DHS RFI: CISA Protective Email Service

Notice ID 47QFRA22K0005

“III. BACKGROUND

CISA leads the national effort to defend critical infrastructure against the threats of today while working with partners across all levels of government and in the private sector to secure against the evolving risks of tomorrow. CISA’s mission includes protecting the Federal Government’s networks and physical infrastructure, helping entities in the public and private sectors manage potential risk, and enhancing public safety communications at federal, state, local, tribal, and territorial governments.

In support of the FCEB, CISA is exploring a PES solution to protect email traffic and to conduct threat hunting and incident response.

The CISA PES objectives are to:

  • Normalize and provide baseline security and visibility for FCEB email.
  • Detect and protect federal enterprise from malicious email content as part of the CISA mission to manage FCEB risk.
  • Detect and prevent the federal enterprise email from being used as a vector for malicious threat actors against itself and non-federal entities.
  • Provide appropriate visibility into agency email traffic to enable CISA Global Operators to conduct cyber hunt and incident response.
  • Be able to leverage CISA’s and FCEB entity data holdings in cyber hunt, prevention, mitigation, and incident response activities

CISA will provide PES for FCEB agencies. PES management will be a shared responsibility between CISA and FCEB agencies…”

“V. OVERVIEW OF SECURITY OPERATIONS SERVICES OFFERING

PES will be cloud-based and accessible to authorized entities via a management console and application program interfaces (APIs). The figure below shows PES, the PES-provided CISA Global Operator functions, and the FCEB agencies. PES deployment configuration, including the location of enforcement points, is not defined in the figure. The PES solution may or may not include the email platform.

CISA understands that PES can be delivered using a variety of architectural designs. For example, PES could be implemented directly on email platforms as a native security capability of the email platform. PES could also be implemented as a gateway service (e.g., Secure Email Gateway) where FCEB email traffic is directed to the gateway. Or a hybrid method could be implemented that offers a combination of enforcement points. It is expected that individual agencies will continue to own and operate their email services and host them either on-premises, in the cloud (e.g., Microsoft Office 365 and Google workspace), or with supplemental products or services that support hybrid environment…”

Read more here.

0
Tags:

This topic contains 1 reply, has 2 voices, and was last updated by  Anonymous 6 days, 12 hours ago.

  • Author
    Posts
  • #142696

    Replies viewable by members only

    0
  • #142935
     Anonymous
    • Anonymous

    Replies viewable by members only

    0

You must be logged in to reply to this topic.

CONTACT US

Questions?. Send us an email and we'll get back to you, asap.

Sending

©2021 MileMarker10, LLC all rights reserved | Community and Member Guidelines | Privacy Policy | About G2Xchange FedCiv

Opportunities. Starting Points.

About our Data

The Vault is a listing of expiring contracts, task orders, etc. within a certain set of parameters, to include:

  • Have an initial total estimated contract value of $10 million or above
  • Federal Civilian Only – DHS, Transportation, Justice, Labor, Interior, Commerce, Energy, State, and Treasury Actions
  • NAICS codes include: 511210, 518210, 519130, 519190, 541511,
    541512, 
    541513, 541519, 541611, 541618,
    541690, 541720, 541990
  • Were modified within the last 12 calendar months
  • The data represented is based on information provided by the government

Who has access? Please note that ALL G2Xchange FedCiv Members will receive access to all basic and much of the advanced data. G2Xchange FedCiv Corporate Members will receive access to ALL Vault content (basic and advanced).

Feedback/Suggestions? Contact us at Vault@G2Xchange.com and let us know what you think. 

G2Xchange FedCiv

Log in with your credentials for G2Xchange FedCiv

Forgot your details?