Demonstrations are sought for technologies and implementing strategies to improve the cybersecurity of operational technology (OT) systems on military installations through the deployment of Zero Trust solutions. Proposed solutions should be able to integrate Zero Trust capabilities into existing control systems, with minimal impact to ongoing operational practices. Proposed technologies should address the Zero Trust principles outlined in the DoD Zero Trust Strategy¹, which includes but is not limited to continuous authentication, dynamic access controls, continuous monitoring, data protection, network segmentation, security response automation, and threat detection. Greater consideration will be given to technologies that develop and demonstrate capabilities that are not currently mature enough for wide-spread adoption.  

Of particular interest are demonstrations of capabilities on operational microgrid networks, including the generation, storage, central plants, controllers, and networks that comprise a typical microgrid. Demonstrations on other control system networks that support energy and water processes are also welcome. Preference will be given to proposals with the following attributes: 

• Test and evaluation plan that includes verification and validation of the technology solution on an external testbed prior to on-site deployment.
• Scalable testing process that provides confidence in solution performance at other site deployments.
• Development of metrics or framework for measuring the reduction of cyber risk.
• Near real time visualization of system network and devices, enabling system owners and cyber experts ability to identify abnormal system behavior. 

 Projects that result in demonstrations on operational DoD networks will require the necessary approvals from the relevant Authorizing Official. 

These technologies are expected to improve the cyber resilience of military installation control systems and reduce the risk of system disruptions from unintended access within the system. This effort will show how the application of Zero Trust activities demonstrably reduces the risk of a cyberattack that could disrupt or degrade Facility Related Control Systems (FRCS) and microgrid assets. 

ESTCP’s Installation Energy and Water (EW) program area supports the demonstration and deployment of innovative technologies that enhance energy security, improve water efficiency, and strengthen mission resilience across DoD installations. This program prioritizes cost-effective, scalable, and cyber-secure solutions that reduce operational costs while ensuring the reliability of energy and water systems critical to national defense. 

The DoD Zero Trust Strategy outlines the Department’s strategy for securing its Enterprise IT system by applying Zero Trust principles. While these principles apply broadly to OT systems as well, different consideration and prioritization are required for OT systems, which contain bespoke configurations, are fragile and sensitive to change, prioritize safety and availability, and have relatively static configurations. To safely and effectively incorporate Zero Trust solutions into OT systems, further development, testing, and implementation guidance is needed. DoD is developing guidance on recommended baseline activities for implementing Zero Trust on FRCS. This pending guidance may be used to inform the assessment of funded demonstrations. 

Keith Welch 

Program Manager for Installation Energy and Water  

Environmental Security Technology Certification Program (ESTCP)   

Phone: 202-657-8954 

E-Mail: keith.a.welch3.civ@mail.mil