Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
FBO DAILY - FEDBIZOPPS ISSUE OF JUNE 16, 2017 FBO #5684
SOURCES SOUGHT

D -- Cyber Security Opeerations Support (CSOS)

Notice Date
6/14/2017
 
Notice Type
Sources Sought
 
NAICS
541512 — Computer Systems Design Services
 
Contracting Office
Department of State, Office of Acquisitions, Acquisition Management, 1735 N. Lynn St., Arlington, Virginia, 22209, United States
 
ZIP Code
22209
 
Solicitation Number
SAQMMA17I0059
 
Archive Date
7/11/2017
 
Point of Contact
Wanda I Cruz, Phone: 703.312.3524
 
E-Mail Address
cruzwi@state.gov
(cruzwi@state.gov)
 
Small Business Set-Aside
N/A
 
Description
The U.S. Department of State (DOS), Office of Acquisition Management (AQM), is issuing this Sources Sought Notice, as a means of conducting market research to identify parties having an interest in, and the resources to support the requirements described herein for the Bureau of Diplomatic Security, Cyber and Technology Security Directorate (DS/CTS). The results of this market research will contribute to determining the method of procurement and will assist AQM in developing and further defining the acquisition strategy to include identifying potential small business sources including 8(a) business development participants, service disabled veteran­owned small businesses (SDVOSB), HUB Zone small business concerns, women­owned small business concerns and economically disadvantaged women­owned small business concerns. Interested firms must demonstrate in their qualifications statement that they are qualified to perform the work outlined below under the anticipated North American Industry Classification System (NAICS) Code 541512 Computer Systems Design Services. This notice is issued solely for information and planning purposes and does not constitute a Request for Proposal (RFP) or a commitment on the part of the government to conduct a solicitation for the services listed below. Responders are advised that the government will not pay for information submitted in response to this notice, nor will it compensate vendors for any costs incurred in the development/furnishing of a response. No proprietary, classified, confidential, or sensitive information should be included in the response. SCOPE DS has a broad range of responsibilities that include providing for a secure cyber environment, in which to carry out Department business and activities. AQM is currently conducting market research to determine the existence of viable small businesses capable of providing the necessary services in support of its cyber security operations under the General Services Administration (GSA) Federal Supply Schedule (FSS), General Services Administration (GSA) Alliant SB Government-wide Acquisition Contracts (GWAC), or other government-wide procurement vehicles, as well as on the open market. The Department's IT infrastructures encompass about 400 domestic and overseas facilities, classified and SBU (Sensitive But Unclassified) IT assets operating on enterprise, mobile, and cloud platforms. The cyber security infrastructure for which operations support is sought includes technologies for intrusion detection, anomaly detection, data analytics, incident management software, and others. It ingests 3.1 TB of data daily average over the last 30 days (4.8 TB at the peak) and reports 7,285,663,657 events daily from all feeds. The key functional areas under consideration include but are not limited to the following: 1. Security Program Planning and Outreach: supports program strategic, tactical and operational planning and execution activities; performs program outreach, liaison and coordination activities; and reports on program progress and performance. 2. Network Security Monitoring and Incident Response: monitors Sensitive But Unclassified (SBU) and classified IT assets on all platforms (enterprise, mobile and cloud) to ensure data integrity, availability, and confidentiality; supports evaluation, implementation and operations of monitoring tools/technologies; handles computer incident response and reporting. 3. Evaluation and Verification: performs security configuration compliance verification, application configuration verification, vulnerability scanning/assessments, penetration testing, and network/systems security evaluations; supports evaluation, implementation, and operations of evaluation/verification/testing tools and technologies. 4. Cyber Threat Analysis: analyzes and produces enhanced cyber security intelligence information to include advanced indications and warnings on threats and potential threats to the Department's IT assets from all sources (including external, internal and social media); performs advanced technical analyses and operational security analyses of computer, telephone, communications, and telecommunications systems; supports evaluation, implementation, and operations of tools/technologies used in advanced analysis. 5. Security Research and Engineering: researches, evaluates, engineers, and provides life cycle support for tools, technologies, and solutions for safeguarding, monitoring, assessing, and investigating the security of classified and unclassified IT assets. 6. Enterprise Technology Assessment: conducts security tests and evaluations of Commercial Off-the-Shelf (COTS) products and enterprise-wide IT solutions to determine potential risks; provides implementation recommendations and establishes security configuration standards; participates in inter-agency and intra-agency working groups and committees. 7. Regional Computer Security Officer Support: provides technical, management and administrative support for computer security officers located at DOS regional posts worldwide; develops and maintains compliance checklists; administers security officers' laptops and software and hardware tools. 8. Security Policy and Standards: contributes to the development of National level computer security and communications security guidelines and computer security policies and standards for the Department and Foreign Affairs agencies. 9. Security Awareness: designs, implements, and maintains a cyber security awareness program and related activities supporting audiences worldwide. 10. Other Security Support: provides technical expertise and support for protecting personal identifiable information (PII); supports security evaluation and protection of telephone, communications, and telecommunications systems, and computer-based security systems to include physical access control systems. 11. Technical Security Analyses, Tests, and Reviews: supports technical countermeasure activities to include technical threat and vulnerability analysis, shielding/grounding/zone of control, copier, fax, telephone, private branch exchange (PBX), and voice over internet protocol (VOIP) security; conducts RF/signal analysis, data interception/compromise analysis, emanation (tempest) analysis and other specialized technical security analysis; conducts technical security hardware and software testing and verification; performs site/facility reviews and inspections. The Department is interested in small businesses with demonstrated success in cyber security experience in the above specified functional areas. Interested parties should have demonstrated experiences in operating and maintaining (including integrating emerging technologies) a cyber security infrastructure similar in size and scope, ideally encompassing classified and SBU data and domestic and overseas locations, employing similar security technologies, and handling similar amount of security data feeds from multiple platforms (enterprise, mobile and cloud). Further, the effort will require a TOP SECRET facility clearance issued by the Defense Security Services and personnel who can obtain and maintain Defense Security Systems (DSS) clearances up to and including Sensitive Compartmented Information (SCI). Some positions may require professional certification(s) such as PMP, CISSP, or MSCE. SUBMISSION INSTRUCTIONS 1. The closing date for the receipt of responses is June 26, 2017, at 2:00 PM Eastern Standard Time. 2. Email responses to cruzwi@state.gov. 3. No phone calls related to this Request for Information will be accepted. All correspondence shall be via email. 4. Interested parties shall not mark any information as proprietary. All information received will be treated as publicly available information. 5. Response should be concise, focused, and shall not exceed ten pages (single sided). 6. Sales brochures, videos, PowerPoint presentations, and other marketing information materials are not solicited and will not be reviewed. 7. Interested vendors submitting a response should include the following information: (1) company name and address; (2) point of contact; (3) phone/email; (4) business size and status for the NAICS code identified in this notice, (5) Alliant SB GWAC contract number/GSA FSS number or other government wide contract number, if any, (6) ISO 9001 and CMM certification status, or other professional certifications, if any, (7) current facility security clearance level, and (8) organizational history and capabilities/experience statement in response to the requirement listed below: a) The company's experience specifically related to the functional areas identified above, in support of an IT security infrastructure of comparable size as that of DoS, encompassing classified and SBU data and domestic and overseas locations, employing similar security technologies, and handling similar amount of security data feeds from multiple platforms (enterprise, mobile and cloud), during the past three (3) years.
 
Web Link
FBO.gov Permalink
(https://www.fbo.gov/spg/State/A-LM-AQM/A-LM-AQM/SAQMMA17I0059/listing.html)
 
Place of Performance
Address: Places of Performance: The work will be performed primarily at DOS facilities in Rosslyn, VA and Beltsville, MD. Periodic travel (TDY) to domestic and overseas posts may be required. Further, work may also be performed at contractor facilities and facilities of other contractors supporting the Department., Rosslyn, Virginia, 22209, United States
Zip Code: 22209
 
Record
SN04544445-W 20170616/170614235115-897596de980b127931277da5b9db31b9 (fbodaily.com)
 
Source
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.