Army Enterprise Cloud Management Agency (ECMA) DevOps
To gain the competitive advantage needed to win on the battlefield in the Information Age, the Army has a mission critical need to operationalize its data and invest in resilient information ecosystems specifically designed to provide and protect critical information for the Joint Forces. The Army’s ability to master the application of cloud computing is critical in the pursuit of operationalizing data. The mission of the Army’s Enterprise Cloud Management Agency (ECMA) is to increase Army readiness and lethality and as part of a secure, globally dominant cloud ecosystem, ECMA is tasked with delivering DevSecOps products, services, and expertise that enable the Army to deploy applications across multiple classification levels and cloud service providers. ECMA required a DevSecOps vendor to assume, expand, and continuously improve upon ECMA’s DevSecOps CI/CD pipeline services to reduce complexity, increase security, eliminate duplication of effort, and increase the Army-wide adoption of cloud computing technologies.
Omni is implementing a new Kubernetes based multi-security, multi-tenant, hybrid-cloud platform for ECMA that includes Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and a DevSecOps pipeline as well as security, monitoring, and deployment services. Omni supports onboarding of over 250 product teams consisting of over 1500 developers onto the platform. Our development of a GitOps architecture enables a rapid, consistent process to update tools, resulting in reduced time for updates from approximately 4 hours of manual procedures to less than 20 minutes. Our development of a process, workflow, JIRA tracking board and metrics significantly improves the customer engagement process. Initially, customers were reporting a lack of response and inability for CReATE to answer their questions. Now, response time is within a day, and we are receiving positive customer feedback. In addition, we delivered a cluster to the Data Engineer Division with appropriate controls so they can more rapidly deploy their applications to a secure and containerized environment and leverage DevSecOps best practices.