Area of Interest for Case Development Modernization (CDM)

Solicitation / RFP / RFQ

This Area of Interest (AOI) seeks solutions for the modernization of the Defense Security Assistance Management System (DSAMS) and the broader Case Development Life Cycle (CDLC) within the Security Cooperation enterprise. The objective is to streamline the Foreign Military Sales (FMS) case development process, enhance transparency, reduce delivery timelines, and ensure compliance with cybersecurity, accessibility, and Zero Trust standards. This modernization aims to address critical challenges and evolving mission needs.

• Development of a modernized Case Lifecycle system.

• Implementation of task management and document repository capabilities.

• Creation of a unified, scalable, and efficient platform leveraging modern technologies and architectures.

• Modernization of applications to reduce technical debt and improve scalability, data transparency, and efficiency.

• Adherence to cybersecurity, accessibility, and data protection compliance requirements (e.g., Zero Trust, 508, FISCAM Audit, STIGs).

• Implementation of case lifecycle improvements identified by CPІВ recommendations and executive orders.

• Software development anchored in SAFe Agile framework and DevSecOps methodologies, including automated testing, CI/CD pipelines.

• Development of solutions architectures utilizing emerging technologies (e.g., AI).

• Development of web-applications, APIs, and other software.

• Development of an improved, modern data architecture.

• Development of automated means to generate CI/CD artifacts (e.g., SBOM).

• The work will be performed at both Contractor and Government Facilities (within and outside the National Capital Region).

• Foreign participation is considered for subcontractors or teaming arrangements, with Countries of Concern excluded.

• The AOI process will be conducted in up to three phases.

• White Papers are due by 4:00 PM (ET) on April 8, 2026.

• Questions are due by 4:00 PM (ET) on March 25, 2026.

• Submission must follow the Commercial Solutions Opening (CSO) procedures detailed in HQ0034259WHSCSO.

• Acceptance of solutions not submitted in accordance with instructions is at the sole discretion of the WHS/AD Agreements Officer.

• Requirements for participation include delivering the technical attributes and capabilities described in the AOI and satisfying at least one of the eligibility conditions outlined in CSO HQ0034259WHSCSO Section I.e. Eligibility.

• This AOI is for a Commercial Solutions Opening (CSO).

• The current version of HQ0034259WHSCSO, Section II CSO Procedure b. Phase 1 - Solution Brief, should be referenced.

• Submitted questions and answers may be posted to SAM.gov.

• Companies are responsible for monitoring SAM.gov for any amendments to this AOI.

Other / Unclassified

This document outlines the Information Management & Technology (IM&T) Standards for the Defense Security Cooperation Agency (DSCA), updated as of October 3, 2025. It details the agency's enterprise IT standards, which are incorporated into the Security Cooperation Enterprise Architecture to ensure technical compliance of DSCA software solutions.

This document is relevant to potential bidders as it defines the technical standards and guidelines that DSCA adheres to for its IT systems. Understanding these standards is crucial for vendors proposing solutions or services to DSCA, particularly in areas such as:

• User Interface/User Experience (UI/UX) Standards: Specifies preferred technologies and approaches for front-end development, styling, and accessibility.
• Software Development Standards: Outlines preferred languages, frameworks, package managers, version control, design methodologies, and coding styles.
• DevSecOps Standards: Details requirements for the software development lifecycle, including toolkits, KPIs, container runtime, and image standards.
• COTS/SaaS/PaaS Platform Standards: Defines approved platforms for user authentication, collaboration, content management, business intelligence, and robotic process automation.
• Data Accessibility and Interface Standards: Sets guidelines for API architectural style, specifications, and enterprise data sharing.
• Infrastructure and Hosting Standards: Specifies preferred cloud platforms, hosting strategies, and database technologies.
• Emerging Standards: Highlights areas where DSCA is coordinating or experimenting with new technologies, such as API Gateways, LLMs, and AI model training.

Vendors should align their proposals and solutions with these established standards to demonstrate compatibility and facilitate integration with DSCA's IT environment. The document also notes that while DSCA has strong preferences, alternative approaches may be considered if they offer better total value and are well-documented.

Questions & Answers / Clarifications

This document provides responses to vendor questions regarding the "Case Development Modernization" (CDM) opportunity, clarifying aspects of the "Area of Interest" (AOI) and related prototypes.

• Prototype Technology: The Case Launcher prototype uses a React front-end with Material UI, Kotlin back-end APIs with Quarkus, and containerized components. No separate contract was awarded for the prototype; existing resources are used.
• Legacy Database: The legacy Oracle database is highly normalized with 791 tables across three schemas (Army, Navy, Air Force). Bidders should refer to IM&T technical standards.
• Integration with Case Launcher: The successful CDM contractor is expected to inherit the codebase of the Case Launcher prototype.
• Document Repository: The repository should be a true enterprise repository for document storage, management (version control, tagging), and collaboration, integrating with the CDM system.
• Security & Cloud: The system must comply with DoD Impact Level 5 (IL5) or higher, utilize DISA hosted Gov cloud, and adhere to cybersecurity standards including Zero Trust. Specific STIGs/RMFs for LLMs are not yet identified, but compliance with DoD LLMs framework is expected.
• Data Access: A Unified Data Access Layer (UDAL) is a high priority for real-time visibility into legacy DSAMS data and integration with new systems.
• AI/Semantic Search: AI-driven semantic search with sub-second retrieval latency is required.
• User Population & Roles: The target solution is for approximately 3000-4000 users with 250-400 concurrent users. Legacy systems have over 200 user roles, expected to be consolidated to 25-50.
• Phase 1 Focus: Phase 1 solution briefs should specifically focus on the Training Module outlined in the AOI.
• Environments: Offerors must plan to provision development, test, staging, and production environments; these will not be government-furnished until final contract award.

These Q&As provide critical details on technical requirements, integration expectations, security postures, and the scope of initial responses, directly impacting how vendors should formulate their proposals and technical approaches.

Solicitation / RFP / RFQ

This document is an Area of Interest (AOI) for a Commercial Solutions Opening (CSO) focused on Case Development Modernization (CDM). The U.S. Department of Defense (DoD) aims to modernize its Case Lifecycle system to address critical challenges and evolving mission needs within the Security Cooperation enterprise. The goal is to streamline the Foreign Military Sales (FMS) case development process, enhance transparency, reduce delivery timelines, and ensure compliance with cybersecurity, accessibility, and Zero Trust standards.

• Develop a modernized Case Lifecycle system.

• Replace legacy functions and features to reduce technical debt and improve scalability, data transparency, and efficiency.

• Develop a modern system adhering to cybersecurity, accessibility, and data protection compliance requirements (e.g., Zero Trust, 508, FISCAM Audit, STIGs).

• Implement case lifecycle improvements identified by CPІВ recommendations and executive orders.

• Software development should be anchored in SAFe Agile framework and DevSecOps methodologies.

• Activities include: defining requirements, assisting with backlog management, developing solutions architectures (potentially using AI), developing web-applications and APIs, creating software documentation, developing modern data architecture, and establishing CI/CD pipelines and automated tests.

• Development of automated means to generate CI/CD artifacts (e.g., SBOM).

• Collaboration with the DSCA Software community of practice.

• The work will be performed at both Contractor and Government Facilities.

• Foreign participation as subcontractors or teaming partners is considered, excluding Countries of Concern.

• The CSO process will be followed, potentially in up to three phases.

• White Papers are due by 4:00 PM (ET) on April 2, 2026.

• Questions are due by 4:00 PM (ET) on March 25, 2026.

• Submissions must follow CSO procedures and any additional instructions in this AOI.

• Acceptance of solutions not submitted in accordance with instructions is at the sole discretion of the WHS/AD Agreements Officer.

• Participants must deliver the technical attributes described and satisfy at least one of the eligibility conditions outlined in the CSO HQ0034259WHSCSO Section I.e. Eligibility.

• The Contracting Point of Contact is Mary Beth McFann (Mary.b.mcfann.civ@mail.mil).

• The Technical Point of Contact is Bianca Bostic (bianca.d.bostic.civ@mail.mil).

• Companies are responsible for monitoring SAM.gov for amendments.