One trend I have noticed is a decided desire on the part of .mil customers to keep things unclassifed in the usual sense, just FOUO*.
The costs to do classified work on the civvie side have gotten bats**t insane since 2003's NISPOM Ch 8 revision. We have gotten work that before then would have been done only in a classified lab. The customer works with us and bends over backwards to keep things unclassified by one of various means: coded, normalized data, etc.
I appreciate the efforts, as it makes my job easier is many, many ways. I have done the classified side of the house as well as run secure labs, so I know most the regs from up close & personal experience. Where once I was the guy who tried my dangedest to push back so as to get tasks done, I am now the guy who raises the classified question early & often and makes us decide, RFN, the path forward to protect the data while working unclassifed.
I don't think my shift in attitude is two-faced or hypocritical (Push back while working class, semi-paranoia working unclass). Most secure labs are air-gapped and every violation I have seen has been via ignorance or inadvertent. The unclass work is generally done on a network hooked up to the web and we get hammered every day by Chicom, Russian, and other attackers. I want to work in a fashion that if some Nork/Chicom dirty SOB gets everything on my HD, they won;t be able to make heads or tails of the sensitive stuff.
* FOUO = For Official Use Only ; Makes it immune to FOIA requests.
