Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
FBO DAILY - FEDBIZOPPS ISSUE OF DECEMBER 31, 2014 FBO #4785
SPECIAL NOTICE

70 -- SIEM Modernization

Notice Date
12/29/2014
 
Notice Type
Special Notice
 
NAICS
511210 — Software Publishers
 
Contracting Office
Department of the Treasury, Bureau of the Public Debt (BPD), Bureau of the Fiscal Service, Avery 5F, 200 Third Street, Parkersburg, West Virginia, 26106-5312, United States
 
ZIP Code
26106-5312
 
Solicitation Number
RFI-FIN-15-0019
 
Archive Date
2/14/2015
 
Point of Contact
Procurement, Fax: 304 480-7203
 
E-Mail Address
procurement@fiscal.treasury.gov
(procurement@fiscal.treasury.gov)
 
Small Business Set-Aside
N/A
 
Description
THIS REQUEST FOR INFORMATION AND SOURCES SOUGHT NOTICE IS ISSUED FOR THE FINANCIAL CRIMES ENFORCEMENT NETWORK (FINCEN) SIEM MODERNIZATION PROJECT. This announcement is issued for informational and planning purposes only. This Request for Information (RFI) is not a Request for Proposals (RFP) and is not to be construed as a commitment by the Government to issue a solicitation or ultimately to award a contract on the basis of this RFI or otherwise pay for the information solicited. Responses to the RFI will not serve as proposals, bids, or offers, which could be accepted by the Government to form a binding contract. Background As reflected in its name, the Financial Crimes Enforcement Network (FinCEN) is a network of people and information brought together to fight the complex problem of money laundering, terrorist financing and other abuses of the financial system. Since its creation in 1990, FinCEN has worked to maximize information sharing among and the dissemination of information to law enforcement agencies and other partners in the financial and regulatory communities. Mission FinCEN, a bureau within the Department of Treasury, is the largest overt collector of financial intelligence in the United States. The mission of FinCEN is to safeguard the financial system from the abuses of financial crime including terrorist financing and money laundering. FinCEN achieves this mission be administering the Bank Secrecy Act (BSA), supporting law enforcement, intelligence and regulatory agencies through information sharing and the analysis of financial data submitted by financial institutions as required by the BSA. Objective FinCEN is conducting market research related to a potential Security Information and Event Monitoring SIEM modernization project. The objectives of this modernization are to vastly improve the analysis and detection of real or potential policy violations and improve event forensics. Currently FinCEN hosts a relatively simple two-host SIEM solution involving basic SIEM capabilities such as basic event correlation, audit log reduction and parsing of events based on cyber security interest. Log events per second of the current solution can peak to 12,000 but averages are approximately 8,000. Moderate to low growth of logging systems is expected. Network devices such as firewalls, routers, switches as well as databases, operating systems, and intrusion detection devices are currently integrated with this system. FinCEN is interested in the following design objectives related to a modernized SIEM architecture: • Support of network flow traffic to supplement log data in presenting information to the SIEM user; • Intelligent correlation of a large number of data types such as flow data, vulnerability data, Network Intrusion Detection Sensor (NIDS) and endpoint audit log data presented in a normalized manner; • Out-of-the-box capabilities: extensive rule tuning and customization should not be needed to obtain value from default rule sets; • Ease of customization: FinCEN has a small workforce and SIEM rule-tuning and customization must be able to support a high-degree of prioritization and filtering based on risk or threat severity; • A management console that can comply with Federal security controls such as role-based access control, password complexity and password age, and Federal encryption standards; • Performance: the solution should be able to respond to queries from any given point in time within a 6 month timeframe within 30 seconds; • Audit reduction: reduction of raw logs to a consolidated view and parsing out of information unrelated to cyber security. All socioeconomic categories of businesses including those qualified for set asides are encouraged to respond. Interested vendors shall provide no more than a 10 page capability statement that includes the following in order: 1. Contact information; 2. Your company's SocioEconomic status; 3. Whether your company's services are available through an existing Government contract vehicle (i.e. GSA contract - please provide the contract number, GSA Schedule(s) and SIN Category(ies)) or in the Open Market; 4. Information on your company's experience and capabilities in relation to the subject of this RFI; Responses submitted will also assist the Government in its market research to determine the availability of commercial sources and the acquisition strategy in terms of set-aside requirements. In order for Fiscal Service to assess set-aside possibilities, interested parties shall also identify their socio economic status(es) based on the following in their capability statement: 1) small business; 2) 8(a) business; 3) HUBZone small business; 4) small disadvantaged business; 5) woman-owned small business; 6) economic disadvantage women-owned small business; 7) veteran-owned small business; 8) service-disabled veteran-owned small business, or 9) other than small business. Interested vendors shall submit responses by 2:00 PM on January 30, 2015 to purchasing@fiscal.treasury.gov referencing "Response to RFI-FIN-15-0019 Attn: JS/BJ" in the subject line. All electronic materials and attachments submitted shall be formatted in accordance with the Bureau of the Fiscal Service's Security Requirements. The following file extensions are not allowable and application materials/data submitted with these extensions cannot be opened:.bat,.cmd,.com,.exe,.pif,.rar,.scr,.vbs,.hta,.cpl, html, mhtml, and.zip files The Government does not allow 3rd party messaging systems/secure mail. Microsoft Office non-macro enabled compatible documents are acceptable. If the interested vendor determines that other formats are necessary, it is the interested vendor's responsibility to verify with Fiscal Service that those formats are acceptable. No pricing or technical approach is being requested or will be considered at this time. This is only a request for information for determining an acquisition strategy and for gathering feedback from interested vendors for considering changes/additions to the draft requirement. No other information regarding this Sources Sought Notice will be provided at this time. This notice does not restrict the Government to an ultimate acquisition approach. All firms responding to this notice are advised that their response is not an offer that will be considered for contract award. All interested parties will be required to respond to any resultant solicitation separately from their response to this notice. NO SOLICITATION IS AVAILABLE. A request for more information, or a copy of the solicitation, will not be considered an affirmative response to this Notice. Telephone responses to, or inquiries about, this Notice will NOT be accepted. Interested Vendors may register at http://www.fedbizopps.gov to receive notifications when information is posted related to this requirement, such as when amendments are available for viewing and/or downloading. Please note that the FBO provides the notification service as a convenience and does not guarantee that all persons on the mailing list will receive notifications. Therefore, we recommend that you monitor the FedBizOpps site for all information relevant to desired acquisitions. If the Internet option is not available to you, you may receive a hard copy of this request for information (RFI) and any amendments (via U.S. Mail) by faxing your request to (304) 480-7203 or e-mailing your request to purchasing@fiscal.treasury.gov.
 
Web Link
FBO.gov Permalink
(https://www.fbo.gov/spg/TREAS/BPD/DP/RFI-FIN-15-0019/listing.html)
 
Record
SN03605584-W 20141231/141229234137-9873895a1c070863007a1ebaad51ba73 (fbodaily.com)
 
Source
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.