DISA posts cyber vulnerability RFI

On May 20, the Defense Information Systems Agency (DISA) posted a request for information (RFI) for cyber vulnerability services.

This is a SOURCES SOUGHT ANNOUNCEMENT to determine the availability and technical capability of small businesses (include the following subsets, Small Disadvantaged Businesses, Certified 8(a), Service-Disabled Veteran-Owned Small Businesses, Historically Underutilized Business Zone Small Businesses (HUBZone), and Woman Owned Small Businesses (WOSB)) to provide the required products and/or services.

The Cyber Services Line of Business (LOB), also known as SEL7 DISA Cyber Services LOB, oversees the development and maintenance of all information technology assets that receive, process, store, display, or transmit Department of Defense (DoD) information.  This information technology will be acquired, configured, operated, maintained, and disposed of consistent with applicable DoD cybersecurity policies, standards, and architectures.  These programs include Program Services, Network Program Services, Mission Partner Engagement, Internal Program Services, Defense Information Systems Network programs, and Communication Security.

DISA Cyber Services LOB SEL7 is seeking information for potential sources to support Cyber Vulnerability Management Services, which includes: training; audits; review, creation, and execution of policies, orders, and guidance; vulnerability scanning, detection, and analysis; compliance monitoring, reporting, and mitigation; and Cyber Systems management and automation configuration, change, and account management for DoD managed information systems.

Vendors who wish to respond to this should send responses via email NLT May 26, 2021 4:00 PM Central Time (CT).  Interested businesses should submit a brief capabilities statement package addressing the specific questions (no more than five pages) and demonstrating ability to perform the services listed under Required Capabilities.

Full information is available here.

Source: SAM