MDA seeks threat hunting for cyber assistance team
On March 5, the Missile Defense Agency posted a request for information for a Threat Hunting for Cyber Assistance Team. Responses are due by 11:00 a.m. Central on April 4.
The Missile Defense Agency (MDA) Directorate of Engineering seeks information and potential sources interested and capable of Threat Hunting for the Cyber Assistance Team (CAT) activity. Threat Hunting is the proactive technique that is focused on the pursuit of advanced persistent threats (APT) and the evidence that threat actors leave behind when they are conducting reconnaissance, computer network exploitation, computer network attack, or exfiltration of sensitive data. Instead of solely trusting technology to flag and alert users to suspicious activity, MDA will apply human analytical subject matter experts (SMEs) and cyber intelligence to determine when intrusion or unauthorized activity occurs. This process enables APT discovery with the goal of threat-based assessments, tailored mitigation strategies, and cyber threat data sharing to improve Defense Industrial Base (DIB) partners’ cybersecurity posture and protection of DoD DIB networks.
The MDA is responsible for developing and fielding an integrated, layered Ballistic Missile Defense System (BMDS) to protect the U.S. and its allies from a ballistic missile attack. The MDA Ballistic Missile Defense layered approach includes sensors, kinetic energy systems, directed energy systems, battle management and command control elements that will engage threat ballistic missiles at all ranges and throughout their trajectories. MDA efforts are focused on making the BMDS more robust against the spectrum of adversary systems, which continue to evolve, proliferate, and demonstrate increasingly complex capabilities.
Capability 1 – Research and Product development: Provide information to document the identification and protection of controlled unclassified information (CUI) and critical data as it relates to specific Industry and Government sites and information systems/networks. Sources shall address experience in the following areas:
Capability 2 – Hunt Engagement Personnel and Capabilities: Describe the Contractor’s capabilities in demonstrating subject matter expertise to conduct and execute on-site cyber hunt activities. Sources shall address experience in the following areas:
Capability 3 – Analysis: Describe the Contractor’s in-house demonstrated capabilities, to analyze and correlate a collection of data. Sources shall address experience in the following areas:
Capability 4 – Cyber Talent Management: Describe the Contractor’s in-house demonstrated capabilities to recruit and retain a qualified cybersecurity talent base, from entry-level through advanced subject matter expert.
Full information is available here.