Information System Security Program-ISSP

Information System Security Program-ISSP under the Army's Communication and Electronics Equipment budget activity, aims to support the Army's Network Strategy by modernizing Communication Security (COMSEC) through the Information Systems Security Program (ISSP). This program collects COMSEC requirements, procures and fields solutions, key management capabilities, Information Assurance (IA) / Cyber tools, and associated hardware infrastructure to secure the Department of Defense Information Network (DoDIN) against evolving cyber threats. Additionally, it supports the identification and allocation of new and emerging COMSEC capabilities required to protect Army's architectures and to replace current and legacy cryptographic systems with technologically advanced devices. The ISSP also ensures that the Army keeps pace with cryptographic modernization, advanced key management, and network-centric performance capability mandates.

The FY 2024 Base procurement dollars in the amount of $0.701 million for the Information System Security Program-ISSP support automated capability to conduct COMSEC and hardware infrastructure modernization oversight, perform requirement and Army Command Plan validation. These funds also support responding to operational mission needs and permit prioritization of COMSEC requirements. Furthermore, they provide for life cycle refresh of equipment to support mandated cybersecurity requirements to secure the DoDIN, such as Defense Information System Agency (DISA) Security Technical Implementation Guides (STIGs), Risk Management Framework (RMF) controls, and to meet Department of Defense (DOD) requirements.