SOLICITATION NOTICE
D -- software support
- Notice Date
- 8/31/2009
- Notice Type
- Combined Synopsis/Solicitation
- NAICS
- 541519
— Other Computer Related Services
- Contracting Office
- Department of Justice, Justice Management Division, Procurement Services Staff (PSS), 1331 Pennsylvania Avenue, N.W., National Place Building, 10th Floor, Washington, District of Columbia, 20530
- ZIP Code
- 20530
- Solicitation Number
- DJJ-APG-9-S-080
- Archive Date
- 9/23/2009
- Point of Contact
- Michele B Spencer, Phone: (202) 307-1953
- E-Mail Address
-
michele.b.spencer@usdoj.gov
(michele.b.spencer@usdoj.gov)
- Small Business Set-Aside
- N/A
- Description
- The Department of Justice, Justice Management Division, Office of Chief, Information Officer, Operations Services Staff, Customer Services, intends to procure Innovation Data Processing software maintenance support as follows: Washington, DC location (1) FDR; (1) FASTCPK; (1) ABR; (1) FDRINST/HDS-56MSUs; (1) FATS; (1) FATAR); (1) FDRPAS 1.45 TB; and (1) FDRMOVE 1.45 TB. The Washington Location address is 950 Pennsylvania Avenue, NW, Washington, DC 20530; and Dallas, TX location (1) FDR-191 MSUs; (1) FASTCPK-191 MSUs; (1) ABR-191 MSUs; (1) FDRINST/HDS-191 MSUs; (1) FATS; (1) FATAR; (1) FDRPAS 1.45 TB; FDRERASE/ZOS 1.45 TB and (1) FDRMOVE 1.45 TB. The Dallas Location address is P.O. Box 190109, Dallas, TX 75219-0109. The period of performance will October 1, 2009 through September 30, 2010. This requirement will be procured in accordance with FAR Subpart 12.6, Subpart 13.106 and Subpart 13.5 as supplemented with additional information included in this notice. FAR 52.212 3, Offeror Representations and Certifications Commercial Items, must be completed and included with any and all quotes submitted in response to this synopsis. FAR Clauses 52.212 4, Contract Terms and Conditions Commercial Items and 52.212 5, Contract Terms and Conditions Required to Implement Statutes or Executive Orders Commercial Items are hereby incorporated by reference. The following Department of Justice clauses are also applicable to this requirement: NOTICE OF CONTRACTOR PERSONNEL SECURITY CLEARANCE REQUIREMENTS - Where performance under this contract/task or delivery order/call requires contractor personnel to have access to Department of Justice (DOJ) information, systems or facilities, contractor personnel will be subject to the background clearance requirements of Homeland Security Presidential Directive (HSPD)-12, OMB Guidance Memorandum M-05-24, FIPS Publication 201 and DOJ policy implementing HSPD-12 requirements. Background clearance requirements are determined by the risk level of each position, type of access and length of access required. Further information on background security clearance requirements applicable to contractor personnel proposed for performance on this contract/order/call may be obtained from the Contracting Officer. All contractor personnel must meet the DOJ Residency Requirements. He/She must have lived in the United States three of the last five years immediately prior to start of performance on this contract/order/call, and/or worked for the United States overseas in a federal or military capacity, and/or be a dependent of a federal or military employee serving overseas. Specific limited waiver request requirements - contractor personnel performing duties for a cumulative total of 14 days or less where there is a critical need for their specialized and unique skills (as solely determined by the Government) may be proposed for a waiver of the Residency Requirement by the contractor. Contractor personnel who are non-US citizens proposed for such a waiver of the Residency Requirement must be from a country allied with the United States (Since the countries on the Allied Countries List are subject to change, the contractor may review the following website for current information: http://www.opm.gov/employ/html/Citizen.htm. For contracts/orders/calls where access to DOJ information systems is involved, non-US citizens are not permitted to have access to or assist in the development, operation, management or maintenance of any DOJ IT system, unless a waiver is granted by the head of the Component, with concurrence of the Department Security Officer (DSO) and DOJ Chief Information Officer (CIO). Any such waiver must be in writing and be obtained prior to allowing any contractor employee who is the subject of the waiver request to begin work under this contract/order/call. The above requirements apply to any and all contractor employees requiring access to DOJ information systems or facilities, including subcontractor personnel, if applicable. All referenced FAR clauses may be copied at http://www.acqnet.gov/far/index.html.; NON-U.S. CITIZENS PROHIBITED FROM ACCESS TO DOJ INFORMATION TECHNOLOGY (IT) SYSTEMS - The Department of Justice does not permit the use of Non-U.S. citizens in the performance of this contract or commitment for any position that involves access to or development of any DOJ IT system. By signing the contract or commitment document, the contractor agrees to this restriction. In those instances where other non-IT requirements contained in the contract or commitment can be met by using Non-U.S. citizens, those requirements shall be clearly describe.; SECURITY OF SYSTEMS AND DATA, INCLUDING PERSONALLY IDENTIFIABLE INFORMATION The following clause must be used in any contract where the contractor handles data that originated within the Department, data that the contractor manages or acquires for the Department, and/or data that is acquired in order to perform the contract and concerns Department programs or personnel. Security of Systems and Data, Including Personally Identifiable Data. a. Systems Security The work to be performed under this contract requires the handling of data that originated within the Department, data that the contractor manages or acquires for the Department, and/or data that is acquired in order to perform the contract and concerns Department programs or personnel. For all systems handling such data, the contractor shall comply with all security requirements applicable to Department of Justice systems, including but not limited to all Executive Branch system security requirements (e.g., requirements imposed by OMB and NIST), DOJ IT Security Standards, and DOJ Order 2640.2E. The contractor shall provide DOJ access to and information regarding the contractor's systems when requested by the Department in connection with its efforts to ensure compliance with all such security requirements, and shall otherwise cooperate with the Department in such efforts. DOJ access shall include independent validation testing of controls, system penetration testing by DOJ, FISMA data reviews, and access by the DOJ Office of the Inspector General for its reviews. The use of contractor-owned laptops or other media storage devices to process or store data covered by this clause is prohibited until the contractor provides a letter to the contracting officer (CO) certifying the following requirements: 1. Laptops must employ encryption using a NIST Federal Information Processing Standard (FIPS) 140-2 approved product; 2. The contractor must develop and implement a process to ensure that security and other applications software is kept up-to-date; 3. Mobile computing devices will utilize anti-viral software and a host-based firewall mechanism. 4. The contractor shall log all computer-readable data extracts from databases holding sensitive information and verify each extract including sensitive data has been erased within 90 days or its use is still required. All DOJ information is sensitive information unless designated as non-sensitive by the Department. 5. Contractor-owned removable media, such as removable hard drives, flash drives, CDs, and floppy disks, containing DOJ data, shall not be removed from DOJ facilities unless encrypted using a NIST FIPS 140-2 approved product; 6.When no longer needed, all removable media and laptop hard drives shall be processed (sanitized, degaussed, or destroyed) in accordance with security requirements applicable to DOJ; 7. Contracting firms shall keep an accurate inventory of devices used on DOJ contracts; 8. Rules of behavior must be signed by users. These rules shall address at a minimum: authorized and official use; prohibition against unauthorized users; and protection of sensitive data and personally identifiable information; 9.All DOJ data will be removed from contractor-owned laptops upon termination of contractor work. This removal must be accomplished in accordance with DOJ IT Security Standard requirements. Certification of data removal will be performed by the contractor's project manager and a letter confirming certification will be delivered to the CO within 15 days of termination of contractor work. b. Data Security - By acceptance of, or performance on, this contract, the contractor agrees that with respect to the data identified in paragraph a, in the event of any actual or suspected breach of such data (i.e., loss of control, compromise, unauthorized disclosure, access for an unauthorized purpose, or other unauthorized access, whether physical or electronic), the contractor will immediately (and in no event later than within one hour of discovery) report the breach to the DOJ CO and the contracting officer¿s technical representative (COTR). If the data breach occurs outside of regular business hours and/or neither the CO nor the COTR can be reached, the contractor shall call the DOJ Computer Emergency Readiness Team (DOJCERT) at 1-866-US4-CERT (1-866-874-2378) within one hour of discovery of the breach. The contractor shall also notify the CO as soon as possible during regular business hours. c. Personally Identifiable Information Notification Requirement - The contractor further certifies that it has a security policy in place that contains procedures to promptly notify any individual whose personally identifiable information (as defined by OMB) was, or is reasonably believed to have been, breached. Any notification shall be coordinated with the Department, and shall not proceed until the Department has made a determination that notification would not impede a law enforcement investigation or jeopardize national security. The method and content of any notification by the contractor shall be coordinated with, and be subject to the approval of, the Department. The contractor assumes full responsibility for taking corrective action consistent with the Department¿s Data Breach Notification Procedures, which may include offering credit monitoring when appropriate. d. Pass-through of Security Requirements to Subcontractors - The requirements set forth in Paragraphs a through c, above, apply to all subcontractors who perform work in connection with this contract. For each subcontractor, the contractor must certify that it has required the subcontractor to adhere to all such requirements. Any breach by a subcontractor of any of the provisions set forth in this clause will be attributed to the contractor. B. Information Resellers or Data Brokers - For contracts where the Department obtains PII from a contractor (such as an information reseller or data broker) but the contractor does not handle the data described in Section A of this guidance document, the following clause must be used: Information Resellers or Data Brokers - Under this contract, the Department obtains personally identifiable information about individuals from the contractor. The contractor hereby certifies that it has a security policy in place which contains procedures to promptly notify any individual whose personally identifiable information (as defined by OMB) was, or is reasonably believed to have been, lost or acquired by an unauthorized person while the data is under the control of the contractor. In any case in which the data that was lost or improperly acquired reflects or consists of data that originated with the Department, or reflects sensitive law enforcement or national security interest in the data, the contractor shall notify the Department contracting officer so that the Department may determine whether notification would impede a law enforcement investigation or jeopardize national security. In such cases, the contractor shall not notify the individuals until it receives further instruction from the Department. The software maintenance services to be procured under this synopsis must comply with the following Section 508 Accessibility Standards: 1194.21 Software Applications and Operating Systems; Information and Applications; 1194.31 Functional performance criteria; and 1194.41 Information, documentation, and support (see http://www.section508.gov). The NAICS for this requirement is 541519 and the small business standard is $25.0. Due to the proprietary nature of the software, Innovations Data Processing has been found to be the only known source to perform this requirement. Interested parties must submit a written proposal detailing product information that demonstrates ability to provide software support services. Quotes are to be sent to Michele B. Spencer to email address michele.b.spencer@usdoj.gov; or fax (202-307-1931). Quotations are due by September 8, 2009 Oral quotations will not be accepted. Telephone calls will not be accepted, as no solicitation document exist.*****
- Web Link
-
FBO.gov Permalink
(https://www.fbo.gov/spg/DOJ/JMD/PSS/DJJ-APG-9-S-080/listing.html)
- Record
- SN01934042-W 20090902/090901001301-96faaf24d921b056596439b669482ee6 (fbodaily.com)
- Source
-
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
| FSG Index | This Issue's Index | Today's FBO Daily Index Page |