Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
FBO DAILY ISSUE OF FEBRUARY 25, 2011 FBO #3380
SOURCES SOUGHT

70 -- Situational Awareness (SA) and Incident Response (SAIR),

Notice Date
2/23/2011
 
Notice Type
Sources Sought
 
NAICS
443120 — Computer and Software Stores
 
Contracting Office
Department of Commerce, Patent and Trademark Office (PTO), Office of Procurement, P. O. Box 1450 - Mail Stop 6, 600 Dulany Street, MDE, 7th Floor, Alexandria, Virginia, 22313-1450
 
ZIP Code
22313-1450
 
Solicitation Number
DOC-SS-PAPT1100005
 
Archive Date
4/2/2011
 
Point of Contact
Teresa A. Kelley, Phone: 571-272-3262
 
E-Mail Address
teresa.kelley@uspto.gov
(teresa.kelley@uspto.gov)
 
Small Business Set-Aside
N/A
 
Description
Request for Information - SS-PAPT1100005 Situational Awareness (SA) and Incident Response (SAIR), Chief Information Office Command Center The United States Patent and Trademark Office (USPTO) has developed a CIO Command Center, referred to as the C3, to manage Situational Awareness (SA) and Incident Response (SAIR) of the network enterprise. The USPTO is interested in a Request for Information (RFI) on a suite of tools and techniques that could help the agency achieve SAIR with minimal impact on the current infrastructure (PTO Net III, Cisco implementation, ULP, etc.) and will not have adverse effects on current projects underway (BMC Remedy 7.6). The chief duty of the C3 is to conduct event monitoring of systems and applications on a daily basis, utilizing several diverse legacy tool suites. The event management and incident response is governed by the government staff to exchange information between all groups within the Office of the CIO (OCIO) based on Information Technology (IT) Infrastructure Library (ITIL) version 3 practices in order to comply with NIST guidance on IT operations for a government agency. The business requirements for Situational Awareness as determined by the CIO are: •· Know the availability of Enterprise IT platforms, data, and communications assets in near real time, as well as environmental conditions of key locations (power, humidity, temperature, etc.) •· Make the C3 the nerve center for providing this information about the enterprise and monitoring events related to IT assets •· Upgrade the current tools and operations to best meet this need The feasibility of existing tools and methodologies to meet the above needs is currently in flux but it is clear that reducing the number of tools will reduce response time during monitoring and improve the filtering of events, see Table 1. Table 1, Proposed solution must register events from the following: Tools Tools Tools HP OpenView Operations NSM Radius Logins VirtalSuite Flat File of IT Assets ITFMS Q1 Radar Web Service Connections Alteris/ PXE Syslog Server Database Connections Active Directory SMS Blue Coat National Vulnerability DB Cisco IDS/IPS Real Secure Verisign McAfee Endpoint Security Symantec Anti-virus Groundworks MS Event Manager DISA Gold Disk SNMP Traps NetIQ Retina Cisco NAC BMC Patrol Rational Atrium Tenable Nessus AppDetective DBProtect New system tools must meet the requirements for SAIR, as defined under the General Services Administration (GSA) Alternate Contract Source (ACS) for Situational Awareness Incident Response (SAIR) (Cyber Security) (GSA)252-925-09-ACS, comply with Federal Information Processing Standard (FIPS) 140-2, NIST Security Content Automation Protocol (SCAP), and Common Criteria EAL-3. In conducting market research of commercially available products that facilitate SAIR, the USPTO is interested in technologies, or prototype solutions, that enhance C3 staff performance, increase interdepartmental adoption of new system monitoring techniques (as opposed to departments developing their own), and provide ease of use in viewing the status of systems by not just the C3 staff, but a wide host of OCIO staff members in different departments where authorized. To support such an effort, The USPTO is seeking input or comments from interested parties who can provide vendor site presentations of their technologies, and/or provide no cost trial demonstrations of their technology e.g. software & hardware, virtual hard drives, and/or, hosted solutions with multiple user accounts to perform SAIR test scenarios. This research will help determine if a tool's usefulness, or even a hosted solution, has features that facilitate event management and incident response based on ITIL v3, and ease of use. The USPTO is also interested in vendor site presentations highlighting the components of suitable systems to a group of key USPTO government personnel. Web presentations are also acceptable in cases where a site visit would cause undue hardship. This group intends to learn as much as possible about the solutions presented to them that satisfy the business collaboration scenarios fostered by the C3. The USPTO is considering using products that can integrate with current event notification systems for the USPTO based on test scenarios of items in table 1 and satisfy requirements for SAIR. Responses shall be conducted at no cost to the Government. This is not a solicitation for proposals, and accordingly, no contract will be awarded from this announcement. No reimbursement will be made for any costs associated with providing information in response to this announcement. Telephone calls requesting a solicitation will not be accepted or acknowledged. Responses to this RFI are voluntary and their source shall be treated as confidential. Responses are solely for Market Research and use in developing project documentation and acquisition strategies for the USPTO. Instructions: Interested businesses which can provide the above capabilities should respond no later than: 5:00 p.m.EST., March 18, 2011. Additional information to be included with your response is listed below: •Ø Type of Business •Ø Contracts of similar nature and scope •Ø Contracts available for government purchase •Ø Commercial Pricing •Ø Availability for Capabilities Presentation (on-site or Web-based) Responses received in response to this announcement that are marked "Proprietary" will be handled accordingly. Please mail any responses to: The U.S. Patent and Trademark Office, Office of Procurement, Attn: Teresa Kelley, Contracting Office, MDE Room 7B05, P.O. Box 1450, Alexandria, VA 22313-1450, or email: Teresa.Kelley@uspto.gov. Please include RFI number on any correspondence.
 
Web Link
FBO.gov Permalink
(https://www.fbo.gov/spg/DOC/PTO/OPDC20220/DOC-SS-PAPT1100005/listing.html)
 
Record
SN02385714-W 20110225/110223234412-392aa4ad2de20820b23b78c5438f9488 (fbodaily.com)
 
Source
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.