Technical Support Services
- Support for security engineering, and the integration and deployment of security technology to support advanced external threats, insider threat, and cyber operations.
- Develop, enhance, and deploy Information Technology (IT) systems to the JSOC
Engineering Support Services
- Security Event Information Management (SEIM) services
- Intrusion Detection/Intrusion Prevention (IDS/IPS) services
- Data Loss Prevention
- Data Management
- Workflow and task tracking
- Memory Integrity/Analysis Systems
- Endpoint Incident Response Systems
- Packet Capture and Analytics Systems
- Other specialized security systems including future capabilities
Cyber Threat and Advanced Analytics
- Incidents Analysis Reports and Presentations
- Defensive Posture Assessment
- Threat Monitoring, Detection, Event Analysis, and Incident Reporting
- Advanced Analytics
- Cyber Threat Intelligence
- Cyber Threat Analytics/Cyber Hunt Team
- Engineering Support
- Vulnerability Assessment and Penetration Testing
- External Threat – Monitoring, Detection, Event Analysis, and Incident Reporting
