US Army Corps of Engineers (USACE) RFP: Civil Works Business Intelligence Risk Management Framework Certification and Continuous Monitoring

February 10, 2025

Notice ID: W912HQ25R0004

Related Notice: W912HQ25S0008

This document describes the Civil Works Business Intelligence (CWBI) program tasks and requirements supporting Risk Management Framework (RMF) certification, cybersecurity continuous monitoring and reporting, and Automated Information System (AIS) change management support. CWBI’s mission is to integrate Civil Works mission data in a Cloud-smart environment that standardizes data organization and management, ensures cybersecurity, delivers innovative technology solutions, rationalizes modules, and enhances decision-making.

The contractor will work closely with the CWBI PMO, USACE CIO/G-6, and others to develop and monitor the necessary documentation of all applications within CWBI. The contractor will also provide technical information for any necessary meetings with USACE CIO/G-6 and/or Army personnel as CWBI continuously performs RMF steps.

There will be several specific deliverables within this contract associated with anticipated documentation and reports connected with CWBI and its components. There are approximately 140 components (including applications and databases) currently identified as part of CWBI. The contractor will review existing RMF documentation and edit/develop as necessary in partnership with module owners. The assumption in this contract request would be that the documentation for these 140 modules will continue to be maintained and enhanced for future Security Control Assessor – Validator (SCA-V) and/or Continuous Monitoring (ConMon) audits conducted on the CWBI program.

As part of CWBI’s requirement to maintain an ATO, the contractor will assist the CWBI PMO with the implementation of a continuous monitoring strategy, including scanning applications for vulnerabilities, providing guidance on vulnerability remediation, and hardening cloud infrastructure and policies to ensure cybersecurity compliance. Furthermore, the contractor will be an integral part of CWBI’s change management process, serving as a reviewer and validator of application change requests to ensure compliance with DoD RMF and cybersecurity requirements.

USACE intends to award a contract for this requirement as a competitively awarded 8(a) set-aside. The contract contains a period of performance consisting of one base year plus two one-year option periods. The contract is anticipated to be predominantly firm fixed price with cost reimbursable line items for materials and travel.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

LEAVE A REPLY Cancel reply

User Agreement