Army Cyber Innovation Challenge
The Office of the Assistant Secretary of the Army for Acquisition, Logistics and Technology (ASA(ALT)), Army Cyber Command and Second Army (ARCYBER & 2A), and TRADOC are initiating a Cyber Innovation Challenge to investigate software-based prototype solutions.
The intent of the challenge is to evaluate the technical feasibility of a bottom up approach to investigating continuous monitoring and risk scoring, focused initially on developing a risk-based score card capability tool at operational and tactical echelons.
Global Mission Background
As part of the global mission in cyberspace operations, understanding network health and status, as part of larger Cyber SA, and the associated risks generated in the cyberspace domain can be decomposed into functions that rely upon technical elements such as analytics, storage, and visualization.
This Cyber Innovation Challenge effort is focused specifically on the commander’s ability to visualize the cyber risk posture associated with the networks and assets supporting critical missions.
The visualization capability includes, but is not be limited to, various types of data sources such as network topology, friendly asset and open-source information, key-user and threat activity information, and overlays of cyberspace assets on terrain, while supporting interoperability with external mission-command systems.
This type of approach allows for the aggregation of information in an Area of Operations (AO) to build a complete risk-based score card that is understandable to decision-makers who are not technically knowledgeable. In order to operate successfully in cyberspace and the electromagnetic spectrum, understanding risk at this echelon must then lead to the implementation of measures that mitigate vulnerabilities and result in a risk-based posture that is acceptable for mission assurance.
As previously stated, the Cyber Innovation Challenge is focused on providing commanders and staff elements at the Brigade (BDE) level tailorable and time-relevant information, which facilitates risk-based decision-making. Therefore, the capability must include the ability to understand the cyber posture of the commander’s area of responsibility, accounting for all segments of the battlespace (i.e., blue, red and grey).
Based on relevance and classification level, the tool must allow for shareable data among the stakeholder community, support analytics on local data stores, and modeling and simulation activities as part of the overall cyber-execution model. The challenge’s overarching goal is for the selected awardee(s) to deliver software-based risk-based score card prototype solutions allowing operational evaluation of the capabilities’ technical feasibility across various mission areas.
This initial aspect of continuous monitoring and risk scoring and supporting solutions must nest within larger, more comprehensive Cyber SA capability; and therefore, any solution offered should be modular to enable integration into all aspects of Cyber SA and Mission Command.
The requirement will be released through an existing consortium community and will utilize Other Transaction Authority (OTA) as the framework, allowing industry to engage with government.