Enterprise Cloud Management Agency

Home of cARMY, CReATE, and cDATA

Who are we?

At the direction of the Secretary of the Army, the Enterprise Cloud Management Agency (ECMA) is a field operating agency that provides oversight for all Army cloud processes and activities. Operating under the Headquarters Department of the Army, Chief Information Office, ECMA ensures a full unity of effort, in identification of seven strategic imperatives: 1) Expand cloud 2) Implement Zero Trust architecture 3) Enable secure, rapid software development 4) Accelerate data-driven decisions 5) Enhance cloud operations 6) Enabling the cloud workforce 7) Provide cloud cost transparency and accountability


Deliver digital overmatch through data-driven outcomes at the speed of operational relevance.


The ECMA increases Army readiness and lethality by continuously enhancing digital literacy; driving data, software and process transformation and delivering a secure, globally-dominant cloud ecosystem, foundational to the Army-modernization strategy and digital overmatch.


To begin your cloud journey go to the ECMA My Army Cloud to initiate a request to begin the Cloud Modernization Approval Process (CMAP) or to submit a question. For additional information, visit the milSuite page (CAC required). For site accessibility issues, please contact the Cloud Enablement Division at armycloud@army.mil.


  • Ms. Pushparani Jayapal CHIEF, CLOUD ENABLEMENT DIVISION Ms. Pushparani Jayapal
  • Mr. Darek Kitlinski CHIEF, CLOUD SERVICES DIVISION Mr. Darek Kitlinski
  • Ms. Lauren Pavlik CHIEF, DATA & SOFTWARE SERVICES DIVISION Ms. Lauren Pavlik
  • Ms. Rosalynn Pittman (A) CHIEF, Cloud Cybersecurity Division Ms. Rosalynn Pittman (A)
  • Mr. Tyrus Edwards CHIEF, CLOUD MANAGEMENT DIVISION Mr. Tyrus Edwards


The Cloud Enablement Division designs, develops, resources, executes and enhances the Cloud Modernization Approval Process (CMAP) including system owner and stakeholder engagements, software assessments and design enhancements, and software engineering efforts, to deliver secure, cloud-optimized solutions and operationalized data to support the Army Cloud Plan, Army Digital Transformation Strategy and Army Modernization Strategy. To begin your cloud journey: Go to the ECMA My Army Cloud to initiate a request to begin the CMAP or to submit a question. For additional information, visit the milSuite page (CAC required). For site accessibility issues, please contact the Cloud Enablement Division at armycloud@army.mil.


The Cloud Services Division designs, builds, secures, operates and continuously enhances the cARMY common shared services provided as a service to the U.S. Army and the DoD. These common services are established to support Impact Levels 2, 4, 5 and 6 today within Amazon Web Services and Microsoft Azure. Additionally, the Cloud Services Division establishes and maintains the set of access and border security services for the cARMY environment, including the Virtual Data Security Stack and the availability of cARMY user access to the environments through the Cloud Access Points. Common Shared Services for cARMY enable applications to function in the hosting environment and are centrally managed by the ECMA. Providing centralized Common Shared Services reduces costs and reduces barriers to cloud adoption by preparing the environment for all applications. The ECMA presently delivers 31 Common Shared Services in cARMY and will update and modify these as Army needs dictate. To view technical details of all 31 Common Services of cARMY visit the ECMA milSuite page (CAC Required).


The Data and Software Services Division provides common data services and common software tooling and hosting services, supporting the Development, Security and IT Operations communities towards DevSecOps in the Army. This includes data discovery and operationalizing of the end-to-end data acquisition and analysis process. This also includes the fielding of the Army’s Code Resource and Transformation Environment (CReATE) a DevSecOps ecosystem providing customer support, productivity tooling, continuous integration/continuous delivery pipelines, and container platform and source code hosting environments. The division will provide DevSecOps services, architecture, and product management leadership for designing, testing, and fielding software across each mission area.


The Cloud Cybersecurity Division (C2D) enables digital overmatch by accelerating the Army’s transition to cloud technologies, with a focus on cybersecurity policy, in support of the Army Modernization Strategy. C2D provides decision makers with risk-informed policy and recommendations by modernizing the cybersecurity authorization process and decreasing time to field cloud-based solutions through the execution of a lean risk management process. Key tasks include modernizing ATO processes to capitalize on cloud-enabled DevSecOps practices, aligning cybersecurity policy to strategic guidance, Congressional requirements, and establishing compliance reporting for all Army cloud environments.


The Cloud Management Division handles the financial operations, external communications, business processes, acquisition efforts for the Enterprise Cloud Management Agency. These efforts are focused on ensuring the required vendor services are available via contracts awarded based on focused acquisition efforts, ensuring business processes are defined across stakeholders—with automated workflows in defined systems—to allow ECMA to effectively meet customers’ needs in each phase of the customer’s journey. ECMA ensures concise, informative, and educational communications are provided to all Army audiences, and has an overall technical architecture allowing all aspects of the cARMY environment to function effectively.

How To Initiate The Cloud Modernization Approval Process

ECMA serves as the authority for Army-wide cloud adoption and maintains the expertise to enable the Army’s cloud adoption efforts, reduce barriers to cloud adoption and engage at every echelon to educate and inform customers on their journey to cloud. ECMA developed the Army Cloud Modernization Approval Process (CMAP) to facilitate a standardized, transparent and repeatable process to modernize and transition Army systems, applications and data to the cloud. To begin your cloud journey go to the ECMA My Army Cloud to initiate a request to begin the CMAP process or to submit a question. For additional information, visit the milSuite page (CAC required). For site accessibility issues, please contact a member of the Army Cloud Team at armycloud@army.mil. To join the Army Cloud Community please join our A365 Team.


ECMA established multi and hybrid cloud ecosystem known as cARMY to simplify, standardize and optimize the Army-wide adoption of cloud technology and reduce barriers to cloud migration. cARMY provides common cloud shared services, global connectivity and required Cybersecurity Service Provider (CSSP) services for all Army applications, systems and data hosted in the cloud. cARMY is currently approved for use from IL2 to IL6. To view additional information on cARMY, visit the milSuite page (CAC required). For site accessibility issues, please contact a member of the Army Cloud Team at armycloud@army.mil. To join the Army Cloud Community please join our A365 Team.

About CReATE

Our Mission is to get more application teams iterating with their users. The Army's Code Resource and Transformation Environment (CReATE) enables Army software teams to get secure, resilient, and scalable applications in the hands of their users more quickly. We provide a suite of DevSecOps tools, services, and pre-built paths to production to enable cloud-native software development. Our paths to production use the Army CReATE DevSecOps Playbook (CAC Card Required), the continuous Risk Management Framework (cRMF) model and an IL-4 accredited environment.

What CReATE Offers

  • Engineering Productivity Tools are a suite of IL-4 accredited tools that boost efficiency and serve as a total Army resource for modern software development. Users can focus on providing the best possible software instead of worrying about getting the tools they need.
  • Source code push team (SCRerer) provides guidance on building pipelines that can deploy an application to production through a series of security checks, which have been put in place through consultation with application security validation engineers. The SRCerer premiere products offers a source code push model that provides repeatable, accredited build processes with inherited controls. SRCerer allows application teams to drastically reduce the time it takes for the application to go from ideation to running in production in a secure and approved way. SRCerer customers, those using the SCRerer pipeline, not just guidance, inherit ~75% of security technical implementation guidance (STIG) controls from our product using App Dev STIG. The application security validation engineer (AVSE) team has developed a security pipeline that can be added to build pipelines to ensure minimum security requirements are met. Currently the pipelines ASVE have pre-built focus on those application on the CReATE-SWF path to production. For those following an alternat P2P modifications would need to be made. Our ASVE team members are developer security advocates that bridge the gap between technical implementation and compliance to reduce debt for teams and accelerate deployments. Along any path to production there will be continuous integration/continuous deployment occurring. And at times an organization may not quite be ready for a full path to productions. While not writing pipelines for application teams continuous integration (CI) assistance is available from SCRerer and customer success which may extend the use of CReATE's engineering productivity tools by enabling teams to perform builds, unit tests, static code analysis and other CI-only actions, allowing teams to foster DevSecOps behaviors and culture on their team.
  • Phantom is the roadmap supporting the underlying DevSecOps-ecosystem (DSO-E) platform whose mission is to enable DSO-E product teams to focus on customer-facing features for their respective products. The team is charged with providing platform security, stability and reliability and ensuring common services are consumable by all DSO-E product teams.

Contact CReATE

Contact us at armycreate@army.mil for any general CReATE questions and customer success.


Army Digital Transformation Strategy Unified Network Plan Mandatory Implementation of Army Data Services Requirements Army Regulation 25-1, Army Information Technology (In Revision) Army Regulation 25-2, Army Cybersecurity Army Cloud Plan 2022 Army Data Plan 2019 Army Modernization Strategy Army Cybersecurity Awareness Campaign Shaping the Army Network: Mobile Technology Risk Management Framework Privacy Impact Assessments CIO/G-6 Collaboration Site (CAC Required) Army Data Body of Knowledge (ADBOK) Team (IL5 Teams Account Required) Army Data Plan, Governance and Execution Order (CAC Required) Army Network Modernization Division Portal (CAC Required) Info Assurance 1-Stop Shop (CAC Required) CyberSec Awareness Toolbox (CAC Required) Communications Security Modernization Implementation Planning Guidance (CAC Required) U.S. Army Futures Command U.S. Army Cyber Center of Excellence U.S. Army Mission Command Center of Excellence U.S. Cyber Command

Contact Us

To go to the cloud, email armycloud@army.mil To go to CReATE, email create@army.mil LinkedIn