Request for Information: Enterprise Logging Ingest and Cyber Situational Awareness Refinery (ELICSAR) Vulnerability Assessment & Learning - Automated Remediation (VALAR)
ID: ELICSARVALARFY26RFIType: Sources Sought
Overview

Buyer

DEPT OF DEFENSEDEPT OF THE AIR FORCEFA8307 AFLCMC HNCK C3INSAN ANTONIO, TX, 78243-7007, USA

NAICS

Custom Computer Programming Services (541511)

PSC

IT AND TELECOM - BUSINESS APPLICATION/APPLICATION DEVELOPMENT SUPPORT SERVICES (LABOR) (DA01)

Original Source

https://sam.gov/workspace/contract/opp/1a6d21b7ed5e48ef9a53f52be6399c93/view
Timeline
    Description

    The Department of Defense, through the Air Force Life Cycle Management Center (AFLCMC), is seeking information from industry regarding the Enterprise Logging Ingest and Cyber Situational Awareness Refinery (ELICSAR) Vulnerability Assessment & Learning - Automated Remediation (VALAR) project. The objective is to gather solutions for Big Data Platform (BDP) services that will support the deployment, development, and sustainability of cloud-based enterprise data storage and analytics capabilities compliant with the Joint Cyber Warfighting Architecture (JCWA). This initiative is crucial for enhancing the existing ELICSAR BDP, integrating advanced data analysis tools, and developing a comprehensive Data Fabric to support the Cyberspace Operations System (CSOS) mission. Interested parties must submit their responses by November 25, 2025, and can direct inquiries to Promise Reichmuth at promise.reichmuth.2@us.af.mil or Jaret Higley at jaret.higley@us.af.mil.

    Point(s) of Contact
    Promise Reichmuth
    promise.reichmuth.2@us.af.mil
    Jaret Higley
    jaret.higley@us.af.mil
    Files
    Title
    Posted
    Attachment 1 ELICSAR RFI.xlsx
    This government file outlines a Request for Information (RFI) for companies specializing in IT services, focusing on various technical capabilities and business qualifications. The RFI seeks detailed responses regarding a company's name, address, contact information, and business certifications such as Small Business, Woman-Owned, HUBZone, and SAM registration. It also probes into specific technical expertise across several domains: Cloud Expertise & Infrastructure, Software Development & DevSecOps, Security & Compliance, Data Management & Analytics, Networking & Interoperability, Testing & Operations, Company Capabilities & Clearances, and System Support. Key areas of interest include experience with AWS GovCloud, multi-domain environments, DevSecOps, CMMC Level 2 compliance, DoD RMF, Zero Trust architectures, advanced data analytics, AI/ML, and managing large-scale data. The RFI also asks about facility clearances, the ability to work on-site in San Antonio, TX, and experience with DoD information networks and policies.
    Attachment 2 Questions Format.docx
    This document, "ATTACHMENT 2: QUESTIONS IN RESPONSE TO THE ENTERPRISE LOGGING INGEST AND CYBER SITUATIONAL AWARENESS REFINERY (ELICSAR) VULNERABILITY ASSESSMENT & LEARNING - AUTOMATED REMEDIATION (VALAR) REQUEST FOR INFORMATION (RFI)," outlines the format for submitting questions regarding the ELICSAR VALAR RFI. It provides a template for companies to input their questions, including a field for document references and a placeholder for the government's response. The document specifies that company names will be removed when the Q&A is publicly posted, and there is no limit to the number of questions that can be submitted. The primary purpose of this attachment is to standardize the question submission process for the RFI, ensuring clarity and an organized approach to addressing inquiries from interested parties.
    ELICSAR VALAR - RFI Letter (Dates Updated).pdf
    The Air Force Life Cycle Management Center (AFLCMC) is issuing a Request for Information (RFI) for its Enterprise Logging Ingest and Cyber Situational Awareness Refinery (ELICSAR) Vulnerability Assessment & Learning - Automated Remediation (VALAR) program. This RFI seeks information on Big Data Platform (BDP) solutions to support cloud-based enterprise data storage and analytics on the Joint Cyber Warfighting Architecture (JCWA) compliant Unified Platform (UP) BDP, known as ELICSAR. The goal is to sustain and enhance the existing ELICSAR BDP, integrate the IONIC data analysis tool, and develop a comprehensive Data Fabric for the Cyberspace Operations System (CSOS) mission. This includes establishing interoperability with Lower Echelon Analytic Platform (LEAP) – Tactical (LTAC)-based edge analytics and transitioning data feeds to the ELX transport layer. The RFI requests company descriptions, including business size, status, NAICS code, Cage Code, Facility Clearance Level, teaming arrangements, and answers to questions in an accompanying Excel document. Responses are due by November 25, 2025, with a contingency for government shutdowns. This RFI is for market research and planning purposes only and does not constitute a solicitation.
    ELICSAR VALAR - RFI Letter (Update 2).pdf
    This Request for Information (RFI) from the Air Force Life Cycle Management Center (AFLCMC) Defense Cyber Operations (HNCD) seeks industry information for the Enterprise Logging Ingest and Cyber Situational Awareness Refinery (ELICSAR) Vulnerability Assessment & Learning - Automated Remediation (VALAR) project. The RFI aims to gather solutions for Big Data Platform (BDP) services to deploy, develop, and sustain cloud-based enterprise data storage and analytics capabilities on the Joint Cyber Warfighting Architecture (JCWA) compliant Unified Platform (UP) BDP, known as ELICSAR. The primary purpose is to sustain and enhance the existing ELICSAR BDP, integrate advanced data analysis tools, and develop a comprehensive Data Fabric to support the Cyberspace Operations System (CSOS) mission, aligning with JCWA requirements. This RFI is for market research and planning purposes only and does not constitute a solicitation for bids or proposals. Responses are due by November 2025.
    ELICSAR VALAR - RFI Letter.pdf
    The Air Force Life Cycle Management Center (AFLCMC) is issuing a Request for Information (RFI) for its Enterprise Logging Ingest and Cyber Situational Awareness Refinery (ELICSAR) Vulnerability Assessment & Learning - Automated Remediation (VALAR) project. This RFI seeks information on Big Data Platform (BDP) services to sustain and enhance ELICSAR, integrate advanced data analysis tools, and develop a comprehensive Data Fabric for the Cyberspace Operations System (CSOS) mission. The goal is to optimize cloud-native approaches for data storage, analytics, and transport across various classification domains, supporting the Joint Cyber Warfighting Architecture (JCWA). The RFI is for market research and planning purposes only, with no contract award intended. Responses are due by October 17, 2025, with a question submission deadline of October 8, 2025. Demonstrations may be requested from selected respondents.
    Government Responses to RFI Questions.docx
    The ELICSAR VALAR Request for Information (RFI) addresses industry questions regarding an Enterprise Logging Ingest and Cyber Situational Awareness Refinery project. Key responses include that “N/A” is acceptable for non-applicable fields in Attachment 1, and all responses must be captured on Attachment 1. The RFI is open to all size standards, and demonstration opportunities will be determined later. The current cloud environment is AWS, handling petabytes of daily text-based and PCAP data. The government confirms commitment to DoD CIO Zero Trust Reference Architecture v2.0 and will sponsor a test environment, accepting hybrid/on-site/remote work models. Future tools will be evaluated based on current AF software licensing. Data ingest rate, latency, and data compression rates are key performance indicators. The RFI is for gathering information on industry capabilities only, with no awards anticipated at this time.
    Similar Opportunities
    Trusted and Elastic Military Platforms and Electronic Warfare (EW) System Technologies (TEMPEST)
    Buyer not available
    The Department of Defense, specifically the Air Force Research Laboratory (AFRL), is seeking proposals for the Trusted and Elastic Military Platforms and Electronic Warfare (EW) System Technologies (TEMPEST) initiative. This program aims to develop methodologies and technologies to enhance the cyber security and resilience of avionics systems across various platforms, including manned, unmanned, and ISR systems, with a focus on mitigating vulnerabilities and advancing sensor technologies. The estimated program value is approximately $808.5 million, with multiple awards ranging from $1 million to $200 million, and proposals will be accepted through subsequent calls until November 1, 2025. Interested parties can reach out to Timothy Matelski at timothy.matelski@us.af.mil or Richard Bailey at richard.bailey.26@us.af.mil for further inquiries.
    FY26 Parabol RFI (Platform 1)
    Buyer not available
    The Department of Defense, through the Air Force Lifecycle Management Center (AFLCMC), is conducting a Request for Information (RFI) regarding the Parabol platform for fiscal year 2026. The RFI aims to gather market research on alternative software solutions similar to Parabol, focusing on aspects such as license types, pricing, transition and training costs, and additional features. This initiative is crucial for understanding the available options to enhance the Air Force's cryptologic and cyber systems capabilities. Interested vendors are encouraged to submit their responses using the provided excel sheet to the designated contacts, Kyle Hamby and Major Jamail Walker, with no contract awards or payments for information anticipated from this RFI.
    ESCAPE SaaS Request for Information (RFI)
    Buyer not available
    The Department of Defense, specifically the Department of the Air Force, is conducting a Request for Information (RFI) to identify potential sources for the Enterprise Supply Chain Analysis Planning & Execution (ESCAPE) Software as a Service (SaaS) Follow-on Contract. The primary objective is to procure a product contract that focuses on providing PTC Service Parts Management (SPM) SaaS capabilities for IL5 and IL6, along with additional services for training, analysis, configuration, and Tier 1-3 help desk support. This initiative is crucial for enhancing the Air Force's supply chain management capabilities and ensuring efficient operations. Interested parties are encouraged to respond by 4:00 PM Central Time on December 19, 2025, and should direct inquiries to Matthew Tonay at matthew.tonay.1@us.af.mil or Megan Donaghe at megan.donaghe@us.af.mil.
    AF CyberWorx Commercial Solutions Opening (CSO)
    Buyer not available
    The Department of Defense, through the Air Force CyberWorx, is soliciting innovative commercial technologies and services via its Commercial Solutions Opening (CSO) FA7000-23-S-C001, aimed at enhancing critical defense capabilities. The initiative specifically seeks solutions for the Software-Defined Wide Area Network (SD-WAN) Phase II, which will improve the NIPR and SIPR network infrastructure across the USAFE-AFAFRICA area from July 23 to August 13, 2025, by integrating advanced technologies such as SD-WAN, SRv6, IP Address Management (IPAM), and upgraded DHCP systems. This procurement is vital for establishing a robust and secure communication network, ensuring compatibility with existing systems, and maintaining operational excellence. Interested parties should submit their proposals, including a Rough Order of Magnitude for equipment costs, to Gary Monson or Tikiwa Durrell at 10CONS.PK.Cyberworx@us.af.mil, with the submission process involving multiple phases and evaluation based on technical merit and funding availability.
    Commercial Solutions Openings - ERDC Geospatial Research
    Buyer not available
    The Department of Defense, through the Engineer Research and Development Center (ERDC), is soliciting innovative solutions for its Geospatial Research Laboratory (GRL) under the Commercial Solutions Openings (CSO) initiative. This opportunity focuses on advancing research and development in six key areas: mission command decision environments, full-3D mapping capabilities, holistic geospatial foundations, remote sensing and mapping technologies, terrain-based positioning and navigation, and earth system dynamics for situational understanding. These projects are critical for enhancing the Army's operational capabilities and situational awareness. Interested parties can submit their solutions via the ERDCWERX platform starting June 30, 2025, until 5:00 PM CDT on July 15, 2026. For further inquiries, contact Anna Crawford at Anna.Crawford@usace.army.mil or LaShanda Areghan at lashanda.d.areghan@usace.army.mil.
    Protecting Army Modernization and Supply Chains- Commercial Solutions Opening (CSO)
    Buyer not available
    The Department of Defense, through the Army Contracting Command, is seeking innovative solutions to enhance cybersecurity within the Defense Industrial Base (DIB) as part of the Protecting Army Modernization and Supply Chains initiative. This opportunity invites proposals for automated cybersecurity measures that comply with critical standards such as NIST controls and Cybersecurity Maturity Model Certification (CMMC), aimed at supporting small businesses in mitigating cyber threats while ensuring the protection of intellectual property and secure access. The initiative is crucial for safeguarding defense technologies and ensuring the rapid delivery of military capabilities, with submissions accepted until March 6, 2030. Interested parties can contact the Army NCODE Team at usarmy.apg.acc.mbx.dc3oe-ncode-cso@army.mil for further information.
    RFI SYSTEMS ANALYSIS AND REPORTING SUPPORT
    Buyer not available
    The Department of Defense, specifically the Department of the Air Force, is seeking qualified contractors to provide systems analysis and reporting support for the E-3 AWACS mission. The objective of this Request for Information (RFI) is to identify vendors capable of delivering non-personal engineering and technical support to analyze, categorize, and report on E-3 system recommendations, which are critical for enhancing aircraft operations, flight safety, and mission performance for the United States Air Force. The Air Force Life Cycle Management Center (AFLCMC/HBK) encourages responses from businesses of all sizes, particularly those with socioeconomic designations, to inform potential small business set-aside decisions. Interested parties must submit a capabilities package by 3 PM CST on December 26, 2025, to joy.beach@us.af.mil and cleeta.daniels@us.af.mil, with submissions limited to ten single-spaced pages.
    Commercial Solutions Opening for Joint All-Domain Command and Control (JADC2)
    Buyer not available
    The Department of Defense, specifically the Air Force's Architecture and Integration Directorate (AFLCMC/XA), is seeking innovative solutions through its Commercial Solutions Opening (CSO) for Joint All-Domain Command and Control (JADC2). The objective is to enhance capabilities related to aerial communications and networking systems, focusing on Software Programmable Open Mission Systems Compliant (SPOC) Multi-Function Processors (MFPs) that support the Department of the Air Force's Battle Management Network. This initiative is critical for developing scalable, resilient, and open-architecture solutions that can operate effectively in various operational environments. Interested vendors must submit White Papers by April 9, 2024, detailing their proposed solutions, with potential contract awards anticipated by August 2, 2024. For inquiries, contact Capt Alexandra Hutchinson or Mr. Chhunheng Phay.
    Joint Cyber Command and Control - ANTICIPATED ACQUISITIONS - UPDATE SEPTEMBER 2025
    Buyer not available
    The Department of Defense, through the Air Force Life Cycle Management Center (AFLCMC), is anticipating acquisitions related to the Joint Cyber Command and Control (JCC2) program, with updates provided as of September 2025. The procurement encompasses three key areas: the JCC2 Cyber Operations (JCO) platform, which enhances mission orchestration and decision-making through advanced data synthesis; the Joint Cyber Command and Control Readiness (JCC2-R) initiative aimed at rapid capability development and operational readiness; and the Enterprise Service Center (ESC) for AWS cloud system administration and support. The JCO is already operational, while the JCC2-R is expected to have a solicitation release on June 4, 2025, with an estimated award in September 2025. Interested parties can direct inquiries to Kevin Grant at kevin.grant.10@us.af.mil.
    MULTI-SOURCE, MULTI-DOMAIN DATA EXPLOITATION FOR BATTLESPACE AWARENESS AND DECISION SUPPORT
    Buyer not available
    The Department of Defense, through the Air Force Research Laboratory (AFRL), is soliciting proposals for the Broad Agency Announcement (BAA) FA8750-21-S-7004, titled "Multi-Source, Multi-Domain Data Exploitation for Battlespace Awareness and Decision Support." The initiative aims to develop technologies that enhance military decision-making by processing multi-source data, with a focus on improving operational efficiency and timely execution of actions. This effort is critical for advancing defense capabilities and ensuring effective integration of diverse sensor data within the Department of Defense's operations. The total estimated funding for this opportunity is approximately $49 million, with individual contract awards ranging from $500,000 to $5 million over a maximum duration of 48 months. Interested U.S. entities must submit unclassified white papers by January 30, 2026, and can reach out to Carolyn Sheaff at Carolyn.Sheaff@us.af.mil or Amber Buckley at amber.buckley@us.af.mil for further inquiries.