Ellsworth AFB Integrated Base Defense Network Implementation

The United States Air Force is soliciting sources for the design, configuration, testing, documentation, and implementation of a new Closed Restricted Network (CRN) to support base-wide Electronic Security System (ESS) operations at Ellsworth AFB, South Dakota. This project requires transitioning ESS operations from the current NIPRNET-based transport to a dedicated Ethernet-based CRN, ensuring concurrent operation of existing ESS services during the implementation phase. The scope includes integrating over 54 existing legacy buildings and 9 new facilities under construction, with flexibility for potential shifts in construction Beneficial Occupancy Dates (BODs). The contractor will be responsible for the complete operations and maintenance (O&M) of the CRN during its implementation, including troubleshooting and resolving all CRN issues. A comprehensive turnover package, including all network credentials, documentation, and licenses, will be required upon contract completion, along with a two-week training period for incoming network managers. The technical requirements emphasize adherence to various Department of Defense (DoD) and Air Force Instructions, including Risk Management Framework (RMF) for cybersecurity, DISA STIGs, and specific network architecture designs. The network will be a three-tier layered design (Access, Distribution, Core) utilizing Cisco equipment and employing security measures such as VRFs, ACLs, Encryption, 802.1x, and VLANs. All cryptographic functions must use NIST CMVP-validated modules, and devices must comply with the latest applicable DISA STIGs. The project also includes requirements for secure enclosures with UPS backup, network power management, and rigorous testing procedures, including a three-phased approach with government oversight. Cybersecurity compliance, including vulnerability scanning and incident response planning, is a critical component of this requirement.