NATO Software Factory: will you ever have another opportunity like this?!

RFI: Project “NATO Software Factory – DevSecOps Platform”

Contractor: NCI agency (NATO Communications and Information Agency), Brussels

NCI Agency is seeking information from Nations and their Industry regarding available managed services to meet the requirements for a NATO Software Factory DevSecOps platform managed service on the high side.

Responses are requested to be submitted by no later than Thursday, 23 June 2022, 17h00 (CET).

Summary of Requirements

The NCI Agency is performing a market survey in order to identify possible solutions to provide the NATO Software Factory DevSecOps platform on Azure Stack Hub as a managed service.

At this stage, the NCI Agency is willing to evaluate all the available offerings on the market which can provide a technological, robust, capable and cost effective managed service to NATO.

The system design should minimize total system life cycle costs, including its future Operations and Maintenance (O&M).

The high level requirements for the solution are listed below: Requirements ID	Description	MoSCoW Priority
PCC_TECH_01	Based on Azure Stack	Must
PCC_TECH_02	Operate on-premises fully disconnected from internet	Must
PCC_TECH_03	The infrastructure is provided via a service contract	Must
PCC_TECH_04	Ability to run virtual machines	Must
PCC_TECH_05	Ability to run Kubernetes clusters	Must
PCC_TECH_06	Ability to run PaaS Databases	Must
PCC_TECH_07	Support for storage (container, table, queue)	Must
PCC_TECH_08	Integration with Microsoft ADFS	Must
PCC_TECH_09	Ability to deploy all the resources by using infrastructure as code	Must
PCC_TECH_010	Ability to interconnect with the current on-premises infrastructure	Must
PCC_TECH_011	Support for graphics processing unit (GPU)	Must
PCC_TECH_012	Ability to export logging and auditing data to third-party SIEM system	Must
PCC_TECH_013	Administrative visibility (web-based) on platform health	Must
PCC_TECH_014	Responsive Technical Support	Must