Cyber-dependent systems are increasingly complex, susceptible to adversary attacks, and difficult to reliably defend. Cyber assets usually support military missions with different priorities, making it necessary to measure the defense and resilience effectiveness of individual and collective cyber assets. To address this, IAI has been awarded a contract entitled “CREACT: Advanced Network Security Metrics for Cyber REsilience and Asset CriTicality Measurement in Mission Success.” A set of advanced network security metrics will be developed for cyber resilience and asset criticality measurement, evaluation, and measurement in a large-scale and dynamic network environment. Advanced value-based goal models and efficient mission-to-asset mapping, resource allocation, vulnerability assessment, threat analysis and impact mitigation techniques, along with network monitoring and protocol analysis tools will be developed in this framework. This integrated system can evaluate and measure cyber security and resilience of networks in three stages: network regular and scheduled maintenance phase, mission planning phase and mission execution phase. The developed technologies will be implemented into an integrated software toolkit for comprehensive cyber security analysis and network defense to achieve mission success. Key innovations of CREACT are providing real-time cyber situational awareness and the use of value-based goal models for cyber resilience analysis, which allow cyber resilience and mission assurance to be quantitatively evaluated and measured. Further, CREACT is scalable and has a powerful cyber impact analysis capability. Lastly, the proposed functionalities are formulated and implemented in a distributed, modular and open control manner, improving the reliability, scalability, and robustness of CREACT. Emerging techniques can be integrated into this framework, which can be installed as a stand-alone software application, or as an add-on component to existing security systems.