Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
FBO DAILY - FEDBIZOPPS ISSUE OF MARCH 03, 2018 FBO #5944
DOCUMENT

H -- Load Test Anchor Points - Attachment

Notice Date
3/1/2018
 
Notice Type
Attachment
 
NAICS
541350 — Building Inspection Services
 
Contracting Office
Department of Veterans Affairs;Network Contracting Office 9;1639 Medical Center Parkway;Suite 400;Murfreesboro TN 37129
 
ZIP Code
37129
 
Solicitation Number
36C24918Q9383
 
Response Due
3/7/2018
 
Archive Date
4/6/2018
 
Point of Contact
Diane Heath
 
E-Mail Address
:
 
Small Business Set-Aside
N/A
 
Description
This is a Sources Sought notice. This is NOT a solicitation for proposals, proposal abstracts, or quotations. The purpose of this notice is to obtain information regarding the availability and capability of all qualified sources to perform a potential requirement. Background: The Memphis VA Medical Center, located at 1030 Jefferson Ave, Memphis, TN 38104, has a requirement for annual on-site testing of roof anchors. Purpose and Objectives: Your responses to the information requested will assist the Government in determining the appropriate acquisition method. NAICS code: 541350 and sized standard is $7.5 Million NOTE: Respondents claiming SDVOSB and VOSB status must be registered and CVE verified in VetBiz Registry https://www.va.gov/osdbu/. Project requirements: Statement of Work - VA Memphis Annual on-site testing of 192 +/- 5 Roof Anchors Project Description This statement of work is for conducting the Annual on-site testing and certification of 192 +/- 5 installed roof anchors at VA Memphis Medical Center. All work completed shall comply with ANSI and OSHA standards. All contract field personnel engaged in work on this project shall be trained in accordance with current OSHA regulations. Superintendent training shall be a 30-hour OSHA cardholder or equivalent with workers holding 10-hour or equivalent and Bi-annual update training in compliance with OSHA. The elements of the testing, certification, and annual inspection of the facilities roof anchors to certify that the roof anchors will properly support the weight they are designed to hold. Starting year for the contract will be 2018 ending year will be 2023. CONTRACTOR shall complete all work on building 1A (bed tower) Project Tasks Tasks 1 On-site Inspection, Testing, & Certification CONTRACTOR shall complete the following: Testing to be completed on all 192+/- 5 of installed anchors Anchor structure and anchor type must allow for pull testing using a come-along and or hydra-jaws Tie-off anchors intended for suspension shall be tested to 2,500 lbs. Price includes all travel-related expenses to facility; contractor to provide any equipment to access roof anchors Upon completion of installation, a representative shall perform the final inspection and certification of the system. Test report shall be provided within two weeks upon completion of testing Testing shall be completed in a single four-day mobilization. Task 2- Fall Protection System Annual Re-certification CONTRACTOR shall complete the following: Systems are inspected by a factory trained Qualified Person on an annual basis. Four (4) year re-certification to be scheduled 12, 24, 36, and 48 months after initial certification Each re-certification provides an additional 12-month warranty for the system Task 3- Meeting Schedule, coordinate, attend and participate in 1, 1-hour coordination meeting. This meeting will include all available agencies/stakeholders if necessary (VA Memphis Safety Dept., Memphis/VA Memphis Police and VA Memphis Engineering etc.) that may be affected by this project. Provide draft written meeting minutes for VA MEMPHIS review and finalize after receiving comments. In addition, schedule, coordinate, attend and participate in 1, 1 hour close out meeting. This meeting will discuss testing and certification findings. Task 4 Draft/Final Report Provide detailed test report VA INFORMATION AND INFORMATION SYSTEM SECURITY/PRIVACY GENERAL Contractors, contractor personnel, subcontractors, and subcontractor personnel shall be subject to the same Federal laws, regulations, standards, and VA Directives and Handbooks as VA and VA personnel regarding information and information system security. The C&A requirements do not apply, and that a Security Accreditation Package is not required. ACCESS TO VA INFORMATION AND VA INFORMATION SYSTEMS a. A contractor/subcontractor shall request logical (technical) or physical access to VA information and VA information systems for their employees, subcontractors, and affiliates only to the extent necessary to perform the services specified in the contract, agreement, or task order. b. All contractors, subcontractors, and third-party servicers and associates working with VA information are subject to the same investigative requirements as those of VA appointees or employees who have access to the same types of information. The level and process of background security investigations for contractors must be in accordance with VA Directive and Handbook 0710, Personnel Suitability and Security Program. The Office for Operations, Security, and Preparedness is responsible for these policies and procedures. c. Contract personnel who require access to national security programs must have a valid security clearance. National Industrial Security Program (NISP) was established by Executive Order 12829 to ensure that cleared U.S. defense industry contract personnel safeguard the classified information in their possession while performing work on contracts, programs, bids, or research and development efforts. The Department of Veterans Affairs does not have a Memorandum of Agreement with Defense Security Service (DSS). Verification of a Security Clearance must be processed through the Special Security Officer located in the Planning and National Security Service within the Office of Operations, Security, and Preparedness. d. Custom software development and outsourced operations must be located in the U.S. to the maximum extent practical. If such services are proposed to be performed abroad and are not disallowed by other VA policy or mandates, the contractor/subcontractor must state where all non-U.S. services are provided and detail a security plan, deemed to be acceptable by VA, specifically to address mitigation of the resulting problems of communication, control, data protection, and so forth. Location within the U.S. may be an evaluation factor. e. The contractor or subcontractor must notify the Contracting Officer immediately when an employee working on a VA system or with access to VA information is reassigned or leaves the contractor or subcontractor s employ. The Contracting Officer must also be notified immediately by the contractor or subcontractor prior to an unfriendly termination. Contractor will be able to review the VA shop drawings for reference as required to complete their work while on VA premises. Contractor will return any shop drawings to the COR once the work has been completed at the end of each day. The contractor will not share, copy, or disclose any of blue prints, maps, building layouts, etc. of the Memphis VAMC to any other third party. Contractor and their staff are not permitted to take any pictures, videos or drawings of any type. Taking of photographs/videos are prohibited while on VA premises. If an assignment requires photo images/videos, etc., the contractor must obtain a written permission from the COR. The contractor s staff will check in and out with the VA police to receive a VA work authorization badge. The badge must be worn facing forward and above the waistline. The contractors staff are required to wear the VA issued badge at all times while on VA premises. A list of areas where waste water is to be sampled will be provided to contractor. The contractor will not be assigned to work in any restricted areas. However, if the contractor needs access to restricted areas, a VA escort is warranted. SECURITY INCIDENT INVESTIGATION a. The term security incident means an event that has, or could have, resulted in unauthorized access to, loss or damage to VA assets, or sensitive information, or an action that breaches VA security procedures. The contractor/subcontractor shall immediately notify the COR and simultaneously, the designated ISO and Privacy Officer for the contract of any known or suspected security/privacy incidents, or any unauthorized disclosure of sensitive information, including that contained in system(s) to which the contractor/subcontractor has access. b. To the extent known by the contractor/subcontractor, the contractor/subcontractor s notice to VA shall identify the information involved, the circumstances surrounding the incident (including to whom, how, when, and where the VA information or assets were placed at risk or compromised), and any other information that the contractor/subcontractor considers relevant. c. With respect to unsecured protected health information, the business associate is deemed to have discovered a data breach when the business associate knew or should have known of a breach of such information. Upon discovery, the business associate must notify the covered entity of the breach. Notifications need to be made in accordance with the executed business associate agreement. d. In instances of theft or break-in or other criminal activity, the contractor/subcontractor must concurrently report the incident to the appropriate law enforcement entity (or entities) of jurisdiction, including the VA OIG and Security and Law Enforcement. The contractor, its employees, and its subcontractors and their employees shall cooperate with VA and any law enforcement authority responsible for the investigation and prosecution of any possible criminal law violation(s) associated with any incident. The contractor/subcontractor shall cooperate with VA in any civil litigation to recover VA information, obtain monetary or other compensation from a third party for damages arising from any incident, or obtain injunctive relief against any third party arising from, or related to, the incident. LIQUIDATED DAMAGES FOR DATA BREACH a. Consistent with the requirements of 38 U.S.C. §5725, a contract may require access to sensitive personal information. If so, the contractor is liable to VA for liquidated damages in the event of a data breach or privacy incident involving any SPI the contractor/subcontractor processes or maintains under this contract. b. The contractor/subcontractor shall provide notice to VA of a security incident as set forth in the Security Incident Investigation section above. Upon such notification, VA must secure from a non-Department entity or the VA Office of Inspector General an independent risk analysis of the data breach to determine the level of risk associated with the data breach for the potential misuse of any sensitive personal information involved in the data breach. The term 'data breach' means the loss, theft, or other unauthorized access, or any access other than that incidental to the scope of employment, to data containing sensitive personal information, in electronic or printed form, that results in the potential compromise of the confidentiality or integrity of the data. Contractor shall fully cooperate with the entity performing the risk analysis. Failure to cooperate may be deemed a material breach and grounds for contract termination. c. Each risk analysis shall address all relevant information concerning the data breach, including the following: (1) Nature of the event (loss, theft, unauthorized access); (2) Description of the event, including: (a) date of occurrence; (b) data elements involved, including any PII, such as full name, social security number, date of birth, home address, account number, disability code; (3) Number of individuals affected or potentially affected; (4) Names of individuals or groups affected or potentially affected; (5) Ease of logical data access to the lost, stolen or improperly accessed data in light of the degree of protection for the data, e.g., unencrypted, plain text; (6) Amount of time the data has been out of VA control; (7) The likelihood that the sensitive personal information will or has been compromised (made accessible to and usable by unauthorized persons); (8) Known misuses of data containing sensitive personal information, if any; (9) Assessment of the potential harm to the affected individuals; (10) Data breach analysis as outlined in 6500.2 Handbook, Management of Security and Privacy Incidents, as appropriate; and (11) Whether credit protection services may assist record subjects in avoiding or mitigating the results of identity theft based on the sensitive personal information that may have been compromised. d. Based on the determinations of the independent risk analysis, the contractor shall be responsible for paying to the VA liquidated damages in the amount of $37.50 per affected individual to cover the cost of providing credit protection services to affected individuals consisting of the following: (1) Notification; (2) One year of credit monitoring services consisting of automatic daily monitoring of at least 3 relevant credit bureau reports; (3) Data breach analysis; (4) Fraud resolution services, including writing dispute letters, initiating fraud alerts and credit freezes, to assist affected individuals to bring matters to resolution; (5) One year of identity theft insurance with $20,000.00 coverage at $0 deductible; and (6) Necessary legal expenses the subjects may incur to repair falsified or damaged credit records, histories, or financial affairs. TRAINING a. All contractor employees and subcontractor employees requiring access to VA information and VA information systems shall complete the following before being granted access to VA information and its systems: (1) Sign and acknowledge (either manually or electronically) understanding of and responsibilities for compliance with the Contractor Rules of Behavior, Appendix E relating to access to VA information and information systems; (2) Successfully complete the VA Information Security Awareness and Rules of Behavior training and annually complete required security training; (3) Successfully complete the appropriate VA privacy training and annually complete required privacy training; and (4) Successfully complete any additional cyber security or privacy training, as required for VA personnel with equivalent information system access [to be defined by the VA program official and provided to the contracting officer for inclusion in the solicitation document e.g., any role-based information security training required in accordance with NIST Special Publication 800-16, Information Technology Security Training Requirements.] b. The contractor shall provide to the contracting officer and/or the COR a copy of the training certificates and certification of signing the Contractor Rules of Behavior for each applicable employee within 1 week of the initiation of the contract and annually thereafter, as required. c. Failure to complete the mandatory annual training and sign the Rules of Behavior annually, within the timeframe required, is grounds for suspension or termination of all physical or electronic access privileges and removal from work on the contract until such time as the training and documents are complete. The contractors staff (those who will be on VA property working) will be required to complete the VA Privacy Training VA10176 TMS training prior to the work beginning. The contractor will either personally bring the training certificates or E-mail the certificates to the COR so they can be kept on file for one year. The TMS training located at http://vaww.infoshare.va.gov/sites/VALU/TMS/Document%20Library%20with%20Submission/Managed%20Self%20Enrollment%20(MSE)/Managed-Self-Enrollment-Direct-Links.pdf is only good for one year and the contractor is responsible to ensure their staff  or persons who will be working on VA property are current. Anticipated period of performance: date of award thru September 30, 2018 plus four (4) one-year options. Other important considerations: Cite any other information that is necessary for potential respondents to understand the nature of the potential requirement or proposed acquisition.   Capability statement /information sought: Response to this announcement shall not to exceed 10 pages and should include the following information: (1) A tailored capability statement indicating the firm s ability to provide a product and related services; (2) The respondents DUNS number, organization name, address, point of contact, and size and type of business (e.g., SDVOSB/VOSB, etc,) pursuant to the applicable NAICS code; (3) Associated contract vehicles (i.e. GSA/FSS; SEWP); (4) Information should be provided electronically in a Microsoft Word or Adobe PDF format. Provide any other information that may be helpful in developing or finalizing the acquisition requirements. Please e-mail your response with the above information to Diane Heath via e-mail: diane.heath@va.gov with the subject line "Sources Sought Notice 36C249-18-Q-9383 by 4:30 p.m. on March 7, 2018. Any question should be emailed to diane.heath@va.gov. Disclaimer and Important Notes. This notice does not obligate the Government to award a contract or otherwise pay for the information provided in response. The Government reserves the right to use information provided by respondents for any purpose deemed necessary and legally appropriate. Any organization responding to this notice should ensure that its response is complete and sufficiently detailed to allow the Government to determine the organization s qualifications to perform the work. Respondents are advised that the Government is under no obligation to acknowledge receipt of the information received or provide feedback to respondents with respect to any information submitted. After a review of the responses received, a pre-solicitation synopsis and solicitation may be published in Federal Business Opportunities. However, responses to this notice will not be considered adequate responses to a solicitation. Confidentiality. No proprietary, classified, confidential, or sensitive information should be included in your response. The Government reserves the right to use any non-proprietary technical information in any resultant solicitation(s).
 
Web Link
FBO.gov Permalink
(https://www.fbo.gov/spg/VA/NaVAMC/VAMCCO80220/36C24918Q9383/listing.html)
 
Document(s)
Attachment
 
File Name: 36C24918Q9383 36C24918Q9383.docx (https://www.vendorportal.ecms.va.gov/FBODocumentServer/DocumentServer.aspx?DocumentId=4119475&FileName=36C24918Q9383-000.docx)
Link: https://www.vendorportal.ecms.va.gov/FBODocumentServer/DocumentServer.aspx?DocumentId=4119475&FileName=36C24918Q9383-000.docx

 
Note: If links are broken, refer to Point of Contact above or contact the FBO Help Desk at 877-472-3779.
 
Place of Performance
Address: VA Medical Center Memphis;3050 Jefferson Ave;Memphis, TN
Zip Code: 38104
 
Record
SN04839267-W 20180303/180301231057-4924563d1d5baff89d6cafa2c57720fb (fbodaily.com)
 
Source
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.