Security Operations Support Services
ID: 20146850Type: Sources Sought
Overview

Buyer

HOMELAND SECURITY, DEPARTMENT OFUS CUSTOMS AND BORDER PROTECTIONINFORMATION TECHNOLOGY CONTRACTING DIVISIONWASHINGTON, DC, 20229, USA

NAICS

Other Computer Related Services (541519)

PSC

IT AND TELECOM - SECURITY AND COMPLIANCE SUPPORT SERVICES (LABOR) (DJ01)

Original Source

https://sam.gov/opp/0d97cd2f19124fd29b2f34ee39cc5e3e/view
Timeline
  1. 1
    Posted Mar 27, 2025, 12:00 AM UTC
  2. 2
    Updated Apr 2, 2025, 12:00 AM UTC
  3. 3
    Due Apr 10, 2025, 6:00 PM UTC
Description

The Department of Homeland Security, specifically the U.S. Customs and Border Protection (CBP), is seeking qualified contractors to provide Security Operations Support Services, with a focus on enhancing the agency's cybersecurity posture. The procurement aims to engage a contractor capable of delivering comprehensive IT security operations support, including program management, cyber defense forensics, incident response, threat intelligence, and vulnerability assessments, among other critical services. This initiative is vital for maintaining secure information systems that protect national interests against evolving cyber threats, aligning with federal cybersecurity frameworks and policies. Interested vendors must submit their responses to the Request for Information (RFI) by April 10, 2025, with inquiries directed to John Marschall at john.d.marschall@cbp.dhs.gov.

Point(s) of Contact
John Marschall
john.d.marschall@cbp.dhs.gov
Dawn Ford
dawn.m.ford@cbp.dhs.gov
Files
Title
Posted
CBP CSD SOC Support Services RFI 032025.pdf
Apr 2, 2025, 1:04 PM UTC
The Customs and Border Protection (CBP) Office of Information and Technology requires a contractor to enhance its Security Operations Center (SOC) Support Services, aligning with Executive Order 13800 to improve federal cybersecurity. The contractor must possess expertise in cloud-based security technologies and big data analysis to support detection, response, and reporting on IT security threats affecting CBP networks. Key responsibilities include continuous network monitoring, incident recovery, and managing access controls. The proposal must detail the company’s experience, SOC capabilities, security engineering services, and technology stack, alongside compliance with federal regulations. In addition, it should explain staffing strategies, incident response frameworks, service level agreements, metrics for performance evaluation, and approaches to scalability and cost structures. Overall, this RFP highlights CBP’s commitment to strengthening its cybersecurity posture by engaging a qualified contractor capable of delivering round-the-clock support, leveraging advanced technologies, and ensuring compliance with industry standards. The request reflects the importance of maintaining robust security measures to safeguard national interests amid evolving cyber threats.
RFI_Draft PWS SOC 040125 v2.pdf
Apr 2, 2025, 1:04 PM UTC
The Customs and Border Protection (CBP) Enterprise Services, through its Office of Information and Technology and Cyber Security Directorate, has outlined a Performance Work Statement for Security Operations Support Services, effective April 1, 2025. This initiative aims to enhance CBP’s cybersecurity posture by engaging a contractor to provide comprehensive IT Security Operations support. Key services include Program Management, Cyber Defense Forensics, Attack Sensing and Warning, Cyber Incident Response, Cyber Threat Intelligence, Cyber Risk Management, Security Modernization, Vulnerability Assessment, and other related supports, ensuring round-the-clock service. The contractor is expected to manage various tasks, from developing compliance reports and incident response initiatives to implementing advanced cybersecurity measures and training. The document emphasizes the need for a knowledgeable contractor capable of improving security operations and effectively managing risks, aligning with current federal cybersecurity frameworks and policies. This task order reinforces the government's commitment to maintaining secure information systems that protect national interests against evolving cyber threats.
RFI Instructions for Security Operations Support Services .pdf
Apr 2, 2025, 1:04 PM UTC
The document outlines key instructions for the submission of responses to the Request for Information (RFI) regarding Security Operations Support Services (SOC). The RFI question period concludes on April 3, 2025, at 2 PM EDT, with responses due by April 10, 2025, at the same time. Interested parties must include "Security Operations Support Services (SOC) RFI response" in the email subject line when sending their submissions. All responses and attachments should be directed to John Marschall at the designated email address. This RFI serves to gather information from potential vendors for future procurement or collaboration in providing security operations support, highlighting the government's ongoing commitment to sourcing reliable partners for security services.
SOC PWS Draft Rev1_022525.pdf
Apr 1, 2025, 2:04 PM UTC
The Customs and Border Protection (CBP) Office of Information Technology (OIT) is issuing a Performance Work Statement (PWS) for Security Operations Support Services. This initiative aims to address evolving cybersecurity threats by employing a contractor to provide comprehensive IT Security Operations, ensuring the protection of CBP’s information systems. Key tasks include program management, cyber threat intelligence, incident response, and vulnerability assessments. The contractor will maintain 24/7 operations, offering specialized support across various cybersecurity domains, including forensics, risk management, and security engineering, with an emphasis on modernizing and enhancing security posture. Furthermore, the contractor will analyze current practices, introduce improvements aligned with federal cybersecurity frameworks, and facilitate compliance with numerous security standards. The project underscores CBP's commitment to safeguarding crucial national security information and responding effectively to emerging cyber threats, ensuring operational resilience and continuity of services.
Lifecycle
Title
Type
Security Operations Support Services
Currently viewing
Sources Sought
Similar Opportunities
COTS-Support Request Ticketing System
Buyer not available
The Department of Homeland Security, specifically the Customs and Border Protection (CBP) office, is seeking vendors for a Commercial Off-the-Shelf (COTS) Support Request Ticketing System. This system is intended to provide an efficient and user-friendly solution for managing and resolving user assistance requests related to the SAP CBP Financial Solutions, which handled over 7,300 support tickets in the last fiscal year. The transition to this new ticketing system is critical as the current IT Service Management solution will be phased out by December 2027, necessitating a reliable and transparent system for effective request categorization and reporting. Interested vendors should submit their responses to the Request for Information (RFI) by April 18, 2025, and can contact Antwanette Boone-Murphy at antwanette.r.boone-murphy@cbp.dhs.gov for further details.
CBP Request for Information- HRM Relocation Resources Website/App Development
Buyer not available
The Department of Homeland Security, specifically the U.S. Customs and Border Protection (CBP), is seeking qualified vendors to develop a website and/or mobile application aimed at providing relocation resources for prospective job applicants. The project focuses on delivering comprehensive information about neighborhoods, schools, real estate, local amenities, and crime rates, while ensuring compliance with federal accessibility standards and robust cybersecurity measures. This initiative is crucial for facilitating informed relocation decisions for individuals seeking employment within the agency. Interested vendors must submit their responses to the Request for Information (RFI) by April 15, 2025, adhering to a 20-page limit, and can direct inquiries to Matthew Coniglio at matthew.coniglio@cbp.dhs.gov or Peter Giambone at peter.a.giambone@cbp.dhs.gov.
Cybersecurity Support Services: Sources Sought Notice (SSN)
Buyer not available
The Department of Defense, through the Washington Headquarters Services, is seeking qualified vendors to provide Cybersecurity Support Services for the Defense Security Cooperation Agency (DSCA). The contractor will be responsible for managing governance, compliance, risk management, and operational support in cybersecurity, which is critical for DSCA's mission of facilitating defense article transfers to international clients. This opportunity emphasizes the need for a contractor with relevant experience and the capability to handle classified work, including maintaining a SECRET facility clearance. Interested parties must submit their capability statements by April 10, 2025, and can contact Ali M. Beshir at ali.m.beshir.civ@mail.mil or Courtney Applewhite at courtney.s.applewhite.civ@mail.mil for further information.
Records and Information Management Support Services
Buyer not available
The Department of Homeland Security, specifically the U.S. Customs and Border Protection (CBP), is seeking qualified contractors to provide Records and Information Management (RIM) Support Services. The primary objective of this procurement is to enhance federal records management practices, ensuring accountability and transparency while facilitating efficient operations across CBP's mission. This initiative is critical for managing information assets in compliance with federal regulations, and it includes tasks such as developing enterprise file plans, conducting IT systems inventory, and implementing comprehensive training programs for personnel. Interested parties should respond to the Request for Information (RFI) by emailing Lloyd A. Burton at lloyd.a.burton@cbp.dhs.gov, with a response limit of 20 pages. The performance period for the contract is set from September 23, 2025, to September 22, 2026, with an option to extend.
CISA COCO Industry Day: CISA Enterprise Engineering and Operations Support Services (CEEOSS)
Buyer not available
Sources Sought HOMELAND SECURITY, DEPARTMENT OF CISA COCO Industry Day: CISA Enterprise Engineering and Operations Support Services (CEEOSS) is a notice seeking information from potential vendors for the procurement of Enterprise Engineering and Operations Support Services for the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA). This service is typically used to provide support and assistance in the areas of enterprise engineering and operations for CISA. The Industry Day event will provide an overview of the requirement and allow for industry feedback and recommendations. The event will be held virtually via Microsoft Teams on Friday, January 12, 2024, from 10:00AM to 11:00AM EST. The event will include a briefing on the draft Statement of Work (SOW) and a question-and-answer period. The current Task Order 70RCSJ23FR0000001 will be recompeted, with an increase in scope due to congressional acts and strategic priorities. Registration for the event will be provided at a later date. Please note that this Industry Day Notice is not a Request for Proposal (RFP) or an invitation for bid, and the Government does not intend to make an award based on this event.
Cabling Services
Buyer not available
The Department of Homeland Security's Customs and Border Protection (CBP) is seeking cabling services for the installation of data cabling at the Cargo Building in Sterling, Virginia. The project involves the installation of 39 Cat 6 data cables, including necessary labor and materials for tasks such as wall rough-in, firestopping, and testing, to support the CBP's Electronic Collection System II Point of Sale Modernization Project. This procurement is critical for enhancing the technological capabilities within CBP’s cargo processing operations, with the awarded vendor required to comply with specific documentation and insurance requirements prior to commencing work. Interested parties must submit their capabilities to Amoz Samuel at amoz.j.samuel@cbp.dhs.gov by 5:00 PM Eastern Time on April 10, 2025, as this opportunity is not open for competitive bidding.
Protecting Army Modernization and Supply Chains- Commercial Solutions Opening (CSO)
Buyer not available
The Department of Defense, through the Army Contracting Command, is seeking innovative solutions to enhance cybersecurity within the Defense Industrial Base (DIB) as part of the Protecting Army Modernization and Supply Chains initiative. This opportunity invites proposals for automated cybersecurity measures that comply with critical standards such as NIST controls and Cybersecurity Maturity Model Certification (CMMC), aimed at supporting small businesses in mitigating cyber threats while ensuring the protection of intellectual property and secure access. The initiative is crucial for safeguarding defense technologies and ensuring the rapid delivery of military capabilities, with submissions accepted until March 6, 2030. Interested parties can contact the Army NCODE Team at usarmy.apg.acc.mbx.dc3oe-ncode-cso@army.mil for further information.
Industry Partnership and Outreach Program Office FY25 Industry Day for Border Patrol
Buyer not available
The Department of Homeland Security, specifically the U.S. Customs and Border Protection (CBP), is hosting a Fiscal Year 2025 Industry Day focused on the U.S. Border Patrol's capabilities and needs. This virtual event aims to provide industry stakeholders with insights into the Program Management Office Directorate's portfolio, current capabilities, and desired capabilities, while also soliciting feedback to address capability gaps. The Industry Day is an important opportunity for participants to engage with the government and understand the operational requirements of the Border Patrol. The event is scheduled for July 23, 2025, from 10:00 A.M. to 12:00 P.M. EST, and interested parties can reach out to Demetrius Smith at procurement-ipop@cbp.dhs.gov for further information.
USBP El Centro Multiprotocol Label Switching Circuits & Internet Services
Buyer not available
The Department of Homeland Security's U.S. Customs and Border Protection (CBP) is seeking quotations for Multiprotocol Label Switching (MPLS) Circuits and Internet Services for the El Centro Sector in California. The procurement aims to enhance broadband connectivity at four specified locations, replacing outdated T1 connections with improved services that include a main hub requiring 4.5 Mbps and three additional sites each needing 1.5 Mbps, along with defined data allowances. This contract will span one base year with four optional one-year extensions, emphasizing compliance with security regulations and federal procurement laws. Interested contractors must submit their quotations by April 14, 2025, and direct any inquiries to Benjamin Dorgan at benjamin.j.dorgan@cbp.dhs.gov.
U.S. Customs and Border Protection (CBP) Laboratory & Scientific Services (LSS) Forensic Laboratory Information Management System (FLIMS)
Buyer not available
The U.S. Customs and Border Protection (CBP) is soliciting proposals for a Forensic Laboratory Information Management System (FLIMS) to enhance its Laboratory and Scientific Services (LSS) operations. The primary objective of this procurement is to modernize the existing system to improve evidence handling, case management, and compliance with accreditation standards, incorporating features such as user authentication, chain of custody tracking, and customizable workflows. This initiative is crucial for ensuring efficient data management and maintaining the integrity of forensic processes across regional labs, adhering to federal IT security standards and supporting FedRAMP certification. Interested vendors should direct inquiries to Jared A. Tritle at jared.a.tritle@cbp.dhs.gov, with the contract period anticipated to begin on July 1, 2025, and extend through June 30, 2026, including nine optional one-year extensions.