The Department of Housing and Urban Development (HUD) is conducting market research to acquire Cybersecurity Support Services for its Office of the Chief Information Security Officer (OCISO). The goal is to enhance HUD's cybersecurity program management, security architecture, and operational frameworks through a proactive approach to safeguarding its information systems. Key focus areas include governance, risk, and compliance, vulnerability management, and the establishment of a Security Operations Center (SOC).
Interested parties must submit information regarding their capabilities by 9/12/2024. The findings will guide HUD in determining procurement methods, potentially setting aside contracts for small businesses. The effort follows the evolving cyber threat landscape, aiming to implement a comprehensive strategy, update existing policies, and provide sustainable cybersecurity practices, including the transition to a Zero Trust Architecture.
This initiative has a contemplated budget of approximately $38 million and will be executed remotely with occasional onsite requirements. The project reflects HUD's commitment to establishing a robust and agile cybersecurity infrastructure to protect its operations and the public effectively.
The U.S. Department of Housing and Urban Development (HUD) seeks to modernize its cybersecurity posture under the Office of the Chief Information Security Officer (OCISO). The objective is to enhance cybersecurity capabilities through a comprehensive transformation involving program management, security architecture, governance, risk compliance, and incident management. The initiative follows previous assessments to identify vulnerabilities and improve existing processes.
Specific goals include establishing a robust security architecture, a data security program, and an Identity, Credential, and Access Management (ICAM) program, along with implementing a Zero Trust architecture and supply chain risk management. The contractor will be responsible for conducting assessments, developing policies, and providing training to bolster overall cybersecurity readiness.
The project is structured into phases, with defined performance metrics to evaluate success, compliance with federal regulations, and ongoing adjustments based on identified needs. The overarching aim is to complete essential milestones of Executive Order 14028 to secure HUD’s information systems effectively, ensuring the department can meet its mission while operating in an increasingly complex cyber threat landscape. The expected contract term is 12 months with two potential one-year extensions.