Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
FBO DAILY ISSUE OF NOVEMBER 24, 2010 FBO #3287
SOLICITATION NOTICE

70 -- NIH Information Security Program Support - Package #1

Notice Date
11/22/2010
 
Notice Type
Combined Synopsis/Solicitation
 
NAICS
541519 — Other Computer Related Services
 
Contracting Office
Department of Health and Human Services, National Institutes of Health, National Library of Medicine, 6707 Democracy Blvd., Suite 105, Bethesda, Maryland, 20894, United States
 
ZIP Code
20894
 
Solicitation Number
NLM-11-018-RTR-KDM
 
Archive Date
1/6/2011
 
Point of Contact
Russell T. Reeves, Phone: 3014354381, Karen Miller, Phone: 301-496-6546
 
E-Mail Address
reevesru@mail.nih.gov, kr33@nih.gov
(reevesru@mail.nih.gov, kr33@nih.gov)
 
Small Business Set-Aside
Total Small Business
 
Description
see attached See attached See attached See attached See attached See attached See attached FedBizOpps Announcement FAR Part 12.6 National Institutes of Health Information Security Program Support (11-17-10) General Information Document Type: Solicitation Solicitation Number: NLM-11-018-RTR/KDM Posted Date: 11-22-10 Original Response Date: 12-22-10 Classification Code: D - Information Technology Services, Including Telecommunication Services NAICS Code: 541519 - Other Computer Related Services Contracting Office Address Department of Health and Human Services, National Institutes of Health, National Library of Medicine, Two Democracy, Room 105, 6707 Democracy Boulevard, MSC 5488, Bethesda, Maryland 20892-5488 Description THIS IS A 100% SMALL BUSINESS SET-ASIDE UNDER NAICS CODE 541519: The National Institutes of Health (NIH), Office of the Chief Information Officer (OCIO), is seeking a qualified Small Business to provide enterprise level information ation Security Program. The requirement described herein will be awarded under the procedures prescribed at Federal Acquisition Regulation (FAR) Part 12.6, Streamlined Procedures for Evaluation and Solicitation of Commercial Items, as supplemented with additional information included in this announcement. This requirement is being processed by the Office of Acquisition, National Library of Medicine (NLM), NIH, for OCIO. Requirements/Tasks Areas: The requirements and tasks to be performed include, but are not limited to, providing information security support and management services at an enterprise level to the NIH in the following task areas: 1) expert-level security forensics analysis, security risk assessment, system auditing and security planning; 2) incident identification, monitoring, management, response, and reporting capability; 3) expert-level support for Oracle and MS SQL Server database design and administration; 4) support and guidance through the information security risk management process including risk assessment, system certification & accreditation, and POA&M tracking; 5) support for vulnerability scanning, real-time situational awareness and wireless security; 6) technical writing and strategic and technical planning; 7) support to the agency CIO for the budgeting and financial management process for agency information systems, projects, and organizations; 8) support to the agency CIO by performing IT/information management and program analysis tasks in areas including, but not limited to, IT governance, legislative, regulatory and policy analysis and program planning; and 9) administrative support to agency executives including the agency CIO, Deputy CIO, and Chief Information Security Officer. Anticipated Period of Performance: The anticipated period of performance will be for a Base Period of one year from Date of Award with four (4) successive 12-month Option Periods. Mandatory Qualification Criteria: Supporting documentation demonstrating that an offeror meets all of the following areas of expertise must be included with the initial proposal submission. 1. Expert-level security forensics analysis, security risk assessment, system auditing and security planning: Offeror must have experience within the past three years in performing computer forensic and system auditing activities on both Windows and non-Windows-based desktop and server computing environments. 2. Incident identification, monitoring, management, response, and reporting capability: Offeror must have experience within the past three years in incident response related activities, including incident identification, management, response, and reporting. 3. Expert-level support for Oracle and MS SQL Server database design and administration. Offeror must have Functional Subject Matter Expert (SME) Oracle experience in providing support for Oracle and MS SQL Server database design and administration within the past three years. A description of SME (Oracle) can be found in Attachment A, Labor Categories. 4. Expert-level support to an agency CIO for the budgeting and financial management process for agency information systems, projects, and organizations: Offeror must have experience within the past three years in providing support to the Federal information technology (IT) budget planning process; developing IT enterprise investment plans, IT policy and guidance interpretation; and working on or with IT budget workgroups and/or IT management groups. 5. Expert-level support to an agency CIO by performing IT/information management and program analysis tasks in areas including, but not limited to, IT governance, legislative, regulatory and policy analysis and program planning: Offeror must have experience within the past three years in performing program analysis tasks related to Federal legislation, regulation, and policy, developing functional requirements and resource allocation. 6. Ability and experience in providing information security service to a large Federal organization similar in size and complexity of NIH, at multiple sites across a metropolitan area, in multiple states, and possibly outside of the continental United States: Offeror must have experience within the past three years in performing information security management-related tasks at the Federal Chief Information Security Officer (CISO) or Senior Information Systems Security Officer (SISSO) level in a large Federal organization similar in size and complexity of NIH, at multiple sites across a metropolitan area, in multiple states, and possibly outside of the continental United States. Experience must include computer forensics, incident response, security planning, security monitoring, security policy generation, security presentations, and collaboration with network engineers and network security staff. 7. Ability to fill each of the following four mission critical positions with individuals who meet or exceed the following criteria: Offeror must submit a resume for each individual proposed for the four mission critical positions. In addition, Offeror must submit a letter of commitment for each proposed individual who is not a current employee of the Offeror. 1. Program Manager/Project Manager: Qualifications: A bachelor's degree in Computer Science, Information Systems, or Engineering. This position requires a minimum of 15 years experience, of which at least 10 years must be specialized. Specialized experience must be related to IT security. General experience should be in IT. With a Masters degree in the fields described above: 12 years experience, of which at least 10 years must be specialized. With a Ph.D. in the fields described above: 10 years experience, of which 10 years must be specialized. The individual must also have documented experience managing a project staff of more than twelve persons, the majority of whom have a technical background and perform information security-related tasks. 2. Subject Matter Expert (SME): Expert in computer forensic analysis, security risk assessment, security auditing and security planning. Qualifications: A bachelor's degree in Computer Science, Information Systems, or Engineering. This position requires a minimum of 15 years experience, of which at least 10 years must be specialized. Specialized experience must be related to IT security. General experience should be in IT. With a Masters degree in the fields described above: 12 years experience, of which at least 10 years must be specialized. With a Ph.D.in the fields described above, 10 years experience, of which 10 years must be specialized. 3. Subject Matter Expert (SME): Expert-level in Oracle and MS SQL Server database design and administration. Qualifications: Specialized experience would include advanced Database design and analysis, administration, application programming and would include database design and administration with Oracle and other products on Solaris, Linux, and Windows. General experience should be in IT. With additional education beyond High School in Computer Science, Information Systems, or Engineering, a minimum of 20 years experience, of which 15 must be specialized. With a Bachelor's degree in Computer Science, Information Systems, or Engineering, this position requires a minimum of 15 years experience, of which at least 10 years must be specialized. With a Master's degree Computer Science, Information Systems, or Engineering, a minimum of 12 years general experience, of which at least 10 must be specialized. With a Ph.D. degree in Computer Science, Information Systems, or Engineering, a minimum of 10 years experience, of which 10 years must be specialized. 4. Subject Matter Expert (SME): Knowledge of and experience in providing senior-level management support for IT/information management and program analysis tasks in areas including but not limited to IT governance, legislative, regulatory and policy analysis and program planning (see Mandatory Qualification Criterion No. 5 above). Qualifications: A bachelor's degree in management, communications, language, or related. This position requires a minimum of 15 years experience, of which at least 5 years must he specialized. Specialized experience must be related to IT policy, budget, and management. General experience should be in general Federal policy and administrative management. Responses must be received by the NLM Point of Contact within thirty (30) calendar days from the publication of this notice. NLM Synopsis No. 11-018-RTR/KDM shall be noted on all correspondence to this announcement. RESPONSES SHALL BE SENT VIA EMAIL TO: Russell Reeves at reevesru@mail.nih.gov. Inquiries regarding this notice may be made to Russell Reeves (301) 435-4381; Fax 301 402-0642. security program support for the NIH Inform Point of Contact Russell Reeves, Contracting Specialist, Phone 301 435-4381, Fax 301 402-0642, Email reevesru@mail.nih.com Place of Performance Address: National Library of Medicine, Two Democracy, Room 105, 6707 Democracy Boulevard, MSC 5488, Bethesda, Maryland Postal Code: 20892-5488
 
Web Link
FBO.gov Permalink
(https://www.fbo.gov/spg/HHS/NIH/OAM/NLM-11-018-RTR-KDM/listing.html)
 
Place of Performance
Address: Bethesda, Maryland, United States
 
Record
SN02331875-W 20101124/101122234121-61be7bf491c48e203c9f55d8f94bfe52 (fbodaily.com)
 
Source
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.