SOURCES SOUGHT
D -- Technical Support to the DHS National Cyber Security Division (NCSD)
- Notice Date
- 2/5/2009
- Notice Type
- Sources Sought
- NAICS
- 541511
— Custom Computer Programming Services
- Contracting Office
- Office of the Chief Procurement Officer, Washington, District of Columbia, 20528, United States
- ZIP Code
- 20528
- Solicitation Number
- 050505
- Archive Date
- 2/27/2009
- Point of Contact
- Tiffany A. Kindred-Lopez, Phone: 202-447-5742
- E-Mail Address
-
tiffany.kindredlopez@hq.dhs.gov
- Small Business Set-Aside
- N/A
- Description
- The U.S. Department of Homeland Security is seeking a qualified source in anticipation of a future requirement. The contractor must have knowledge of Malware Attribute Enumeration Classification (MAEC), Common Weakness Enumeration (CWE), Common Attack Pattern Enumeration and Classification (CAPEC), Common Vulnerabilities and Exposures (CVE), Open Vulnerability and Assessment Language (OVAL) and provide ongoing task support of daily content and evolution of capabilities for MAEC, CWE, and CAPEC, CVE and OVAL. The contractor must be able to: •Support National Cyber Security Division (NCSD) elements with detailed analysis and characterization of malicious code to adequately identify or corroborate specific dangers and threats, focusing especially on activity relevant to critical infrastructure. • Support NCSD and US-CERT technical coordination with National Operations Center (NOC), the National Protection and Programs Directorate (NPPD), and various fusion cell(s), daily briefings, incident reviews and discussions, as needed. •Provide security architecture and analysis support, governance procedures and operating concepts to address the significant expansion of NCSD capabilities specified in the National Cyber Security Initiative (NCSI). •Provide end-to-end systems engineering and program definition and management support to the Network Security Deployment (NSD) part of NCSD. •Coordinate with the Institute of Electrical and Electronics Engineers (IEEE) Computer Society Software and Systems Engineering Standards Committee (S2ESC) to: determine changes in acquisition standards and related engineering standards desirable to reduce risks of software vulnerabilities throughout the software lifecycle in products and services; and create an appropriate relationship between standards for software assurance and standards for safety-critical systems. •Support the overall management of programs for Malware Attribute Enumeration Classification (MAEC), Common Weakness Enumeration (CWE), and Common Attack Pattern Enumeration and Classification (CAPEC) and provide ongoing task support of daily content and evolution of capabilities for MAEC, CWE, and CAPEC. •Manage the activities of the CVE Editorial Board by advancing the discussion and vetting of newly discovered and legacy vulnerabilities that are submitted to the Board. •Manage the OVAL program to develop a standard, machine-readable language that can be used to define a specific configuration state for a computer. •Provide Programmatic and Business Operations support in the areas of schedule management and risk management. Perform independent reviews across multiple program management and business artifacts to ensure consistency and quality and develop lifecycle cost estimates. As changes to the requirements and architecture are required, perform analysis to develop to new cost estimation. •Prepare and participate in acquisition activities. Develop acquisition plans and strategies that meet the overall acquisition objectives of NCSD and associated programs. Based on the approved acquisition plan, recommend to the Government, detailed solicitation statements of Work (SOW) and participate in an advisory capacity on source selection committees. Route cost estimates and acquisition packages through PRISM and support other acquisition related initiatives. •Provide support for budget planning and execution to include responses to GAO, congress and leadership. •Be prepared to agree to strong and comprehensive non disclosure and conflict of interest mitigation plan in performance of this work. Interested parties having the expertise and capabilities are invited to submit detailed information, no more than 10 pages, discussing their capabilities by 4:00 pm, EST on Thursday, February 12, 2009. No cost or pricing is required. This is not a solicitation. This Sources Sought Notice is issued solely for informational, market research, and planning purposes only. It does not constitute a Request for Proposal (RFP) or a promise to issue an RFP in the future. This Sources Sought Notice does not commit the Government to contract for any supply or service whatsoever. Further, the Department of Homeland Security is not at this time seeking proposals, and will not accept unsolicited proposals. Respondents are advised that the Government will not pay for any information or administrative cost incurred in response to this Sources Sought Notice. All costs associated with responding to this Sources Sought Notice will be solely at the responding party’s expense. At this time, proprietary information is not being requested, and respondents shall refrain from providing proprietary information in response to this Sources Sought Notice. Responses to the Sources Sought Notice will not be returned. Please be advised that all submissions become Government property and will not be returned.
- Web Link
-
FedBizOpps Complete View
(https://www.fbo.gov/?s=opportunity&mode=form&id=94bb2916e6f843740e54856981876dc8&tab=core&_cview=1)
- Place of Performance
- Address: 1110 North Glebe Road, Arlington, Virginia, United States
- Record
- SN01744795-W 20090207/090205215518-94bb2916e6f843740e54856981876dc8 (fbodaily.com)
- Source
-
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
| FSG Index | This Issue's Index | Today's FBO Daily Index Page |