Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
SAMDAILY.US - ISSUE OF AUGUST 26, 2021 SAM #7208
SOLICITATION NOTICE

70 -- Mobile Iron Software Subscription

Notice Date
8/24/2021 6:10:00 AM
 
Notice Type
Solicitation
 
NAICS
511210 — Software Publishers
 
Contracting Office
DOD EDUCATION ACTIVITY ALEXANDRIA VA 22350-1400 USA
 
ZIP Code
22350-1400
 
Solicitation Number
MOBILE_IRON_SOFTWARE_SUBSCRIPTION
 
Response Due
8/31/2021 9:00:00 AM
 
Archive Date
09/15/2021
 
Point of Contact
Annette Adams
 
E-Mail Address
Annette.Adams@dodea.edu
(Annette.Adams@dodea.edu)
 
Small Business Set-Aside
SBA Total Small Business Set-Aside (FAR 19.5)
 
Description
The Department of Defense Education Activity (DODEA) requires support of Mobile Iron software subscription licenses to securely manage mobile devices and application for 1,500 devices at 180 locations globally, currently on the DODEA network. The support and operations of this specialized software and technical interfacing is not available with any other manufacturer's technology. Attempts to use other sources of equipment or seemingly similar equipment and/or components would seriously and negatively affect DoDEA enterprise operations. The required specifications are as follows: Comprehensive solution across mobile application management, content management, and device management. Mobile Device Management - Securely manage mobile devices across mobile operating systems and provide secure corporate email, automatic device configuration, certificate-based security, and selective wiping of enterprise data from both corporate-owned as well as user-owned devices. Mobile Application Management - Supports management of the entire application lifecycle, from making the applications available in the enterprise app storefront, securing applications on the device, enforcing user authentication, isolating them from personal apps, and retiring them as necessary. Mobile Content Management - Provides mobile access to enterprise documents residing in SharePoint, file shares and other content management systems so users can access them securely from any device; and secures email attachments so that they are encrypted and can only be viewed with the authorized enterprise application. Additionally, end users can securely browse corporate intranet content without the need for a device-wide VPN. Supports on-premises physical appliance, on-premises virtual appliance, or cloud service. Integrates with backend enterprise IT platforms such as Active Directory and can be deployed on premise or in the cloud. Client software installs on mobile devices to enforce configuration and security policies set by the IT department. Client-side products installed on mobile devices enable user productivity by allowing access to resources, such as mobile applications and content. Supports both containerized and native experience (i.e., the design choices, user interaction paradigms, and feature sets chosen by operating system developers to promote and enhance their respective platforms). Enterprise app storefront that lets the user download both in-house developed and third-party business apps that have been approved by IT. The app storefront experience can also be customized by IT administrators to define which applications are assigned to a given user. Includes support for Application Distribution Library, Application Security and Access Control, and Application Inventory. Provides an intuitive way to access, annotate, share, and view documents across a variety of email and on-premises and cloud content management systems, such as SharePoint, Dropbox, OneDrive Pro, Office 365 and Box. It also provides DLP for email attachments by decrypting documents delivered through the gateway. Secure browser that lets users access web content within the corporate intranet without requiring the user to go through complex procedures such as starting a device-wide VPN session. Monitoring capabilities that enable the IT department to set data limits and then notify end users, via real time alerts, so that they do not exceed their data plan limits, especially during roaming. Enables iOS 7 managed applications to access protected corporate data and content behind a firewall through a secure per-app VPN connection without requiring a device-wide traditional VPN solution. Continuously monitor device security before access is granted to protected enterprise resources. Enables customers to derive additional value from apps created by application vendors or internally, using our SDKs or our AppConnect application wrappers to leverage our application security services. Containerizes apps to protect data-at-rest without touching personal data. Once integrated, these applications become part of the secure container on the device. Security and Management engine that enables IT to set policies for mobile devices, applications and content. Blocks access to corporate resources if a device falls out of compliance or is not authorized, including jailbreak and root detection. Supports certificate based SSO authentication, which can eliminate the need for users to enter their username and password when accessing email, intranet sites, and corporate data behind the firewall. Provides on-demand app-specific VPNs, greatly improving user experience by eliminating the need for manually enabling device-wide VPNs. Encryption and key management - Encrypts work documents when they are stored in the personal cloud, allowing the enterprise to set policies that prevent unauthorized use. With the Key Manager capabilities, enterprises have wide array of options in the way they manage the keys for encryption. Customers can choose between vendor managed master encryption keys or managing the master encryption keys themselves either with a cloud hardware security module (HSM) via Amazon Web Services or an on premise HSM such as a SafeNet appliance. Data loss prevention (DLP) controls - Allows the enterprise to set document expiration policies and selectively wipe specific documents on a device. Also allows control of the uploading, downloading, editing, and sharing of those documents. Secure sharing - Employees can use the native sharing features of their personal cloud apps to share work documents secured with other authorized employees. These documents are encrypted even when shared so that only an authorized user on an authorized device will be able to decrypt them. The following is also provided: Activities trail - Provides a visually appealing activities dashboard which delivers clear and granular visibility into which work documents have been accessed, when they were accessed, who accessed them, and on what device. CSS also tracks policy enforcement actions. This reporting supports the compliance strategy of the organization. EMM integration - Integrated solution that maintains a consistent view of users, groups, and devices across the organization and enforces content security policies on the device. In-line gateway that manages, encrypts, and secures traffic between the mobile device and back-end enterprise systems. Data and traffic between the mobile device and corporate resources can be configured to flow through a gateway that provides real-time secure tunneling and access control. Enforces the security policies set by IT, enabling it to allow or deny access to corporate information and resources in real time. Prevents unauthorized interception and malicious manipulation of data through its support for certificate-based authentication. Encrypts email attachments delivered to mobile devices so that unauthorized apps cannot open them on the mobile device, nor read them if they are copied to external cloud storage sites. Advanced traffic control through support for multiple proxy servers allows IT organizations to ensure the integrity of mobile app traffic by ensuring access to the right corporate destinations and denying access to non-IT approved destinations. Data Reporting, Analytics, and Insight Splunk Forwarder & Splunk App - Administrators can correlate mobile & network machine generated data in order to diagnose infrastructure problems. Reporting Database - Administrators can include mobile device data in third party reporting solutions like Tableau, Crystal Reports, and QlikView. CSV Export - Gives administrators a fast and simple way to export ad hoc reports into Excel for easy filtering, formatting, and analysis. Dashboard Widgets - Gives administrators a fast and simple way to pull information from the Reporting Database. The ability to establish data and task boundaries to protect user privacy and provide flexible delegation of IT responsibilities. Secure spaces with delegated administration and role-based access enables the global IT lead to provide local IT or helpdesk technicians with access to key systems based on their role within the organization and even distribute apps within certain spaces. Global IT teams can also determine which devices local IT or helpdesk admins can see and what they can do on those devices. This enables global organizations to gain flexibility and create secure spaces for various functions within which they can complete key actions, while ensuring user privacy. Enables IT administrators to easily view, monitor, and manage mobile devices at any time, no matter where they are; allows admins to do key things like view the status of mobile deployments across their company, search for users and devices, drill down on specific device info, and troubleshoot issues and manage devices, all without being tied to a desktop or laptop and while providing the following: Management and Reporting Co - Provides advanced management and reporting console, scalable administration, reporting, monitoring, and troubleshooting. Provides reporting with visibility into app and device inventory and policy compliance and includes systems that monitor server health. Integration with Microsoft SCCM - Real time connectivity between Microsoft's System Center Configuration Manager (SCCM), offering enterprise IT a quick and easy way to view status of mobile devices directly from the SCCM console. This provides enhanced visibility into mobile deployments which results in greater IT efficiency. With this integration, there is no need to do a constant refresh of the entire device catalog and SCCM can do a real-time query to get a snapshot of mobile device status. IT admins can now take certain actions on mobile devices directly from the SCCM console such as locking, unlocking, wiping, and retiring a device as well as enabling a forced check- in as needed. Product offers a cross platform Secure Personal Information Management (PIM) experience that gives IT the security and controls it needs, including government-grade encryption to protect all business apps and data with confidence. End users get the choice and freedom they desire while providing a suite of easy to use PIM apps to get work done on the go. Secure workspace contains use friendly email, contacts, calendar and task. Secure and easily manage email, calendaring, contacts and task management effortlessly on thousands of devices across multiple operating systems. Provides business users additional security and privacy beyond what is offered in the native PIM solution. Data Loss Prevention controls to protect against malware concerns and consumer services that pull data out of native PIM that goes above and beyond what the OS provides such as app level passcode and restricting copy/paste. Distinct segmentation of work and personal content. This includes app-level authentication so your email can stay locked while using personal apps on the device. Interoperability with other secure app. With Secure PIM a user can open links in a secure browser, and open attachments in secure viewers. Common Criteria EAL-2 certified. DISA-approved, including Security Technical Implementation Guidance. Period of Performance (POP) 28 September 2021 - 27 September 2022
 
Web Link
SAM.gov Permalink
(https://beta.sam.gov/opp/8147229be8c24786bc983bf27ccfd95f/view)
 
Place of Performance
Address: Peachtree City, GA 30269, USA
Zip Code: 30269
Country: USA
 
Record
SN06109526-F 20210826/210824230133 (samdaily.us)
 
Source
SAM.gov Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's SAM Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.