//
Army Taps GDMS, Pacific Defense for CMFF Prototype Development
Published on
Army logo. The Army entered agreements with General Dynamics Mission Systems and Pacific Defense to build CMFF prototypes

The U.S. Army has signed new rapid prototype other transactional authority, also known as OTA, agreements with General Dynamics Mission Systems and Pacific Defense to build a chassis that would enable soldiers to plug and play capabilities into military vehicles.

Plug-and-Play Capabilities

The technology is dubbed CMFF, which is short for Command, Control, Computers, Communications, Cyber, Intelligence, Surveillance and Reconnaissance/Electronic Warfare Modular Open Suite of Standards Mounted Form Factor. It offers both hardware and software designed to converge multiple legacy systems into one chassis in ground and aviation platforms.

CMFF is equipped with power, networks and radio frequency to support Assured Position, Navigation and Timing; command and control; tactical communications waveforms; and force protection electronic attack systems.

Capabilities can be easily swapped to meet various mission requirements.

“CMFF will equip Soldiers in combat platforms with needed capabilities and do so in a way that is size and energy efficient, easy to use, and able to support new technologies as they emerge,” stated Mike Hartley, CMFF product manager at Program Executive Office for Command, Control, Communications and Network, or PEO C3N.

“CMFF offers flexibility, nests with the Next Generation Command and Control ecosystem, and is an important step in delivering capabilities at the speed of need,” added Brig. Gen. Shane Taylor, head of PEO C3N.

Prototype OTA Details

Under the agreements, GDMS and Pacific Defense will work separately on the CMFF chassis and the capability cards. The OTA also covers the provision of a ruggedized smart display or tablet that would interface with the chassis and continuous updates to the CMFF Software Infrastructure.

The technologies will be validated through laboratory and field-based risk reduction events, operational demonstrations, and soldier touch points.

//
CISA, UK NCSC Release Joint Guidance on Operational Technology Security
Published on
CISA logo. CISA and partners issued guidance to help organizations create a definitive view of their OT architecture.

The United Kingdom’s National Cyber Security Centre, in partnership with the Cybersecurity and Infrastructure Security Agency, the FBI and other international partners, has published new joint guidance aimed at helping organizations secure their operational technology environments.

The document, titled “Creating and Maintaining a Definitive View of Your Operational Technology Architecture,” builds on the recent Foundations for OT Cybersecurity: Asset Inventory Guidance and provides actionable steps to strengthen defenses against cyberthreats, CISA said.

CISA is a DHS agency. Potomac Officers Club’s 2025 Homeland Security Summit offers an inside look at the latest programs, technologies and strategies shaping America’s defense against evolving threats. Register to be part of the homeland security conversation.

CISA, UK NCSC Release Joint Guidance on Operational Technology Security

Building a Definitive OT Record

The guidance emphasizes that a central, authoritative record of an organization’s OT architecture is essential for effective risk management. The record should incorporate data from multiple sources, including asset inventories, vendor documentation and software bills of materials, to ensure accuracy and visibility across systems. Maintaining the record allows operators to identify vulnerabilities, understand interdependencies and prioritize protections for the most critical and exposed assets.

Architectural Controls and Standards Alignment

According to the guidance, organizations should implement strong architectural controls such as segmentation, zoning and access restrictions to protect critical OT systems. The measures should align with international standards like International Electrotechnical Commission 62443 for industrial control system security and International Organization for Standardization/IEC 27001 for information security management.

The document also highlights the need to manage third-party and supply chain risks by integrating supplier-provided data and patching requirements into the OT record.

CISA and its partners note that OT security is not a one-time exercise. To remain effective, the definitive OT record must be continuously updated through configuration management, monitoring and change management processes.

The guidance recommends fostering collaboration between IT and OT teams to align governance, security policies and incident response procedures.

Enabling Risk Reduction and Resilience

By maintaining an accurate and comprehensive view of OT environments, organizations are meant to be able to conduct more thorough risk assessments, address cost asymmetries between threats and defenses, and implement security controls more effectively.

According to the guidance, establishing a definitive OT record is a critical step toward reducing risk and strengthening resilience. It urges operators to adopt a proactive approach to safeguarding systems that are essential to national infrastructure.

//
NOAA Taps Raytheon for NEON Stratus Project Study
Published on
Irene Parker headshot. NESDIS official at NOAA, cited the goals of a study Raytheon will conduct for the Stratus project

The National Oceanic and Atmospheric Administration has tapped Raytheon for a mission design and feasibility study on weather imagery capabilities under its Near Earth Orbit Network, or NEON, Stratus project. 

The company will conduct the Stratus critical design review study under an other transaction agreement NOAA signed with Raytheon valued about $5.9 million, the agency said Friday. Raytheon’s CDR study will focus on a U.S. Space Force design adapted to NOAA’s requirements for Stratus.

Under NEON, low-Earth orbit environmental satellites will be launched for weather forecasting, environmental observation and public safety. The program also seeks to demonstrate faster data delivery through inter-satellite links and evaluate the benefits of quicker imagery refresh rates, particularly in the Arctic.

In addition, the project will provide hands-on experience on the procurement of commercially sourced spacecraft, instruments, launch services and ground operations.

Sharper Weather Imaging Via Commercial Services

Irene Parker, deputy assistant administrator for systems at the NOAA’s National Environmental Satellite, Data and Information Service, noted the agreement’s potential in advancing weather imagery, with Raytheon as commercial partner. 

“The Stratus project will help modernize NOAA’s observing systems by leveraging commercial best practices and cutting-edge technologies while allowing us to explore new acquisition strategies,” added Parker, who is also NOAA’s acting assistant administrator for satellite and information services.

/
GAO Report: ODNI Yet to Address Key Recommendations on Managing Workforce, Facilities
Published on
Logo of the Government Accountability Office. GAO issued a new report on the Office of the Director of National Intelligence

The Government Accountability Office has identified 44 previously issued recommendations that remain unresolved at the Office of the Director of National Intelligence. The congressional watchdog said in a report published Friday that addressing the open recommendations would improve workforce, intelligence enterprise, and infrastructure and facilities management

GAO Report: ODNI Yet to Address Key Recommendations on Managing Workforce, Facilities

Hear from senior ODNI leaders at the Potomac Officers Club’s 2025 Intel Summit on Oct. 2. The in-person event will feature panels on commercial and emerging technologies and threats relevant to the IC. Attendees will also have opportunities to network with government and industry leaders. Secure your tickets to the highly anticipated event today!

GAO Recommendations to ODNI

According to the report, GAO made a total of 122 recommendations to ODNI between July 2011 and September 2025. While the national intelligence director closed 59 percent of the recommendations, the office still lags behind the government-wide average of 70 percent. As of Sept. 15, 44 recommendations remain open or only partially addressed. 

GAO highlighted 14 that ODNI should prioritize, including ensuring that current and future IT systems used for personnel vetting maintain complete and accurate information. Another calls for new guidance on minimum specifications for accessibility concerns at entrances and within sensitive compartmented information facilities.

ODNI agreed with seven recommendations but did not comment on the others.

///
DIU Selects Anduril, Zone 5 to Prototype Counter-UAS Interceptors
Published on
Defense Innovation Unit logo. DIU selected Anduril and Zone 5 to prototype counter-UAS interceptors.

The Defense Innovation Unit has selected Anduril Industries and Zone 5 Technologies to develop prototype counter-unmanned aerial systems under the Counter NEXT program. The effort focuses on rapidly prototyping commercially derived interceptors that defeat Group 3 and larger threats, protect national airspace, and safeguard personnel, equipment and facilities.

The companies were chosen from more than 65 commercial and dual-use applicants, DIU said Monday, noting that Anduril and Zone 5 completed initial design and development sprints and baseline flight testing of their proposed counter-UAS products in less than a year. Based on data, warfighter feedback and lessons from the first sprint, Anduril and Zone 5 are making iterative improvements ahead of further flight testing and safety and qualification activities.

Counter-UAS Prototype Funding

Following the recent flight demonstrations, DIU awarded additional funding to both Anduril and Zone 5 to refine their prototypes, integrate with mission partners’ combat systems and complete the safety testing required prior to a planned live-fire test event in summer 2026. DIU said further flight testing and qualification work will take place in the months ahead.

Counter NEXT Focus Areas and Design Goals

Counter NEXT concentrates on several specific capability gaps: providing a deeper interceptor magazine to preserve higher-cost interceptors for the most demanding threats, simplifying and accelerating the reloading process, addressing the current cost asymmetry between threats and interceptors, and integrating prototype interceptors with existing combat systems. DIU said vendors are applying modern air vehicle design approaches so platforms are fit for purpose without using unnecessarily costly materials.

To reduce supply-chain risk and keep unit costs low, the prototypes use commercial off-the-shelf components where feasible. The systems are being built with a modular open systems architecture to enable rapid subsystem upgrades and easier integration as components improve. DIU said all solution elements will be qualified and certified to stringent military standards before fielding.

“The Counter NEXT project is focused on leveraging the best-in-breed commercially derived technology and processes to accelerate the development, production, and fielding of these vital Counter UAS interceptors to our warfighters,” said Joshua Zike, Counter NEXT program manager for DIU.  “While this solution is focused on a specific, pressing subset of the counter UxS problem set, variants for all domains should be developed and deployed to provide this vital layered kinetic counter UxS defeat capability to all our warfighters.” 

///
DCMA Launches US-X to Advance Military Drone Acquisition Strategy
Published on
DCMA logo. The DCMA launched the Special Programs Unmanned Systems-Experimental, or US-X, unit to boost drone dominance.

The Defense Contract Management Agency has introduced the Special Programs Unmanned Systems-Experimental, or US-X, unit to support the Department of Defense’s “Unleashing U.S. Military Drone Dominance” initiative.

Fast-Tracking Blue List Certification

The DCMA said Monday the US-X program will oversee the Blue List, a streamlined certification framework designed to accelerate the deployment of unmanned aircraft systems and components to warfighters. The unit is designed to operate with greater flexibility and speed than traditional acquisition processes.

“This US-X managed list will incentivize industry to lower costs and encourage innovation. More importantly, it will get critical drones and components into warfighter hands as fast as Amazon delivers goods to your home,” said Sonya Ebright, DCMA’s acting director.

Pilot Test Demonstrates Speed

The onboarding process will prioritize certifying individual drone components rather than entire systems, significantly reducing complexity. This was demonstrated in a pilot test where UAS manufacturer Titan Dynamics achieved Blue List placement in 10 days. During the test, the company resolved issues with a drone’s flagged components and completed validation, securing a spot on the Blue List within three days.

Reducing Assessment Expenses

According to Col. Dustin Thomas, the DCMA US-X commander, the model aims to reduce assessment costs from $80,000 to between $5,000 and $20,000 per component by focusing reviews on essential parts, saving time and reducing costs. This approach also accelerates scaling and enhances access to the Blue List.

/
FedRAMP Seeks Public Comment on Cloud Security Inbox Standard for Cloud Providers
Published on
FedRAMP logo. FedRAMP seeks comments on a proposed cloud security inbox to ensure communication with cloud service providers.

The Federal Risk and Authorization Management Program has released a request for comments on a FedRAMP Security Inbox, or FSI, a proposed standard for resolving communication breakdowns with cloud service providers during cybersecurity emergencies.

FedRAMP Security Inbox Overview

According to RFC-0018, the FSI outlines clear obligations for CSPs to maintain an open and direct communication path for urgent security notifications from FedRAMP and federal agencies. The RFC opened for comment on Monday and will close on Oct. 29.

Background and Need for FSI

The FSI follows a recent alert tied to the Cybersecurity and Infrastructure Security Agency’s Emergency Directive 25-03, which revealed that many FedRAMP authorized cloud services have neglected to keep updated and accurate emergency contact information. Some CSPs have restricted access through customer portals requiring registration or have severed direct emergency communication channels with FedRAMP.

In addition, the draft standard defines the future penalties FedRAMP will impose on providers who block critical communications and details plans for regular assessments of providers’ communication capabilities.

Penalties and Compliance Assessments

Once the FSI is finalized, CSPs will be given a limited timeframe to comply and should prepare for FedRAMP-wide quarterly assessments starting in the second quarter of fiscal year 2026.

Cloud services that do not comply with these requirements during quarterly tests or other communications will be suspended from the FedRAMP Marketplace for at least 30 days and publicly listed on a corrective action plan.

/
Laurie Moe Buckhout Named Assistant National Cyber Director for Policy at White House
Published on
Laurie Buckhout. Cyber expert Laurie Buckhout was appointed assistant national cyber director for policy at the White House.

Laurie Moe Buckhout, a retired U.S. Army colonel with over 30 years of military and industry experience, announced on LinkedIn Sunday that she has been appointed assistant national cyber director for policy at the White House.

Laurie Buckhout’s Career Highlights

Since March, Buckhout has served as deputy assistant secretary of defense for cyber policy — and subsequently acting assistant secretary in the same department — at the Office of the Secretary of Defense. In this role, she directed the Department of Defense’s cyberspace policy and strategic initiatives while cultivating important relationships with government entities, domestic stakeholders and international partners.

She was Castellum’s chief strategist from 2019 to 2023 and founded Corvus Consulting in 2012. She also served as president and CEO of Corvus before it was acquired by Castellum.

Buckhout served on the AFCEA International Cyber Committee and the Commerce Spectrum Management Advisory Committee, advising on spectrum policy. She was on the board of Student Veterans of America and part of the 2013 Defense Science Board Summer Study on 21st Century EMS Operations. She also led the Association of Old Crows and held executive roles at TASC and Lanmark Technology.

During her 26-year military career, Buckhout held various leadership roles, including chief of the Army’s electronic warfare division, action officer within J6 on the Joint Staff and commander of the 32nd Signal Battalion in Iraq.

///
Coast Guard to Invest $350M in Robotics, Autonomous Systems
Published on
US Coast Guard logo. USCG will spend nearly $350 million to purchase robotics and autonomous systems.

The U.S. Coast Guard is moving forward with a nearly $350 million investment in robotics and autonomous systems to strengthen mission readiness and safety.

Funded through the One Big Beautiful Bill Act, the initiative sets aside $11 million in fiscal year 2025 for immediate system upgrades.

During peacetime, the Coast Guard is a part of DHS. The 2025 Homeland Security Summit will gather top government and industry leaders to discuss emerging threats, AI-driven security innovations and strategies to protect the nation. Register now to secure your place at this homeland security event.

Coast Guard to Invest $350M in Robotics, Autonomous Systems

New Systems Entering the Fleet

As part of the initial rollout, the Coast Guard will procure:

  • 16 VideoRay Defender remotely operated vehicles to replace the Deployable Specialized Forces’ current fleet of ROVs.
  • Six Qinetiq Squad Packable Utility Robots and 12 mini-SPURs to modernize unmanned ground vehicles used by Strike Teams.
  • 125 SkyDio X10D short-range unmanned aircraft systems

“These unmanned systems provide increased domain awareness, mitigating risk and enhancing mission success as the Coast Guard continues to operate in hazardous environments,” said Anthony Antognoli, the Coast Guard’s first RAS program executive officer. “The Coast Guard’s mission demands agility, awareness and adaptability. Robotics and autonomous systems deliver all three, enabling us to respond faster, operate smarter and extend our reach where it matters most. We are not waiting for the future to arrive. We are delivering it to the fleet today.”

Unmanned Systems Mission Applications

The new VideoRay Defender ROVs will support waterfront and pier inspections, ship hull assessments, subsurface surveys, and search and rescue efforts, reducing the need for diver deployments in hazardous conditions.

Coast Guard Strike Teams will deploy the Qinetiq SPUR systems to enter confined areas aboard commercial vessels and conduct environmental sampling during hazardous materials spills, chemical or radiological incidents, and other emergencies.

The SkyDio drones will assist in infrastructure inspections, environmental observation, pollution response, post-storm surveys, ice surveys and communications, among other operations.

USCG Force Design 2028

The investment falls under the Coast Guard’s Force Design 2028 plan, focused on modernizing operations and accelerating technology integration across the service. The plan centers on four campaigns — people, organization, contracting and acquisition, and technology — to reshape the service into a more agile and resilient force.

/
White House Unveils Federal Acquisition Regulation Changes to Boost Small Business in Federal Contracting
Published on
The White House. The White House recently released its Revolutionary Federal Acquisition Regulation Overhaul

The Office of Management and Budget’s Office of Federal Procurement Policy at the White House has rolled out modifications to regulatory coverage on small business contracting to increase small business participation in the federal market

The changes are part of the Revolutionary Federal Acquisition Regulation, or FAR, Overhaul, also known as RFO, the White House said Friday. RFO is said to be the most significant reform ever to the 41-year-old FAR. The effort is intended to rewrite procurement rules in plain language and remove non-essential, non-statutory procurement requirements.

“The streamlining and common-sense stewardship that has been unleashed by the RFO is a once-in-a-generation win-win for agencies and the many tens of thousands of small business contractors that provide capability to our country,” Kevin Rhodes, senior adviser to OMB Director Russell Vought, commented. “Small businesses will have more manageable access to the federal market, and agencies will be able to leverage their talents to meet mission demands.”

Upcoming Changes for Small Businesses

According to the White House, some of the changes that are expected to strengthen small business participation in the federal contracting are:

  • Removal of boilerplate government-unique requirements that have not been mandated by statute or executive order for commercial work
  • Increase in the use of simplified acquisition procedures that shorten solicitation to award timelines
  • Encouraging on-ramps in existing contracts and set-asides to improve small business access to government-wide and agency enterprise-wide task and delivery order contracts
  • Improvement of post-award debriefings to improve small business performance in future competitions
  • Making signing up and maintaining registration in the System for Award Management easier
  • Highlighting non-regulatory best practices in the new FAR Companion and Practitioner Albums to help small businesses showcase capabilities without costly proposal processes and reduce barriers to participation

SBA said it will continue working with the FAR Council to align updates with government-wide small business contracting rules.

1 38 39 40 41 42 2,658