Notice ID: SP-OCIO-716096
The mission of the Office of Personnel Management (OPM) is to be a champion of talent for the Federal government, and we endeavor to position the Federal government as a model employer that empowers our workforce to solve our nation’s toughest challenges. The mission of the Office of the Chief Information Officer (OCIO), Cybersecurity Division’s (CSD) mission is to achieve full visibility of OPM’s systems and processes to ensure compliance and risk reduction activities to meet OPM’s risk tolerance. CSD oversees the implementation of The Federal Information Security Management Act (FISMA), National Institute of Standards and Technology (NIST) Risk Management Framework, Cybersecurity and Infrastructure Security Agency’s (CISA) Binding Operational and Emergency Directives, and Office of Management and Budget (OMB) Directives and memos. Operations support provides critical day-to-day operations and maintenance of services used by our customers routinely, from cloud Microsoft 365 to application support, to on-premises server maintenance. The organization is geographically dispersed across primary locations in Washington DC, Boyers, Pennsylvania, and Macon, Georgia.
This requirement is for the acquisition of a Procurement Security Platform tool for cyber supply chain, that will allow OPM/OCIO/CSD to continue to protect, monitor and safeguard OPM’s data, mission, and people.
The purpose of this requirement is to obtain a cyber supply chain Software As A Service (SAAS) tool with service applications that perform real time sharing of system vulnerabilities in order to improve the overall security posture of the Agency. The software and support services will provide for continuous vulnerability discovery and assessment of OPM systems and applications for both existing and new vulnerabilities. It will be in support of Enterprise Network, Security Operations Center (SOC) and Enterprise Monitoring Solutions.
OPM OCIO/CSD’s overall goal is to provide world-class vulnerability protection that guard OPM’s mission and data by providing real time management of operational security controls that protect all OPM users, applications, and mission critical data from potential threats with real time incident response processes which challenge constantly evolving cybersecurity threats.
Scope
This acquisition will assist the Cybersecurity Division to develop and deploy world-class vulnerability protection, that guards the mission and data to manage and operate the cyber supply chain. The contractor will provide the tool to the government in a method that can be easily deployed and/or implemented by the government.
The Cybersecurity Division is the customer and/or end user of the product. OCIO will be using this tool within the OPM environment to safeguard our networks. The customer is currently using federally provided and private sector vulnerability announcements, given via opensource and through agency channels, which is currently not real time, which can result in delayed responses to incidents. This acquisition will increase the timeliness of patching vulnerabilities, through real time notifications and will result in a lower chance of exfiltration of data from OPM’s environment. Under Strategic Goal 2.5, OPM seeks to modernize IT by establishing an enterprise-wide approach, eliminating fragmentation, and aligning IT investments with core mission requirements.
OPM requires a FEDRAMP Certified, Software As A Service (SAAS) research and management platform that with reasonable confidence validates vendors’ supply chains utilized by OPM are not developed or have parts developed or manufactured in adversarial nations and or in non-compliant countries. The product will provide world-class vulnerability protection for operational security controls with continuous real time updates.
The period of performance of this contract is for 12-months from date of award.
Want to get involved with OS AI? - A small number of Sponsorship Opportunities are now available here. Starting at $500.