and data repository for DIB cyber incident reporting, as required by 10 U.S. Code Sections 391 and 393 and Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012, DC3 DCISE enriches DIB reporting with all-source intelligence analysis and disseminates this information via various intelligence products, reports, and actor profiles to enable a broad range of actions against malicious cyber actors.

While reports under the DFARS clause are mandatory, additional cyber DIB activity is reported on a voluntary basis.

  • Collaborative partnership with over 1,100 Defense Contractors (DC) and US Government (USG) agency stakeholders
  • Distributes a substantial number of actionable, non-attributable indicators daily
  • Offers forensics, malware analysis, and cybersecurity capabilities for DIB Partners
  • Shares a significant number of cyber threat reports (hundreds annually) for both DIB and USG consumption (USG members can access via SIPRNet Intelshare)
  • Operates 24/7/365 DC3 DCISE support hotline (1-877-838-2174) to assist submitters and DIB and USG Partners
  • Rated as Capability Maturity Model Integration for Services (CMMI-SVC) Maturity Level 3
 
     DCISE News    DCISE Cyber Threat Roundup

Mandatory and Voluntary Incident Collection Format (ICF) Reporting for the DIB

Report a Cyber Incident
Contact Us

Phone: 
410-981-0104
  
Toll Free: 
1-877-838-2174

  Email: 
dc3.dcise@us.af.mil
 

Follow us on X: DCISE

DCISE Services

Analyst-to-Analyst Meetings

Private DIB Analyst-to-Analyst (A2A) meetings are hosted by DCISE at DC3, discussing tactics,
techniques, and procedures (TTPs) used by advanced persistent threat (APT) actors.

Technical Exchanges

DCISE personnel are available to meet with industry partners and government stakeholders to share insight on handling intrusion-related activity.  

DIB Technical Teleconferences

DIB partners and DCISE analysts have unclassified discussions on adversary techniques and targeted networks.  

Cyber Threat Products

DCISE cyber threat products assist partners in strengthening security and protecting controlled unclassified information.    

Cyber Resilience Analysis (CRA) Self-Evaluation Tool

A CRA is a structured assessment of an organization's capacity to withstand, adapt to, and recover from cyber disruptions. The self-evaluation tool, containing 299 questions across 10 security domains focuses on information, technology, facilities, and personnel resources, and allows an organization to assess its capabilities relative to the NIST Cyber Security Framework, NIST 800-171, and CMMC requirements.

Disclaimer: The CRA reflects an organization’s capabilities only at the time of the self-assessment and is not intended to be a compliance activity.
 

DCISE Capabilities

DC3 DCISE specializes in cyber activity analysis to understand cyber threats to unclassified DoD information on DIB systems and networks. This includes daily incident report processing, malware analysis, and engagement with partners to gather necessary information. Additionally, it conducts mid- to long-term analysis, producing threat reports and analyses for the DIB, including sharing downgraded classified information. DC3 DCISE produces technical analysis products and collaborates with USG agencies to ensure a whole-of-government approach to DIB cyber threats.

DC3 DCISE researches and provides cybersecurity services to DIB Partners, adapting to the evolving cybersecurity landscape. This involves evaluating cybersecurity resilience, performing vulnerability testing for DIB partners, and evaluating cybersecurity technologies through pilots. Insights from these activities are shared to facilitate rapid cyber threat exchange between DoD and the DIB Partnership.

DC3 DCISE handles DIB Partner services, outreach, metrics, and process improvement. We value strong customer relationships supported by user-friendly onboarding, information sharing events, and 24/7 responsiveness. Our team coordinates resources and functions to align with long-term plans, driving continual process improvement.