RFQ ID: RFQ1744115
RFQ Title: Continuous Diagnostic Mitigation Sources Sought
RFQ Issue Date: 2025-02-13
RFQ Close Date: 2025-02-20
Under the oversight of DHS and the Department of Treasury, the Internal Revenue Service (IRS) implemented the CDM Program to help the agency understand the weaknesses in the current environment so they can build upon and strengthen the IRS security posture.
The scope of this Performance Work Statement (PWS) describes the professional services the contractor shall provide to the IRS in support of the CI CDM Program implementation efforts to fortify the agency’s existing IT security posture and to create a dashboard view of tool data for analysis and responsive action by operational teams. Additionally, the contractor shall provide direct Operational and Maintenance (O&M) support of existing CDM tools within IRS CI’s accreditation boundary. The contractor shall provide expertise and services to support CDM in every phase.
The CI CDM Program being executed has the following goals for the awarded contractor with respect to the work that needs to be conducted in support of the CI and the IRS:
- The contractor shall provide expertise and services in analysis and assist in the revision of baselines and/or the reengineering of organizational processes and strategies.
- The contractor shall provide expertise and services to lead the execution of CDM processes related to integration of new tools into the CI environment, maintenance of current tools, and tool migration and documentation updates for both legacy and new tools.
- The contractor shall provide expertise and services in support of all CI CDM related technical and administrative functions.
- The contractor shall provide expertise and services related to the configuration of tools, management and storage of data, transfer of data between CI systems for the CDM dashboard, and assistance in analytical reporting and in the analysis of outputs.
- The contractor shall provide security expertise and services in leveraging CI CDM to help establish security Tactics, Techniques and Procedures (TTP) associated with supporting security operations.
- The contractor shall develop strategies, propose recommendations and execute remediation activities for weaknesses and gaps in addition to assisting in the closure of risk identification and audit findings by agencies including but not limited to, CI continuous monitoring tools, Treasury Inspector General for Tax Administration (TIGTA), Government Accountability Office (GAO), and internal controls assessment findings …
Provide Technical Integration for CDM Tool Support and Risk Mitigation Strategies:
- Provide general expertise on the CDM phase one toolsets (ForeScout, Big Fix, Carbon Black and Splunk).
- Execute IRS CI processes for integrating and maintaining CDM tools in the IRS CI and/or CDM environment.
- Create change requests and any other required documentation to help properly and securely establish the CI CDM environments and install, operate, and maintain all the required tools …
The period of performance is a base year and two option periods.
Not Yet a Premium Partner/Sponsor? Learn more about the OS AI Premium Corporate and Individual Plans here. Plans start at $295 annually.