01
Cyber Mission Force (CMF)
USCYBERCOM's operational arm. ~133 teams across offensive (Combat Mission Teams), defensive (Cyber Protection Teams), and support (Cyber Support Teams, National Mission Teams) missions. Built incrementally since 2013, declared at initial operating capability in 2018. Public expansion to ~158 teams announced 2023 under President Biden's NSM-13 cyber operations policy.
::key facts
- · Operating under USCYBERCOM headquarters at Fort Meade
- · Service-component cyber forces (Army Cyber, Navy Fleet Cyber, AF 16th Air Force, Marine Forces Cyberspace Command) source personnel
- · Distinguished offensive Title 50 (intelligence) vs Title 10 (military operations) authority
- · Public expansion to 158 teams announced 2023 — net +25 teams over Phase 1
Where to read: cybercom.mil · DoD press releases · GAO reports on CMF (multiple, 2019-2024)
Announced August 2023 by Deputy SecDef Kathleen Hicks. Goal: field thousands of attritable autonomous systems across air/land/sea/space within 18-24 months. Designed to counter Chinese mass-production advantages in low-end systems. Replicator-1 named programs include Switchblade 600, Saronic Spyglass, Anduril ALTIUS + Bolt, AeroVironment products. Replicator-2 (2024) expanded to counter-drone capabilities.
::key facts
- · $1B+ in announced FY24-25 funding
- · Hicks-driven structural reform within DoD acquisitions
- · Focuses on 'all-domain attritable autonomous' systems
- · Replicator-2 added counter-drone systems including Anduril Roadrunner + Pulsar
Where to read: defense.gov press releases · DoD CDAO + Defense Innovation Unit announcements
03
JADC2 · Joint All-Domain Command and Control
DoD's effort to network sensors and shooters across all warfighting domains (land, sea, air, space, cyber). Each service has its own JADC2 implementation: Army's Project Convergence, Air Force's Advanced Battle Management System (ABMS), Navy's Project Overmatch. JADC2's data-sharing layer is the connective tissue where cyber + AI + warfighting integration happens.
::key facts
- · Mission Partner Environment (MPE) layer enables data-sharing with allies
- · Heavy software-defined-networking focus — much of the budget is software contracts
- · Project Convergence (Army) annual exercises demonstrate cross-service integration
- · JADC2 implementation has cyber + AI + data-engineering job concentration
Where to read: defense.gov JADC2 implementation plan · service-component pages
DoD program of record for computer vision + AI applied to full-motion video and intelligence data. Originally Project Maven (2017) — sparked Google employee protests that led to Google's defense-work withdrawal. Has continued and grown under different prime contractors. Palantir won the Maven Smart System prime contractor role in 2024 (~$153M initial, expanded substantially through 2024-2025). The operational backbone for AI-assisted target identification.
::key facts
- · Originally launched April 2017 as Algorithmic Warfare Cross-Functional Team
- · Palantir prime contractor since May 2024
- · Operational at USCENTCOM, USAFRICOM, USINDOPACOM, USEUCOM commands
- · Public reporting on Maven Smart System use in Ukraine support
Where to read: DoD press releases · NYT + WaPo Maven reporting 2018-2024 · Palantir investor materials
05
CMMC · Cybersecurity Maturity Model Certification
DoD cybersecurity certification requirement for ~300,000 defense industrial base companies. Three levels (Level 1 self-assessment, Level 2 third-party assessment for sensitive contracts, Level 3 government-led for the most sensitive). CMMC 2.0 rule finalized in 2024 — phased implementation through 2026-2028. Will be a hiring driver across the entire defense contracting ecosystem.
::key facts
- · Built on NIST SP 800-171 + 800-172 baseline standards
- · Phased rollout: rule effective December 2024, contract requirements phased in 2025-2028
- · Third-party assessors (C3PAOs) certified by Cyber-AB
- · Compliance is a substantial hiring + cyber-consulting growth driver
Where to read: dod.mil/cmmc · cyber-ab.org · NIST SP 800-171 and 800-172
06
CDM · Continuous Diagnostics and Mitigation
CISA-managed program providing cybersecurity capabilities and tools to federal civilian agencies. Three phases: asset management, identity + access management, network security management. Operational since 2013 with continuous expansion. The federal civilian cyber baseline — most non-DoD agencies use CDM dashboards + tools as their primary cybersecurity infrastructure.
::key facts
- · Managed by CISA (transferred from GSA)
- · Funded ~$2B+ across multi-year contracts
- · CDM Dashboard provides cross-agency visibility for CISA
- · Booz Allen, Northrop, ManTech, ECS major prime contractors at various phases
Where to read: cisa.gov/cdm · CISA + Booz Allen + Northrop press releases on CDM contracts
07
Cyber Mission Partner Environment (Mission Partner Environment)
DoD information-sharing network with allies and coalition partners. Combines NATO, Five Eyes, and bilateral information environments. Substantial cyber + data-engineering work to build secure cross-domain solutions enabling US + ally collaboration without compromising classified information. Mission Partner Environment is where ally-coalition cyber work concentrates.
::key facts
- · Successor framework to legacy classified network infrastructure
- · Heavy cross-domain solutions (CDS) engineering work
- · Implementation across all DoD combatant commands
- · Substantial cleared contractor staffing requirement
Where to read: defense.gov + DISA press releases · NATO public technology materials
