Enhanced Next-Generation Security Operation Center (EN-SOC)

opportunity

Enhanced Next-Generation Security Operation Center (EN-SOC)

April 30, 2025

status

Awarded

project number

C5-24-2003

company name

ClearShark, LLC

award amount

$3,149,686.25

description

The increasing prevalence of threats and attacks on U.S. cyberspace systems highlights the critical need for comprehensive Security Incident and Event Management (SIEM)/ Security Orchestration, Automation and Response (SOAR) capabilities that enables an enhanced next-generation Security Operations Center (EN-SOC). By providing continuous monitoring and analysis, the prototype system automatically handles preprocessing and learning capabilities to assist Security Operations Center (SOC) analysts to properly identify and respond to non-false positive security incidents before they escalate, minimizing the potential impact on an organization’s operations and reputation. The ever-evolving threat landscape demands that organization implement a SOC as a critical component of the program’s cybersecurity strategy. Due to the technical nature of cyberspace systems, security analysts supported by the prototype require a system that is organized to detect, analyze, respond to, report on, and respond to aggregated low-level cyber-security incidents that may go unnoticed in current SIEM systems.

 

The objective of this prototype effort is to integrate complex systems and learning technologies to automate monitoring and response capabilities for security operations that improve cyber mission execution against adversaries and threats without revealing U.S. presence. The enhanced EN-SOC prototype shall effectively provide a set of capabilities to constituent subsystems to execute the computer network defense (CND) mission, both at a macroscopic and microscopic level. It shall monitor the system’s defensive posture back and awareness of all elements in the environment in physical and logical space to continuously assess comprehensive status in near real-time and provide feedback and visualization to SOC Analysts.

progress

09/08/2023: Request for White Papers Released
10/13/2023: White Papers Due
03/12/2024: Solution Selected

05/07/2024: Request for Proposal Released
05/21/2024: Proposal Submitted
07/22/2024: Awarded