SCCA-compliant landing zone with Cloud Native Access Point for IL-4/5

As defined by DISA, the purpose of SCCA compliance is to establish the foundation of a secure and compliant architecture that provides a sufficient barrier of protection between the Defense Information Systems Network (DISN) and the Cloud Service Provider (CSP). Though the definition is DoD-specific, the architecture is relevant to all medium and large customer environments.

Additionally, all aspects of the design have been architected with cost-optimization in mind, while creating a more secure environment for customers to operate in and manage their critical data. Coupled with a structured multi-account environment and prescriptive controls, this design lays the groundwork needed to create the layered defense and compliance required of any highly regulated customer space.

Adhering to the CNAP RD principles compliments the SCCA-compliant landing zone by improving access to cloud enclaves for Person Entities (PE, as defined in CNAP RD) and Non-Person Entities (NPE) using additional cloud native and cloud-ready security mechanisms. For IL-4 and 5 workloads requiring NIPR connectivity, the approved Boundary Cloud Access Point (BCAP) connection would be complimented by a virtual Internet access point (vIAP), allowing authorized ingress through the vIAP for PEs, as well as authorized egress to the internet for NPEs requiring access to approved software repositories as well as system-to-system interfaces with mission partners. All of this is built using zero trust principles (e.g. Software Defined Perimeter, micro-segmentation, separation of duties, dynamic authorization) based on DoD's Zero Trust Reference Architecture (ZTRA).

Whether you're a DoD mission owner responsible for migrating mission applications to the cloud or you're a federal customer that requires secure access to cloud resources, P3 has the experience and resources to deliver. In addition, P3 is prepared to assist the customer along the spectrum of AWS's cloud adoption framework, six perspectives designed to fit each customer's unique journey to the cloud.

P3, an AWS Premier Partner, has experience that spans the spectrum of deploying mission solutions for federal, defense, national security customers, and commercial customers in highly regulated industries. As a small disadvantaged business, we are a mature and poised organization that supports a wide variety of mission requirements.