The Office of the Chief Information Officer (OCIO), Cyber Security Division (CSD) has a need for supporting NOAA’s Cyber Security Division in achieving NOAA’s cybersecurity mission: to protect and defend the use of cyberspace from cyber-attacks, and to protect NOAA information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction. The NOAA Cyber Security Center (NCSC) will obtain capability to provide SOC as a Service (SOCaaS) for its partners. Additionally, NCSC is responsible for the Department of Commerce (DOC) Enterprise SOC (ESOC) and its ESOC engineering requirements, which provides cybersecurity support for the DOC. The NCSC provides comprehensive cyber security services to the NOAA and its partners as a shared service. The NCSC and ESOC provide five major functional support groups; the NOAA Security Operations Center (NSOC), Infrastructure Support (IS), Enterprise Cyber Security Services (ECSS), DOC Enterprise Security Operations Center (ESOC), and DOC ESOC Engineering Services.
- Provide 24x7 detection and response to potential cybersecurity threats through event monitoring, security analysis, and event correlation by leveraging the security information and event management (SIEM) and security orchestration, automation, and response (SOAR) platform integrated with IT security intelligence feeds for NSOC and ESOC
- Provide 24x7 IT operational support for NCSC
- Provide 24x7 support NCSC’s Enterprise Cyber Security Services
- Multi-Agency Trusted Internet Connections (TIC) capabilities
- Continuous Diagnostics and Mitigation (CDM) Tools
- Provide DOC ESOC Engineering Services for data and service integration
See attached draft Statement of Objectives (SOO) for additional details.
