The Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday issued a solicitation for a new cybersecurity threat intelligence (CTI) platform to improve the collection, analysis, collaboration, and support for federal civilian agencies, state and local governments, and the private sector.
The Threat Intelligence Enterprise Services (TIES) CTI Platform Minimum Viable Product effort was released as an Other Transaction for Prototype Project solicitation with responses due by March 4. The CTI exchange platform and data feeds would first be used by federal civilian branch executive agencies, for the TIES MVP and may expand to include state fusion centers, information sharing and analysis centers, election and national security special event organizations, state and local governments, legislative and judicial branch entities, and other critical infrastructure organizations, CISA says in a Feb. 14 notice.
The new bi-directional platform will support existing cybersecurity platforms and sharing mechanisms such as the Automated Indicator Sharing, the Continuous Diagnostics and Mitigation program, commercial threat feeds, and others, CISA says.
“The TIES CTI exchange platform shall be a one stop integration point for analysts and infrastructure to receive, share and collaborate and relevant and timely CTI, enabling teams to protect their environments and others,” the agency says in the notice on the government’s business opportunities site, Sam.gov.
The need for the TIES CTI platform is based on lessons learned over the past few years through CISA’s current shared cybersecurity services model such as fragmented information about threats that limits awareness and timely decisions, inconsistent data formats that limit collaboration, and different levels of cyber maturity within the CTI ecosystem, the agency says.