Analytics Division (AD): AD conducts analysis on cyber activity submitted by DIB Partners, DoD, and other USG agencies to develop a complete understanding of known or potential threats to unclassified DoD information on or transiting DIB systems and networks. AD also analyzes aggregate data from DIB Partner incident reports to produce technical analysis products, presentations, and other threat mitigation resources. The Division collaborates with liaison officers from USG agencies to create and maintain technical and multi-source threat profiles. The Analytics Division is comprised of two branches:
1. Tactical Operations: Conducts daily processing of voluntary and mandatory incident reports, as well as malware analysis, Customer Response Forms (CRFs), CRF Supplements, and partner engagement.
2. Applied Research: Handles mid- to long-term analysis, resulting in the following threat products: Threat Activity Reports (TARs), Cyber Targeting Analysis Reports (CTARs), Alerts, Warnings, Threat Information Products (TIPs), and other threat-based analyses. To share valuable information with the DIB, this branch requests the downgrade and release of classified information derived from USG sources. Such information is shared via DCISE’s Cyber Threat Bulletins (CTBs) and Advisories.
Expanded Offerings and Projects (XOP) Division: XOP researches services that support DIB Partners in protecting DoD information. These services are offered as pilots to the DIB Partnership. The pilots range from services to technologies and are intended to encompass all concepts, technologies and processes within cybersecurity. XOP was created because of the need for evolving solutions based on the ever changing cybersecurity environment and the diverse composition of the DIB partnership. Three branches constitute XOP:
1. Assess Branch: Performs analysis of cybersecurity processes of DIB partners through the Cyber Resilience Analysis (CRA) tool. This branch also evaluates other vulnerability and pen testing assessment procedures and provides them as a service to the DIB Partnership.
2. Assist Branch: Evaluates different cybersecurity technologies that can be provided to the DIB partnership as a pilot. Once the pilot is offered to the DIB, the information gathered from the capability is passed on to AD to determine if the information is applicable. Once the pilot is completed, and if it is determined to be successful, it may be considered as a permanent service offering for the Partnership.
3. Architect Branch: Researches and identifies the most effective ways to communicate with the DIB partnership. Their research discovers technologies that can best support transmitting cyber threat information from AD to the Partnership.
Mission Support Division (MSD): MSD executes functional areas including internal/external customer services, outreach, operational metrics, process improvement, quality assurance, quality control and organizational training. MSD builds and manages relationships with a wide range of DIB companies and USG stakeholders, and drives special projects that improve the overall customer experience. MSD is comprised of two branches:
1. Customer Engagement: Primarily responsible for customer relationships; DIB Partner on-boarding and outreach campaigns to promote DIB participation, DIBNET coordination with the DIB CS Program Office and DISA; as well as event planning for Technical Exchanges, Regional Partner Exchanges, and Virtual Partner Exchanges; and facilitating Analyst-to-Analyst and Business-to-Business Exchanges.
2. Organizational Readiness: A team of knowledge managers, business and process analysts; quality control analysts; quality assurance analysts, training manager, process owners and support staff to drive continual process improvement. Systematically coordinates and aligns resources and functions with the DCISE vision, mission, goals and objectives through the DCISE Performance Management Plan.