Air Force posts cybersecurity risk management RFI
On October 18, the U.S. Air force posted a request for information for Cybersecurity Risk Management Services (Solicitation Number: FA3002-16-RFI-Cybersecurity_Risk_Management_Services). Responses are due by 10:00am CST on November 18.
AFICA 338 SCONS/PKD is conducting market research to gather information on the contractor’s capability to effectively provide Risk Management Framework (RMF)/Cybersecurity support to complete tasks such as but not limited to, Assessment and Authorization (A&A) and Information System Security Manager (ISSM), and Authorization Officials (AOs) to complete tasks such as Security Control Validation, Enterprise Mission Assurance Support Service (eMASS) account management and Federal Information Systems Management Act (FISMA) compliance.
Two teams of Cybersecurity professionals are required under this requirement. The first team will be responsible for: managing and updating all process related documentation; DIACAP Certification & Accreditation (C&A); managing current as well as developing new RMF A&A packages; and completing required documentation to support Federal Information Systems Management Act (FISMA) reporting. The second team will be responsible for: operating as the AO’s support staff; completing the Security Validation role in the Control Approval Chain; performing eMASS administration; maintenance and monitoring of AETC FISMA metrics; providing RMF and DIACAP Subject Matter Expert (SME) support; and performing as a technical interface and liaison in the DIACAP/RMF process.
Full information is available here.