Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
FBO DAILY - FEDBIZOPPS ISSUE OF AUGUST 24, 2016 FBO #5388
MODIFICATION

D -- Network Penetration Test - Amendment 1

Notice Date
8/22/2016
 
Notice Type
Modification/Amendment
 
NAICS
541512 — Computer Systems Design Services
 
Contracting Office
International Boundary and Water Commission, Acquisition Division, Acquisition Division, 4171 North Mesa, Suite C-100, El Paso, Texas, 79902, United States
 
ZIP Code
79902
 
Solicitation Number
6309r1221014
 
Point of Contact
Angelica Baca,
 
E-Mail Address
angelica.baca@ibwc.gov
(angelica.baca@ibwc.gov)
 
Small Business Set-Aside
Total Small Business
 
Description
Updated Scope of Work Q&As II 8/22/16 I 1. ​Has 2 factor authentication been implemented on the external assets in question? If so, what accommodations will be made to enable the assessment tools to successfully authenticate? Yes. A local administrative account that does not require dual authentication will be provided for use with assessment tools. 2. Will admin credentials be provided to assess full functionality? Yes. 3. Has 802.1x been implemented or considered for the wireless network in lieu of the request to scan for rogue APs ? Yes, it is implemented, but a scan for rogue AP's is an annual requirement that must be performed and documented by a third party for the ATO to be complete. II The question for the SA&A controls are as follows: 1. Are the selected controls being assessed against a GSS or Major Application? If a Major Application, is it considered a contractor system (externally developed and hosted)? They are being assessed against a GSS that contains a Minor Application that is not a contractor system. 2. What is the NIST 800-60 / FIPPS 199 security characterization of the GSS and/or Major Application? They are both at the Moderate level 3. Is this an initial SA&A effort? If not, are the artifacts from the previous assessment available for review; i.e. POAMS and the associated continuous monitoring evidence for each respective control? This is not the initial assessment. If required for this assessment, they will be provided at time of award. III ​Training and ​Awareness ( phishing campaign): 1.Is Active Directory (AD) maintained to accurately reflect current email users / groups? If so, are there global distribution groups that can be leveraged to target all inventoried users? Currently our email application is not associated with Active Directory. The distribution of groups adn specific targets will be provided at time of award.
 
Web Link
FBO.gov Permalink
(https://www.fbo.gov/spg/IBWC/IMD/ElPasoTX/6309r1221014/listing.html)
 
Place of Performance
Address: USIBWC HQ, 4171 N. Mesa Bldg. C-100, El Paso, Texas, 79902, United States
Zip Code: 79902
 
Record
SN04234126-W 20160824/160822234655-fb373ab689940231cd4353c3082193af (fbodaily.com)
 
Source
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.