Labels and Tags

Accountability (71) Adequate documentation (7) ADR in procurement (4) Allocation of risks (6) Best interest of government (11) Best practices (19) Best value (15) Bidder prejudice (11) Blanket purchase agreement (1) Bridge contract (2) Bundling (6) Cancellation and rejection (2) Centralized procurement structure (12) Changes during bid process (14) Clarifications vs Discussions (1) Competence (9) Competition vs Efficiency (29) Competitive position (3) Compliance (35) Conflict of interest (32) Contract administration (26) Contract disputes (4) Contract extension or modification (9) Contract formation (1) Contract interpretation (1) Contract terms (3) Contract types (6) Contract vs solicitation dispute (2) Contractor responsibility (20) Conviction (4) Cooperative purchasing (3) Corrective action (1) Cost and pricing (13) Debarment (4) Determinations (8) Determining responsibility (37) Disclosure requirements (7) Discussions during solicitation (10) Disposal of surplus property (3) Effective enforcement requirement (35) Effective procurement management (5) Effective specifications (36) Emergency procurement (14) eProcurement (5) Equitable tolling (2) Evaluation of submissions (22) Fair and equitable treatment (14) Fair and reasonable value (23) Fiscal effect of procurement (14) Frivolous protest (1) Good governance (12) Governmental functions (27) Guam (14) Guam procurement law (12) Improper influence (11) Incumbency (13) Integrity of system (31) Interested party (7) Jurisdiction (1) Justification (1) Life-cycle cost (1) Limits of government contracting (5) Lore vs Law (4) market research (7) Materiality (3) Methods of source selection (33) Mistakes (4) Models of Procurement (1) Needs assessment (11) No harm no foul? (8) Offer & acceptance (1) Other procurement links (14) Outsourcing (34) Past performance (12) Planning policy (34) Politics of procurement (52) PPPs (6) Prequalification (1) Principle of competition (95) Principles of procurement (25) Private vs public contract (17) Procurement authority (5) Procurement controversies series (79) Procurement ethics (19) Procurement fraud (31) Procurement lifecycle (9) Procurement philosophy (17) Procurement procedures (30) Procurement reform (63) Procurement theory (11) Procurement workforce (2) Procurment philosophy (6) Professionalism (17) Protest - formality (2) Protest - timing (12) Protests - general (37) Purposes and policies of procurement (11) Recusal (1) Remedies (17) Requirement for new procurement (4) Resolution of protests (4) Responsiveness (14) Restrictive specifications (5) Review procedures (13) RFQ vs RFP (1) Scope of contract (16) Settlement (2) Social preference provisions (60) Sole source (48) Sovereign immunity (3) Staffing (8) Standard commercial products (3) Standards of review (2) Standing (6) Stays and injunctions (6) Structure of procurement (1) Substantiation (9) Surety (1) Suspension (6) The procurement record (1) The role of price (10) The subject matter of procurement (23) Trade agreements vs procurement (1) Training (33) Transparency (63) Uniformity (6) Unsolicited proposals (3)

Sunday, June 19, 2011

Needs assessment in cutting edge technologies

There's an old carpenter's adage that says "measure twice, cut once". That is a good philosophy to guide needs assessment.

Needs assessment is the first step in preparing solicitation specifications. Specifications are what you tell other people you need. If you can't articulate your own needs, you don't have much chance of having anyone actually giving you what you need. You'd better do your measurements at least twice before you go out to bid. Vendors who make the cut may not make what you really require.

That, anyway, was a take-away I got from the following article:

DoD Cybersecurity Spending: Where’s the Beef?
To cash in on the increased spending on cybersecurity, a number of big defense contractors acquired many cybersecurity firms over the last few years.

Now that the defense industry has positioned itself in the cybersecurity market, the US Department of Defense wants to expand its cooperation with cybersecurity contractors to improve defenses for military computers and networks.

Not only are defense contractors positioning themselves for cybersecurity business, but also the Pentagon has indicated it plans to spend a lot more on cybersecurity despite cuts in the overall budget.

n its FY 2012 budget proposal [PDF], the Pentagon said it plans to spend $2.3 billion on cybersecurity capabilities. It said the money would go toward programs like the new US Cyber Command, construction of a Joint Operations Center for Cyber Command at Ft. Meade, Md., $500 million for new related technologies, and funds for training and improved situational awareness.

However, the Air Force said that it would spend $4.6 billion alone in FY 2012 on cybersecurity. In response to this discrepancy, NextGov queried the Pentagon and they came up with a revised figure of $3.2 billion in cybersecurity spending department-wide, including the services. The Pentagon attributed the discrepancy to the Air Force including a broad range of spending not directly related to cybersecurity and information assurance, such as IT infrastructure.

There has (sic) been problems with fuzzy definitions before, particularly between the terms “information assurance”, the more traditional Pentagon phrase, and cybersecurity. Information assurance includes “measures that protect and defend information and information systems by ensuring their availability, integrity, authentication, confidentiality, and nonrepudiation,” according to the Defense Acquisition Guidebook (DAC).

By contrast, cybersecurity is a much broader, more amorphous term; it is difficult to find a DoD definition of the term. The Obama administration’s cybersecurity legislation proposal [PDF], submitted to Congress on May 12/11, defines cybersecurity services as “products, goods, or services intended to detect or prevent activity intended to result in unauthorized access to, exfiltration of, manipulation of, or impairment to the integrity, confidentiality, or availability of an information system or information stored on or transiting an information system.” Cybersecurity threat is defined as “any action that may result in unauthorized access to, exfiltration of, manipulation of, or impairment to the integrity, confidentiality, or availability of an information system or information stored on or transiting an information system.”

This confusion about definitions could lead to discrepancies in budget figures as well as problems with the procurement process. “The flaws in the definitions will follow into the procurement cycle and you will end up with the government buying maybe what it doesn’t need,” said Robert Burton, who served as the top career federal procurement official in the White House Office of Federal Procurement Policy during the George W. Bush administration.

“When people can’t even agree about the most basic terminology, you know there is going to be a lot of confusion,” said Noah Shachtman, a nonresident fellow at the Brookings Institution and a contributing editor at Wired magazine. “The chances there aren’t billions of dollars in redundancies are slim to none.”

It appears that the bulk of the Pentagon’s spending on cybersecurity is going to traditional information systems security programs, a total of $1.9 billion. DoD information systems are defined by the DAC as “entire infrastructure, organization, personnel, and components for the collection, storage, processing, maintenance, use, sharing, dissemination, disposition, display, or transmission of information.”

Protecting these systems is the bread and butter of most traditional cybersecurity firms—firms which the big defense contractors are busy buying up. So they should be well positioned to cash in on this spending.

By contrast, DARPA is looking to spend millions on advanced cybersecurity programs.

See also, this GAO report (11-469), Defense Acquisition:

DOD Should Clarify Requirements for Assessing and Documenting Technical-Data Needs:
Because many systems remain in DOD’s inventory for decades, decisions that officials make during the acquisition process to acquire or not acquire rights to technical data can have far-reaching implications for DOD’s ability to sustain the systems and competitively procure parts and services.

Weapon systems are costly to sustain in part because they often incorporate technologically complex subsystems and components and need expensive spare parts and logistics support to meet required readiness levels. According to DOD, at least 70 percent of a weapon system’s life-cycle costs are incurred to operate and support a weapon system after it has been acquired, with the percentage depending on how long a system remains in the inventory.

Congress passed the Weapon System Acquisition Reform Act of 2009, which required in part that the Secretary of Defense is to ensure the acquisition strategy for each major defense-acquisition program includes measures to ensure competition, or the option of competition, in contracts for the program throughout its life cycle.

The Department of Defense (DOD) needs access to technical data related to its weapon systems in order to control costs and maintain flexibility in the acquisition and sustainment of those weapon systems. Technical data—recorded information used to produce, support, maintain, or operate a system1—can enable the government to complete maintenance work in house, as well as to competitively award contracts for the acquisition and sustainment of a weapon system.

No comments: