The United States (U.S.) Army Program Executive Office for Electronic Information Systems (PEO-EIS) PM Defensive Cyber Operations (DCO) is requesting information about technical expertise to aid with the Army’s Special Security Office (SSO) with an existing automated management toolset, the technical expertise required includes continued development and testing as well as implementation, deployment, and maintenance support.
‐ The ability to conduct continuing review of SCI security programs including oversight and evaluations
‐ Management/display of Physical Security requirements for Secure Compartmentalized Information Facilities (SCIF)
‐ Management/display of Personnel Security requirements for Secure Compartmentalized Information Facilities (SCIF)
‐ Management/display of Information Security requirements for Secure Compartmentalized Information Facilities (SCIF)
‐ Management/display of Oversite Metrics requirements for Secure Compartmentalized Information Facilities (SCIF) through user interfaces and dashboards
‐ Integration of related external data sources
‐ The system must enable the management of training programs for Sensitive Compartmentalized Information (SCI) security officials.
‐ The capability to store, share, audit and query all associated records and reports.
‐ Will support up to 5,000 SSO users
‐ SCI cloud capability (development, staging, and production)
‐ Risk Management Framework for SCI cloud environment
Responses should include answers to the following questions:
1. Does your company have a Defense Security Services (DSS) Facility Security Clearance (FCL)? If so, what level?
2. Does your company have its own accredited SCIF? If not, does your company currently have an agreement to allow you access to an accredited SCIF? Is that at a government or contractor facility, is there an existing MOA/MOU in place, etc.?
3. Does your company have its own JWICS terminal within your own accredited SCIF; if not, (2) does your company have access to a JWICS terminal within someone else's accredited SCIF? If so, how many can this accommodate, is it a government site, is there an existing MOA/MOU in place, etc.
4. What is your company's experience with the DoD RMF and Assessment & Authorization processes? Does your company have experienced SMEs capable of performing the functions associated with the aforementioned system, IT Services, and security requirements?
5. What is your defined software process? Include details on your process to develop, compile, test, manage versions and deploy software.
The Capability Package must be clear, concise, and complete and shall include {in addition to the technical aspects above), at a minimum:
1. Identify the organization's name, address, telephone number, and point of contact (also with title, phone, fax, and e-mail) on packaging and title pages. The organization name should appear clearly on every page of your submittal and proprietary information must be clearly marked.
2. Organization size/ownership of business {i.e. large, small, small disadvantaged, 8{a) Disable-Veteran, Veteran, Woman-owned Business, Hub Zone)
3. Number of years in business
4. Cage Code
5. DUNS# & Tax ID#
6. Company Profile {Number of employees, annual sales history, locations and if CCR registered)
7. Identify if you are a GSA Schedule Holder
8. Affiliate Contractor {if potential sub) or subcontractors {if potential prime).
9. Contract references in the past five (5) years relevant to the requirement to include: contract number, agency supported, whether or not you were the prime or a subcontractor, period of performance, original contract value, final or current contract value, technical monitor and phone/fax number, POC with current phone/fax number, and a brief description of the effort.
Please include any assumptions made, recommendations regarding price range breaks, or any additional information you feel might be useful to the U.S. Government if it chooses to go forward with an RFP.
Responders are advised that the Government may utilize support contractors/non-Government personnel to assist in collecting and reviewing market research information. Responders shall either
1) submit copies of executed non-disclosure agreements (NDAs) with the contractors
supporting PEO EIS DCO in technical evaluations or
2) a statement that the responder will not allow the Government to release its proprietary data to the Government support contractors.
In the absence of either of the foregoing, the Government will assume that the responder does NOT agree to the release of its submission to Government support contractors.
All interested parties shall provide all information requested in this notification by 3:00 PM Eastern Time on 10 March 2025 by CHESS or electronic mail at no cost to the U.S.
Government Submissions shall be directed to ACC-APG, ATTN: Esha Guhaniyogi, email esha.guhaniyogi.civ@army.mil or Lynette Perez, email lynette.n.perez.civ@army.mil. If a formal solicitation is generated later, a solicitation notice will be published. No award will be made as a result of this market research.
THIS RFI IS FOR PLANNING PURPOSES ONLY AND IS NOT TO BE CONSTRUED AS A COMMITMENT BY THE GOVERNMENT TO PROCURE ANY ITEMS/SERVICES, NOR FOR THE GOVERNMENT TO PAY FOR THE INFORMATION RECEIVED. NO ENTITLEMENT TO PAYMENT OF DIRECT OR INDIRECT COSTS OR CHARGES BY THE GOVERNMENT WILL ARISE AS A RESULT OF SUBMISSION OF RESPONSES TO THIS RFI AND GOVERNMENT USE OF SUCH INFORMATION. NO SOLICITATION DOCUMENT EXISTS.
