recommended reading

Lockheed Clinches $82.5 Million Sole-Source Cyber Range Deal

John Amis/AP

A defensewide system that simulates hacks is reliant on Lockheed Martin's trade secrets and expertise, Pentagon officials said in a redacted justification for awarding an $82.5 million to develop and manage the so-called cyber range. 

In May, officials said they were awarding Lockheed a $14 million, 5-year contract to operate and sustain the National Cyber Range. 

ManTech in 2012 lost a bid for the contract, according to Pentagon officials, because only Lockheed had the necessary institutional knowledge and computer programs.

“ManTech does not have the expertise” to support the system’s capabilities, “nor do they, or the government, own the source code,” said Army officials, who awarded the contract to Lockheed on May 23. 

The contract justification, which was released Friday, was signed in early 2013. The work period cited in the document is June 2013 through May 2018.  

The project would be delayed by a year and eight months, if the government awarded the work to another company, officials said in the document. Taking on a new contractor also would duplicate costs, they said. The exact amount of duplicative costs is redacted. 
 
Killing the program would interrupt the government’s counterterrorism and cyber offensive activities, Army officials said. 

“The disruption of current operations will impact ongoing efforts addressing cyberattacks on U.S. weapon and military systems supporting the global war on terrorism and countering cyber terrorism activities," the justification states. "Failure to meet current and planned operations will impact fielding schedules for critical capabilities, disrupt mission rehearsal for planned operations, and increase risk to combatant and component commanders’ military operations.”

Ending the program not only would heighten national security risks but also cost the government billions of dollars. It would be an “expense of not less than $3B,” because testing technology and training troops before deploying new cyber tools saves that much money, officials said. 

It takes 10 to 20 times longer to test new cyber technologies without the range. The system also is valuable in “improving confidence in the real-world performance of these tools, a vital feature considering the extremely dynamic and evolving real-world cyber threat,” officials said.

Lockheed's tasks will include research and engineering, creating range technologies, testing cyber systems, training and supporting development.

Department cyber specialists consulted with other vendors, in addition to searching government and commercial databases for services, before determining "there is no acquisition alternative for the [national cyber range] at this time,” the justification states. Lockheed, “as the initial developer,” is the “only source that possesses recent knowledge, experience and unique capabilities necessary to meet current requirements.”

Threatwatch Alert

Thousands of cyber attacks occur each day

See the latest threats

JOIN THE DISCUSSION

Close [ x ] More from Nextgov
 
 

Thank you for subscribing to newsletters from Nextgov.com.
We think these reports might interest you:

  • Featured Content from RSA Conference: Dissed by NIST

    Learn more about the latest draft of the U.S. National Institute of Standards and Technology guidance document on authentication and lifecycle management.

    Download
  • PIV- I And Multifactor Authentication: The Best Defense for Federal Government Contractors

    This white paper explores NIST SP 800-171 and why compliance is critical to federal government contractors, especially those that work with the Department of Defense, as well as how leveraging PIV-I credentialing with multifactor authentication can be used as a defense against cyberattacks

    Download
  • Toward A More Innovative Government

    This research study aims to understand how state and local leaders regard their agency’s innovation efforts and what they are doing to overcome the challenges they face in successfully implementing these efforts.

    Download
  • From Volume to Value: UK’s NHS Digital Provides U.S. Healthcare Agencies A Roadmap For Value-Based Payment Models

    The U.S. healthcare industry is rapidly moving away from traditional fee-for-service models and towards value-based purchasing that reimburses physicians for quality of care in place of frequency of care.

    Download
  • GBC Flash Poll: Is Your Agency Safe?

    Federal leaders weigh in on the state of information security

    Download
  • Data-Centric Security vs. Database-Level Security

    Database-level encryption had its origins in the 1990s and early 2000s in response to very basic risks which largely revolved around the theft of servers, backup tapes and other physical-layer assets. As noted in Verizon’s 2014, Data Breach Investigations Report (DBIR)1, threats today are far more advanced and dangerous.

    Download

When you download a report, your information may be shared with the underwriters of that document.