USSOCOM seeks HQ architecture solution
On January 4, the United States Special Operations Command (USSOCOM) announced that it is conducting market research in accordance with FAR 15.201. The government is still in the early acquisition planning stage and all activities at this time are considered market research. Questions are due by 2:00 p.m. Eastern on January 15. Responses are due by 2:00 p.m. Eastern on February 3.
Scope
HQ USSOCOM is seeking information from qualified sources to provide a capability that enables DoD, Interagency, and international users to access and leverage PAI, providing increased situational awareness by leveraging Artificial Intelligence (AI)/Machine Learning (ML) technologies and state-of-the-art analytic Tool Kits.
This objective includes the management, development, enhancement, integration, testing, deployment, and maintenance of a system composed of several mission specific Tool Kits that provide the user the ability to detect, monitor, understand, and act in the information environment. The capability shall segment tools, users, and data to support a variety of user groups and missions to include DoD, Interagency and Coalition Partners. The system shall allow for the integration of new data, analytics, and collaboration features across USG and foreign-partner communities of interest and operation. Additionally, the system shall allow for the rapid integration and deployment of innovative plug-and-play technologies, as well as leverage ML to automate analytics, and provide authentication, end-user access, security, auditing, compliance, managed attribution, and dynamic enclave scaling support servicing a variety of mission-focused Tool Kits. For the purposes of this RFI, the period of performance is assumed to be a 12 month base year starting 01 August 2021 with four option years
Initial Collaborative Environment System Design Plan
The Contractor shall develop a plan for the system design of a secure, unclassified collaborative environment that is in accordance with the approved PMP (reference section 3.a). The Contractor shall ensure the collaborative environment is designed and developed pursuant to Open System Architecture best practices, is unclassified, and is protected and accredited IAW with the guidelines set forth in DoD Instruction 8500.01 and 8510.01 (minimum Authorization to Operate (ATO)). The contractor shall implement a robust information assurance gateway that provides encrypted global data exchange capability between DoD, U.S. Interagency, and foreign partners operating in remote locations.
The Contractor shall ensure all data generated by the system from the field (low-bandwidth) locations is encrypted through the use of the internet using National Security Agency (NSA) Suite-B compliant components.
The Contractor shall ensure the system design includes a certification and accreditation process based on the guidelines set forth under Department of Defense Risk Management Framework (RMF), FedRAMP, CNSS 1253 and NIST SP 800-53rv4 for the system architecture IAW the latest revision. For the purpose of developing the system design, the Contractor shall follow all guidance provided by the Computer Network Defense Service Provider.
The Contractor shall ensure the system design complies with Open System Architecture best practices to maximize system sustainability, component flexibility, and overall scalability.
The Contractor shall ensure the system design includes an advanced collaborative infrastructure with mechanisms for secure data, tool, and user segmentation with positive control of user data that ensures protection of Personally Identifiable Information (PII).
The Contractor shall ensure the system design includes the Data, Tool, and User Segmentation Architecture to allow for maintenance of sensitive relationships and compartmented data, while providing a backbone for general collaboration and information sharing. The system design shall provide the capability to employ the concept of “least privilege,” where access controls limit user access permissions to only what is necessary to perform their job. The system design shall include a capability to combine technologies and user policies to create a cross-organization/cross-domain collaboration architecture that allows DoD and interagency users to share data they are authorized to share, while also allowing authority and policy supported cross-domain collaboration about more general information where they are not allowed to share the actual data.
The Contractor shall ensure the system design includes a plan to provide security across multiple domains through “trust” relationships between domains (DoD, Interagency, Coalition, Other).
The Contractor shall ensure the system design includes a plan to implement a Low-to-High Information Transfer system with the ability to transfer selected data from the proposed system to at least three (3) other classified or restricted USG networks. Due to the volume of data anticipated, the design shall ensure this gateway is capable of moving at least 100 Mbps of data from the collaborative environment system to the restricted network.
The Contractor shall provide the initial design of the system no later than the first PMR (reference section 3.e). The COR will review the initial design and provide comments within 15 days of receipt. The Contractor shall provide a revised design no later than 15 days after receipt of the COR’s comments or corrections to draft. Upon Government approval, the Contractor shall implement the approved collaborative environment system.
The Contractor shall provide a robust auditing/logging system. At a minimum, this system should include a method to determine all pertinent information needed to conduct a thorough investigation. The exact specifications of these requirements are available upon request.
Full information is available here.
Source: SAM