Skip to main content

An official website of the United States government

You have 2 new alerts

ENTERPRISE CYBER ANALYTICS_RFI

Looking for contract opportunity help?

APEX Accelerators are an official government contracting resource for small businesses. Find your local APEX Accelerator (opens in new window) for free government expertise related to contract opportunities.

APEX Accelerators are funded in part through a cooperative agreement with the Department of Defense.

The APEX Accelerators program was formerly known as the Procurement Technical Assistance Program (opens in new window) (PTAP).

General Information

  • Contract Opportunity Type: Sources Sought (Updated)
  • Updated Published Date: Feb 16, 2024 05:33 pm EST
  • Original Published Date: Jan 17, 2024 03:11 pm EST
  • Updated Response Date: Mar 06, 2024 03:00 pm EST
  • Original Response Date: Feb 20, 2024 03:00 pm EST
  • Inactive Policy: 15 days after response date
  • Updated Inactive Date: Mar 21, 2024
  • Original Inactive Date: Mar 06, 2024
  • Initiative:
    • None

Classification

  • Original Set Aside:
  • Product Service Code:
  • NAICS Code:
  • Place of Performance:
    Fayetteville , NC
    USA

Description

This request is for information only regarding Enterprise Cyber Analytics tools which support business and security operations in a multi-classification Department of Defense (DoD) architecture following the DoD Zero Trust (ZT) paradigm.  The capabilities have been grouped into two categories: those supporting Analytics & Visualization and those supporting Automation & Orchestration.  Failure to identify a capability in one category will not be identified as a failure in another category. Collaboration may be possible between industry partners to provide an integrated solution for Enterprise Cyber Analytics which meets regulatory requirements and desired functionality.

Current Federal and DoD regulations require logging and monitoring of enterprise information systems.  These activities are leveraged for the purpose of improving network resilience, increased security, and improved operations through the application of an enterprise cyber analytics program.  Through proactive use of captured data, analytics tools provide near real-time intelligence to support Security Operations Center (SOC) and Network Operations Center (NOC) teams.  In the context of ZT, SIEM and SOAR tools are integrated to support Analytics, Visualization, and Automation objectives.  While capabilities in Table 1 are divided into SIEM and SOAR, a response which answers one capability may be appropriate since the development of a holistic analytics program may consist of multiple integrated products.  For example, solutions which efficiently address automation and integration with case management may marry with another solution providing efficient and economical logging, log retention, and log management to deliver an acceptable solution.  

Contact Information

Contracting Office Address

  • 1800 F STREET, NW
  • WASHINGTON , DC 20405
  • USA

Primary Point of Contact

Secondary Point of Contact

History