ESA Open Invitation to Tender AO10260
Open Date: 24/02/2020
Closing Date: 07/04/2020 13:00:00

Status: ISSUED
Reference Nr.: 20.178.01
Prog. Ref.: GSTP Element 1 Dev
Budget Ref.: E/0904-611 – GSTP Element 1 Dev
Special Prov.: BE+DE+IT+AT+FI+EE
Tender Type: C
Price Range: > 500 KEURO
Products: Ground Segment / Mission Operations / Other
Technology Domains: Mission Operation and Ground Data Systems / Mission Operations / Operation Support Processes
Establishment: ESTEC
Directorate: Directorate of Tech, Eng. & Quality
Department: Electrical Department
Contract Officer: Leone, Elia
Industrial Policy Measure: N/A – Not apply
Last Update Date: 24/02/2020
Update Reason: Tender issue

The main mission of the C-SOC 1st phase is to identify, As Design, a preliminary architecture and high level requirements for thefirst ESA distributed Cyber Safety Security Operational Center.The outcomes of Phase 1 shall include a preliminary design of the future CSOC, preliminary functional requirements, a preliminary operational concept and preliminary security risk analysis with the related mission security posture. The preliminary design shall proof the concept of a distributed federated architecture based on ESEC with a continuous monitoring and control of all of ESAs assets and services, including ESAs space and ground segment, as well asdata exploitation, from cyber threats, whether intentional or accidental, based on a holistic risk assessment approach. In additionthe architecture shall be characterized by a synthetic environment scalable and integrated, which will provide capability to qualify element/segments against a cyber-contested scenarios.Such approach can enable global end-to-end visibility allowing first the validation of space systems under development against cyber threat, and second, when in operation, the capability shall be focused on amonitor and control with the full acquisition and correlation of systems data, guarantee increased cyber resilience across the Agency and security services to any ESA customers according to their needs.The architecture shall be based on a distributed scalable platform which will take into account all existing current ESA Cyber capability (interfacing ESOC NOC, ESRIN ESACERT, EOP SOC). The following preliminary functions are envisaged:- Corporate and mission critical monitor preventive and reactive network functions- Security Risk analysis functions- Threat and vulnerabilities risk analysis distributed functions- Sensors and technology data collection capability – Big data analysis and processing- Sensor Fusion: collecting and consolidating all the security-relevant data feeds distributed in the different infrastructures in scope of the C-SOC into one integrated analytic architecture.- Analytics: correlation and triage of the real-time data feeds, incorporating knowledge about ESAs environment, threats, and vulnerabilities.- Alerting: escalating incidents to the service customers (e.g. ESACERT, NOC, EOP) who have the operational authority to initiate the incidentresponse in the affected organization or area.- Situational awareness and reporting- Synthetic environment for element/ground segment critical HW validation for qualification against cyber scenarios;- Improve the user friendliness of the tool (easily accessible, usable and understandable)- Enhance the validation of the software units- Optimization of compilation time and processing time- Promote educational use of BIBLOS