Back to news

May 8, 2024 | International, Security

A SaaS Security Challenge: Getting Permissions All in One Place 

Achieve regulatory compliance with ease. A permissions inventory enables access recertification, SOD checks, and controlled access to sensitive data.

https://thehackernews.com/2024/05/a-saas-security-challenge-getting.html

On the same subject

  • Contract Awards by US Department of Defense - September 13, 2019

    September 16, 2019 | International, Aerospace, Naval, Land, C4ISR, Security

    Contract Awards by US Department of Defense - September 13, 2019

    ARMY Raytheon Co., McKinney, Texas, was awarded a $427,298,588 hybrid (cost-plus-fixed-fee and firm-fixed-price) contract for procurement of Common Sensor Payload systems, spare parts and engineering and system support services. One bid was were solicited with one bid received. Work locations and funding will be determined with each order, with an estimated completion date of Sept. 12, 2024. U.S. Army Contracting Command, Aberdeen Proving Ground, Maryland, is the contracting activity (W56KGY-19-D-0005). Honeywell International Inc., Phoenix, Arizona, was awarded a $46,965,295 firm-fixed-price contract for overhaul and repair of the T55-GA-714A engine. Bids were solicited via the internet with one received. Work will be performed in Phoenix, Arizona, with an estimated completion date of Sept. 30, 2020. Fiscal 2010 Army working capital funds in the amount of $46,965,295 were obligated at the time of the award. U.S. Army Contracting Command, Redstone Arsenal, Alabama, is the contracting activity (W58RGZ-19-C-0051). Oshkosh Defense LLC, Oshkosh, Wisconsin, was awarded a $24,397,228 modification (P00261) to contract W56HZV-15-C-0095 to provide total package fielding for the Joint Light Tactical Vehicle. Work will be performed in Oshkosh, Wisconsin, with an estimated completion date of Oct. 30, 2020. Fiscal 2019 other procurement, Army funds in the amount of $24,397,228 were obligated at the time of the award. U.S. Army Contracting Command, Warren, Michigan, is the contracting activity. Great Lakes Dredge and Dock Co. LLC, Oak Brook, Illinois, was awarded a $15,577,450 firm-fixed-price contract for maintenance dredging. Bids were solicited via the internet with four received. Work will be performed in Saint Marys, Georgia, with an estimated completion date of April 15, 2020. Fiscal 2019 operations and maintenance, Army funds in the amount of $15,580,450 were obligated at the time of the award. U.S. Army Corps of Engineers, Jacksonville, Florida, is the contracting activity (W912EP-19-C-0029). Pontchartrain Partners LLC,* New Orleans, Louisiana, was awarded a $9,956,700 firm-fixed-price contract for mobilization and demobilization, clearing and grubbing, stripping, containment dike construction, interior and semi-compacted berm construction, demolition and construction of drop-outlet structure, turfing, and as-built drawings. Bids were solicited via the internet with two received. Work will be performed in Corpus Christi, Texas, with an estimated completion date of Dec. 31, 2020. Fiscal 2019 civil construction funds in the amount of $9,956,700 were obligated at the time of the award. U.S. Army Corps of Engineers, Galveston, Texas, is the contracting activity (W912HY-19-C-0016). PAF Electrical Inc., Portland, Oregon, was awarded a $7,393,100 firm-fixed-price contract for the delivery of four generator step up power transformers and accessories to Fort Randall power plant in Pickstown, South Dakota. Bids were solicited via the internet with eight received. Work will be performed in Pickstown, South Dakota, with an estimated completion date of Dec. 31, 2023. Fiscal 2019 civil construction funds in the amount of $7,393,100 were obligated at the time of the award. U.S. Army Corps of Engineers, Omaha, Nebraska, is the contracting activity (W9128F-19-C-0035). DEFENSE LOGISTICS AGENCY Philips Healthcare Informatics Inc., Pleasanton, California, has been awarded a maximum $400,000,000 fixed-price with economic-price-adjustment, indefinite-delivery/indefinite-quantity contract for digital imaging network picture archiving communications system products and maintenance. This was a competitive acquisition with ten offers received. This is the seventh contract competitively awarded under the open solicitation, SPE2D1-15-R-0004. This is a five-year base contract with one five-year option period. Locations of performance are California, and other areas located within and outside the continental U.S., with a Sept. 12, 2024, performance completion date. Using customers are Army, Navy, Air Force, Marine Corps, and federal civilian agencies. Type of appropriation is fiscal year 2019 through 2024 defense working capital funds. The contracting activity is the Defense Logistics Agency Troop Support, Philadelphia, Pennsylvania (SPE2D1-19-D-0036). Science Applications International Corp., Fairfield, New Jersey, has been awarded a maximum $92,000,000 firm-fixed-price, 15-month bridge contract for facilities maintenance, repair and operations items. This was a sole-source acquisition using justification 10 U.S. Code 2304 (c)(1), as stated in Federal Acquisition Regulation 6.302-1. Locations of performance are Hawaii, Guam and New Jersey, with a Dec. 14, 2020, performance completion date. Using military services are Army, Navy, Air Force, and Marine Corps. Type of appropriation is fiscal 2019 through 2020 defense working capital funds. The contracting activity is the Defense Logistics Agency Troop Support, Philadelphia, Pennsylvania (SPE8E3-19-D0015). AJ Wholesale Produce Inc.,* Sheboygan, Wisconsin, has been awarded a maximum $48,600,000 firm-fixed-price with economic-price-adjustment, indefinite-delivery/indefinite-quantity contract for fresh fruits and vegetables. This was a competitive acquisition with four responses received. This is a 54-month contract with no option periods. Locations of performance are Michigan and Wisconsin, with a March 9, 2024, performance completion date. Using customers are Department of Agriculture schools and Reservations. Type of appropriation is fiscal 2019 through 2024 defense working capital funds. The contracting activity is the Defense Logistics Agency Troop Support, Philadelphia, Pennsylvania (SPE300-19-D-S734). Northrop Grumman Systems Corp., Oklahoma City, Oklahoma, has been awarded a minimum $42,838,512 firm-fixed-price, indefinite-quantity contract for the manufacture of B-2 hot trailing edge production units. This is a sole-source acquisition using justification 10 U.S. Code 2304 (c)(1), as stated in Federal Acquisition Regulation 6.302-1. This is a four-year base contract with one five-year option period. Locations of performance are Oklahoma, Ohio, Missouri, and California, with an Oct. 1, 2024, performance completion date. Using military service is Air Force. Type of appropriation is fiscal 2019 defense working capital funds. The contracting activity is Defense Logistics Agency Aviation, Tinker Air Force Base, Oklahoma (SPRTA1-19-D-0001). Moog Inc., Elma, New York, has been awarded a maximum $41,773,400 firm-fixed-price, indefinite-delivery/indefinite-quantity contract for aviation cylinder assemblies. This was a competitive acquisition with one offer received. This is a five-year contract with no option periods. Location of performance is New York, with a Sept. 1, 2024, performance completion date. Using military service is Army. Type of appropriation is fiscal 2019 through 2024 Army working capital funds. The contracting activity is the Defense Logistics Agency Aviation, Redstone Arsenal, Alabama (SPRRA1-19-D-0121). Raytheon Co., Andover, Massachusetts, has been awarded a maximum $23,774,837 firm-fixed-price contract for traveling wave tubes. This was a sole-source acquisition using justification 10 U.S. Code 2304 (c)(1), as stated in Federal Acquisition Regulation 6.302-1. This is a one-time procurement contract with no option periods. Location of performance is Massachusetts, with a Jan. 31, 2023, performance completion date. Using military service is Army. Type of appropriation is fiscal 2019 Army working capital funds. The contracting activity is the Defense Logistics Agency Aviation, Redstone Arsenal, Alabama (SPRRA1-18-C-0061). AIR FORCE ITility LLC, Herndon, Virginia (FA5641-19-DA-006); ValidaTek Inc., McLean, Virginia (FA5641-19-DA-007); and CAE USA Mission Solutions Inc., Tampa, Florida (FA5641-19-DA-008), have been awarded a $95,000,000 indefinite-delivery/indefinite-quantity contract for advisory and assistance services. This contract provides for technical and analytical services to support and improve policy development, decision making, management, administration, and systems operation. Work will be performed primarily at Headquarters U.S. Air Forces in Europe (USAFE), USAFE bases, USAFE geographically separated units, U.S. European Command, U.S. Africa Command, and U.S. Army in Europe, including Installation Management Command and is expected to be completed by Sept. 12, 2026. This contract is the result of a competitive acquisition and eleven offers received. Fiscal 2019 operation and maintenance funds in the amount of $2,500 are being obligated for each awardee at the time of the award. The 764th Specialized Contracting Squadron, Ramstein Air Base, Germany, is the contracting activity. Rand and Jones Enterprises Co., Inc., Buffalo, New York, has been awarded a $9,500,000 indefinite-delivery/indefinite-quantity contract for a Simplified Acquisition of Base Engineering Requirements (SABER) contract for completion of minor, non-complex construction projects requiring minimum design. This contract consists of a number of general construction disciplines including, but not limited to, plumbing, masonry, electrical, mechanical, carpentry, architectural, painting and HVAC. Work will be performed at Rome, Newport and Stockbridge, New York, and is expected to be completed by Sept. 12, 2024. This award is the result of a competitive acquisition and one offer was received. Fiscal 2019 research and development funds will be used and no funds are being obligated at the time of the award. The Air Force Research Laboratory Specialized Acquisition & Operational Contracting Branch, Rome, New York, is the contracting activity. NAVY Northrop Grumman Systems Corp., Herndon, Virginia, is awarded a $57,462,554 cost-plus-fixed-fee modification to a previously awarded contract N00024-17-C-6327 to exercise options for engineering support services for the Joint Counter Radio-Controlled Improvised Explosive Device Electronic Warfare Increment One Block One (I1B1) Systems full-rate production in support of the Expeditionary Warfare program office. This option exercise is for Engineering Support Services for Joint Counter Radio-Controlled Improvised Explosive Device Electronic Warfare (JCREW) to introduce new technologies; address diminishing material and depot repairs to keep JCREW systems viable for future production; and maintain operational readiness for the field. Work will be performed in San Diego, California, and is expected to be complete by September 2020. Fiscal 2019 research, development, test, and evaluation funding in the amount of $2,971,124; and 2019 other procurement (Navy) funding in the amount of $1,406,871 will be obligated at time of award and will not expire at the end of the current fiscal year. The Naval Sea Systems Command, Washington, District of Columbia, is the contracting activity. American Petroleum Tankers LLC, Blue Bell, Pennsylvania, is awarded a $31,548,000 modification under a previously awarded firm-fixed-price contract N62387-15-C-5405 to fund the fourth one-year option period. The option will continue to provide one U.S. flagged Jones Act tanker (M/T Empire State), for the transportation of petroleum product in support of the Defense Logistics Agency–Energy in accordance with the terms of the charter. The vessel is capable of deployment to worldwide locations. The current contract includes a one-year firm period of performance, three one-year option periods and one 11-month final option period. Work will be performed worldwide, and is expected to be completed by Aug. 20, 2020. The option will be funded by transportation working capital funds for fiscal 2019 and 2020. Military Sealift Command, headquartered in Norfolk, Virginia, is the contracting activity (N62387-15-C-5405). University of Washington, Seattle, Washington, is awarded an $11,882,737 cost-plus-fixed-fee contract, which includes one unexercised option task valued at $792,524, for the statement of work, "Backbone Components of an Arctic Mobile Observing System: seagliders, floats, SA and C2." Work will be performed in Seattle, Washington, and is expected to be completed September 2024. Fiscal 2019 research, development, test, and evaluation (Navy) funds for $1,839,015 will be obligated at time of award, none of which will expire at end of current fiscal year. This contract was competitively procured under N00014-19-S-B001, entitled "Long Range Broad Agency Announcement (BAA) for Navy and Marine Corps Science & Technology." Since proposals will be received throughout the year under the long range BAA, the number of proposals received in response to the solicitation is unknown. The Office of Naval Research, Arlington, Virginia, is the contracting activity (N00014-19-C-2076). DEFENSE INFORMATION SYSTEMS AGENCY Iridium Government Services LLC., Tempe, Arizona, was awarded a non-competitive, firm-fixed price contract on Sept. 13, 2019, for unlimited access to Iridium's global commercial satellite network for enhanced mobile satellite airtime communication services. The original solicitation was issued on the basis of other than full and open competition pursuant to 10 U.S. Code 2304(c)(1), only one responsible source and no other type of supplies or services would satisfy agency requirements. The face value of this action is $16,666,666 funded by fiscal 2019 defense working capital funds. The total cumulative face value of the contract is $738,500,000. Performance will be at the contractor's facility. The period of performance is seven years, from Sept. 15, 2019, through Sept. 14, 2026. The Defense Information Technology Contracting Organization, Scott Air Force Base, Illinois, is the contracting activity (HC1013-19-C-0006). DEFENSE ADVANCED RESEARCH PROJECTS AGENCY Exquadrum Inc., Adelanto, California, has been awarded a $9,810,053 cost-plus-fixed-fee modification (P00003) exercising the option period on previously awarded HR0011-18-C-0138 for a Defense Advanced Research Projects Agency research program. Fiscal 2019 research and development funds in the amount of $2,400,000 are being obligated at the time of award. Work will be performed in Adelanto, California (58%); and Huntsville, Alabama (42%), with an estimated completion date of August 2020. The Defense Advanced Research Projects Agency, Arlington, Virginia, is the contracting activity. U.S. TRANSPORTATION COMMAND JAR Assets LLC, Mandeville, Louisiana, has been awarded a contract modification, P00026, on contract HTC711-16-C-W001 in the estimated amount of $8,869,099. This modification provides continued transportation of bulk jet fuel and marine diesel fuel by tug and barge for the Defense Logistics Agency. Work will be performed at ports and points along the inland waterways and Gulf Coast locations in the Gulf Region. The option period of performance is from Oct. 1, 2019, to Sept. 30, 2020. Fiscal 2020 defense working capital funds will be obligated at the start of performance. This modification brings the total cumulative estimated face value of the contract from $35,011,884 to $43,880,983. U.S. Transportation Command, Directorate of Acquisition, Scott Air Force Base, Illinois, is the contracting activity. *Small Business https://www.defense.gov/Newsroom/Contracts/Contract/Article/1960562/source/GovDelivery/

  • Afghanistan deployment proves One World Terrain is more than a training tool

    October 15, 2020 | International, Aerospace, Land, C4ISR

    Afghanistan deployment proves One World Terrain is more than a training tool

    Jen Judson WASHINGTON — The U.S. Army began building an entire virtual world a few years ago for its Synthetic Training Environment (STE) to bring accuracy and a real-life feel to training, but a deployment of One World Terrain in Afghanistan has proved it's not just a training tool, according to Maj. Gen. Maria Gervais, who is in charge of the service's STE development. One World Terrain, or OWT, compiles realistic and, in some cases, extremely accurate virtual maps of territory all over the globe. The idea is to be able to click on any place on a virtual globe and go there. Soldiers can then train virtually in an exact environment in which they can expect to operate in reality. “We're seeing now there are better uses for operational capability,” Gervais told Defense News in an Oct. 8 interview ahead of the Association of the U.S. Army's annual conference. “And it's helping us inform how do we now expand this to meet training, operational and also targeting requirements.” It all began with a unit that used OWT for training at the National Training Center on Fort Irwin, California, and saw value in it, Gervais said. When the unit deployed to Afghanistan, the soldiers asked to take the system — which included a drone and software — she said. The unit was able to capture terrain for the purpose of mission-planning rehearsal and route planning. But the soldiers also used it to take an in-depth look at the forward-operating base to see how it was set up and analyze it for vulnerabilities. “I will tell you from that usage, they figured out they had to make some changes,” Gervais said. “And then they went out and they started looking at other operating bases within their area. They expanded it.” The system “immediately started proving its utility to them,” she said, “but from that unit from what they were able to do, we then were able to take the next unit that was coming in behind them and provide all that information to them and allow them to understand how One World Terrain could be used.” The Army's 82nd Airborne Division also used the system prior to deploying to another theater. The division captured the terrain, using it for predeployment planning and mission rehearsals, including how and where to set up a base and where to position electronic warfare systems. OWT also helped the 25th Infantry Division out of Hawaii prepare for a Joint Training Readiness Center rotation, and its members also plan to use it during the exercise. These uses have led the Army to provide more drones and software for more units, Gervais said. Starting in December and January, the Army will begin fielding “a little bit more capability,” she added. In March, the STE team went to Germany to observe an assured position, navigation and timing exercise that included a sensor-to-shooter, live-fire drill. The team worked with the 1st Cavalry Division's intelligence analysts and put OWT on the Distributed Common Ground System-Army (DCGS-A) system, which is an intelligence analysis platform. “We showed them the capability, and what came out of there was pretty astounding,” Gervais said. With 3D terrain from OWT in the system, decisions could be made more quickly because there was no need to compare two different databases and reason against it, she said. That cut workload by about 60 percent, she added. OWT was on a DCGS-A system at Project Convergence at Yuma Proving Ground, Arizona, this year, Gervais said, and it showed the realm of the possible from a targeting perspective. While the STE had a limited scope during Project Convergence, “we're going to be more integrated in Project Convergence 21 next year,” she added, so that “everybody's kind of operating off the 3D terrain.” https://www.defensenews.com/digital-show-dailies/ausa/2020/10/14/afghanistan-deployment-proves-one-world-terrain-is-more-than-a-training-tool/

  • Norway’s allies share their views on the country’s new defense plan

    April 17, 2020 | International, Aerospace, Naval, Land, C4ISR, Security

    Norway’s allies share their views on the country’s new defense plan

    By: Stephen J. Flanagan and James Black As countries around the world grapple with the unfolding coronavirus pandemic, the wider business of government continues. Norway's Ministry of Defence will shortly publish its next Long Term Plan, which will then be debated by parliament. The plan outlines how the Armed Forces, in tandem with other elements of government and society, can best address the threats to Norway from hostile states, terrorists, and fragile and failing states. The plan also examines how to bolster national resilience to deal with other risks including hybrid warfare, climate change and pandemics. A new Rand report, commissioned by the MoD to inform its strategy and policy development, offers perspectives from its closest allies on the emerging security challenges and strategic options facing Norway. We found broad alignment of Norwegian and allied assessments across Denmark, France, Germany, the U.K., the U.S. and NATO institutions, but some enduring differences in emphasis and priorities. Other allies recognize Norway as punching above its weight and playing a critical role in the defense of the North Atlantic and High North. At the same time, our research concludes there is no time for complacency. Norway's key allies agree that the most significant threat in the High North is not a crisis directed against Norway itself. The more plausible danger is “horizontal escalation” — a crisis elsewhere in Europe rapidly growing into a wider conflict that threatens Norwegian waters, airspace and territory. Russia continues to demonstrate hostile intent, and its military capabilities threaten the ability of Norway and its allies to operate military forces, secure critical infrastructure and protect civilian populations. The collapse of the Intermediate-Range Nuclear Forces Treaty in 2019 brings an increased threat from medium-range ballistic missiles, requiring Norwegian and allied defense planners to adjust to new threats to the homeland and region. Improvements in the Russian Northern Fleet, including surface vessels and submarines armed with modern cruise missiles, also pose an increased threat to NATO operations in the Norwegian Sea, to undersea internet cables and to sea lines of communication essential to reinforcing Norway from North America or Europe in the event of any conflict. There is also strong consensus on the enduring threats posed by terrorism, nonstate actors and challenges such as climate change in the Arctic. While all allies recognize the need to consider the strategic implications of a rising China, the United States sees China as a more direct and imminent security threat. Allies also welcome Norway's contributions to missions on NATO's eastern and southern flanks. Allies perceive Norway as having an impressive mix of high-end capabilities for a country of its size and a mature total defense concept — its strategy for engaging all elements of society in national defense. These capabilities and commitments, coupled with a well-respected approach to strategy development, have allowed Norway to have significant influence on strategic thinking within NATO. Nevertheless, significant security challenges remain, and to address them our report suggests a number of options for Norwegian leaders to consider: Strengthen deterrence in Norway: Expand surveillance and reconnaissance capabilities; increase the military posture in northern Norway; enhance the protection of bases and forces against air and missile threats; maximize the F-35 fighter jet's potential to aid joint operations; and prepare for operations in contested cyber, space and electromagnetic environments. Expand capacity to receive allied reinforcements: Build on lessons from the joint Trident Juncture 2018 exercise, which allies viewed as an important milestone but not a full stress test; pursue increasingly challenging training scenarios; ensure sufficient pre-positioned stocks of consumables and equipment; upgrade and expand infrastructure along with concepts for dispersing forces to prevent attack; and deepen cooperation to enhance military mobility and interoperability. Explore concepts to hold potential adversaries at risk: Invite allies with more advanced reconnaissance and deep-attack systems to deploy them to Norway periodically; develop longer-range weapons for Norwegian forces; explore the utility of low-cost, unmanned assets; collaborate with key allies on concepts to deny adversaries access to the sea and to better project forces onto the littoral; and refine parallel strategic communications to control escalation. Enhance national and societal resilience: Test and refine Norway's whole-of-government approach and the mechanisms for civil support to the military; contribute to NATO's strategy for addressing hybrid threats, such as disinformation, economic pressure and cyberattacks; and explore further measures to enhance collective preparedness and will to fight. Solidify Norwegian contributions to NATO and partners: Continue contributions to NATO operations beyond the north; help to address variations in defense expenditure across all NATO nations and rebalance trans-Atlantic burden-sharing; promote deeper NATO cooperation with Sweden and Finland; and use innovation and industry to enable influence within NATO. Other countries can learn from how Norway chooses to tackle these emerging challenges, and they can benefit from its lessons learned, particularly with respect to the total defense concept. Pursuit of some of these options, along with the Norwegian government's ongoing efforts to seek allied views, could help enhance deterrence in the north and overall NATO defense. Stephen J. Flanagan is a senior political scientist at the think tank Rand. James Black is a senior analyst in the defense, security and infrastructure program at Rand Europe. https://www.defensenews.com/opinion/commentary/2020/04/16/allies-share-views-on-enhancing-defense-of-norway-and-the-high-north/

All news