FDIC's Thales/Safenet 2FA Hardware Maintenance and Support
ID: CORHQ-24-Q-0493Type: Solicitation
Overview

Buyer

FEDERAL DEPOSIT INSURANCE CORPORATIONFEDERAL DEPOSIT INSURANCE CORPORATION_

NAICS

Other Computer Related Services (541519)

PSC

IT AND TELECOM - SECURITY AND COMPLIANCE PRODUCTS (HARDWARE AND PERPETUAL LICENSE SOFTWARE) (7J20)

Original Source

https://sam.gov/opp/0498ee6e7a184ee4928ff321611536ae/view
Timeline
    Description

    The Federal Deposit Insurance Corporation (FDIC) is seeking proposals for the maintenance and support of Thales 2FA Hardware, which is integral to its Enterprise Identity Management (EIDM) solution. This procurement aims to ensure secure access for external users to FDIC resources, such as FDICConnect and the Examination Tool Suite, by providing robust authentication mechanisms. The contract will cover a four-year period, including a one-year base period and three one-year option periods, with services expected to commence on March 1, 2025, and run through February 28, 2029. Interested vendors must submit their proposals by December 23, 2024, and direct any inquiries to Diamond Toles at ditoles@fdic.gov or by phone at 571-213-4018.

    Point(s) of Contact
    Diamond Toles
    (571) 213-4018
    ditoles@fdic.gov
    Files
    Title
    Posted
    CORHQ-24-Q-0493 - 11.12.24.pdf
    The document outlines a federal Request for Proposal (RFP) from the Federal Deposit Insurance Corporation (FDIC) for Thales Hardware Maintenance and Support Services, particularly focusing on a Two-Factor Authentication (2FA) solution for its Extranet Identity Management (EIDM). The RFP specifies the scope of work, which includes providing a hosted authentication service that integrates with existing FDIC systems and ensures secure access for external users. Key requirements include support for various token technologies and a system capable of 99.9% uptime, user support, and lifecycle management for the authentication solutions. Moreover, the document stresses the need for compliance with security regulations and mandates such as storing data within the U.S. and ensuring that vendor technical support is provided by personnel located on U.S. soil. The expected performance period for initial services spans from March 1, 2025, to February 28, 2026, with options to extend up to four additional years. The RFP stresses stringent security assessments and documentation needed before commencing any data interactions, highlighting the government’s emphasis on robust security, accountability, and project transparency in public contracting.
    Pre-Award SCRM Info - Example.xlsx
    The document outlines the requirements for submitting proposals related to the Pre-Award Risk Management (SCRM) Information, as part of the Federal Deposit Insurance Corporation (FDIC) procurement process. Key details include the need for contractors to disclose their status as either an Original Equipment Manufacturer (OEM), Aftermarket Manufacturer (AM), or Authorized Supplier. It specifies that failure to categorize correctly may result in disqualification from award consideration. Additionally, the document requests information on the name and address of the manufacturer and any subcontractors involved in the project. By detailing these requirements, the document serves as a guideline for applicants seeking federal government contracts, emphasizing the importance of compliance with established standards in the selection process.
    Price Schedule.xlsx
    The document outlines a federal request for proposals (RFP) for the maintenance and support of the Thales 2FA hardware, known as the Enterprise Identity Management (EIDM) 2FA solution, for the Federal Deposit Insurance Corporation (FDIC). This solution is crucial for ensuring secure access by external users to FDIC resources like FDICConnect and Examination Tool Suite, necessitating robust authentication mechanisms. The RFP includes a detailed price schedule for both base and option periods spanning from March 1, 2025, to February 28, 2029. Various line items detail anticipated costs for authentication services, hardware tokens, SMS messaging, bandwidth bundles, and associated services, though specific pricing remains undetermined. Deliverables include essential IT functions such as disaster recovery as a service (DRaaS), infrastructure as a service (IaaS), and technical support with a part-time engineer. The document emphasizes the integration of comprehensive maintenance and support services to ensure operational continuity and security compliance for FDIC systems. The clarity and detail reflect the federal requirement for transparency and accountability in budgetary considerations within government contracts.
    Lifecycle
    Title
    Type
    FDIC's Thales/Safenet 2FA Hardware Maintenance and Support
    Currently viewing
    Solicitation
    Similar Opportunities
    FDIC Bomgar/BeyondTrust Software Maintenance
    Active
    Federal Deposit Insurance Corporation
    The Federal Deposit Insurance Corporation (FDIC) is soliciting proposals for software maintenance services for its Bomgar/BeyondTrust software. The procurement aims to ensure ongoing support and maintenance for the software, which is critical for secure remote access and support operations within the FDIC. The contract will cover multiple items related to software maintenance over a three-year period, from January 1, 2025, to December 31, 2027, with specific compliance requirements and security protocols outlined in the solicitation. Interested vendors must submit their quotes by December 8, 2024, and direct any questions to Raven Childs at ravchilds@fdic.gov by November 29, 2024.
    FDIC's Skybox Software Maintenance Requirement
    Active
    Federal Deposit Insurance Corporation
    The Federal Deposit Insurance Corporation (FDIC) is seeking proposals for the maintenance and subscription of Skybox Security software, aimed at enhancing its capabilities in firewall change management and the analysis of advanced persistent threats (APTs). The procurement specifically requires the provision of Skybox Security software maintenance and subscription goods, with a clear directive that no equivalents will be accepted; bidders must provide pricing for items with matching part numbers. This initiative underscores the FDIC's commitment to maintaining robust cybersecurity measures through structured software support and compliance with federal procurement guidelines. Interested vendors must submit their offers by December 2, 2024, at 12 PM EST, and direct any inquiries to Diamond Toles at ditoles@fdic.gov or by phone at 571-213-4018.
    FDIC's Akamai Subscription Maintenance
    Active
    Federal Deposit Insurance Corporation
    The Federal Deposit Insurance Corporation (FDIC) is seeking proposals for the renewal of maintenance services for its Akamai subscription licenses, which are critical for enhancing its cybersecurity capabilities. The procurement includes protection against Distributed Denial of Service (DDoS) attacks and secure cloud-based Domain Name System (DNS) hosting, with various subscription tiers and associated services outlined in the solicitation. This initiative underscores the FDIC's commitment to safeguarding its digital infrastructure and ensuring robust internet security measures for its web and email resources. Interested parties must submit their offers by December 2, 2024, with questions due by November 5, 2024; for further inquiries, contact Diamond Toles at ditoles@fdic.gov or call 571-213-4018.
    Information Technology Application Services IV (ITAS IV) Basic Ordering Agreement (BOA)
    Active
    Federal Deposit Insurance Corporation
    The Federal Deposit Insurance Corporation (FDIC) is preparing to issue a Request for Proposals (RFP) for the Information Technology Application Services IV (ITAS IV) under a multi-award Basic Ordering Agreement (BOA). This procurement aims to secure a range of IT application services, including the development, maintenance, and decommissioning of approximately 200 critical business applications, organized into five task areas: Business Application Services, Platform Services, Developer Support Services, Emerging Technology Services, and Rapid Teams. The FDIC encourages participation from Minority-Owned and Women-Owned Businesses (MWOBs) and plans to award contracts to around 15-20 contractors over a period of up to ten years. Interested vendors should note that they must be registered in the System for Award Management (SAM) and can expect to access solicitation documents in February 2025. For inquiries, potential offerors can contact Timothy Whitaker or Jomo Haldane at ITASIV@fdic.gov.
    RFI Internal Controls Consulting Services
    Active
    Federal Deposit Insurance Corporation
    The Federal Deposit Insurance Corporation (FDIC) is seeking qualified vendors to provide Professional Consulting Services for the assessment and modernization of its Division of Depositor and Consumer Protection's (DCP) Internal Control and Review operations. This Request for Information (RFI) is intended for market research and planning purposes only, with no obligation for the FDIC to award a contract based on the responses received. The DCP plays a crucial role in ensuring fair treatment for consumers and compliance with regulations, highlighting the importance of a robust internal review process. Interested parties must submit their responses by November 19, 2024, and can direct inquiries to Jemal Williams at jemwilliams@fdic.gov. The anticipated contract period is twelve months, with a potential six-month extension.
    Verification Tool - Seeking a Two-Factor Authentication (2FA) Security Method/Tool to Confirm Government Identity for Special Agents and Support-Personnel who Routinely Make Face-to-Face Contacts with the Public.
    Active
    Treasury, Department Of The
    The Department of the Treasury, specifically the Internal Revenue Service (IRS) Criminal Investigation division, is seeking information regarding a two-factor authentication (2FA) tool designed to verify the identity of Special Agents during public interactions. The objective is to enhance security and trust by allowing the public to confirm the authenticity of Special Agents through a verification process that may involve a government website and matching codes. This initiative is critical as Special Agents frequently engage with the public in sensitive situations, and a reliable verification method could significantly improve operational integrity. Interested vendors are encouraged to submit their responses to the Request for Information (RFI) by November 18, 2024, at 4:00 PM EST, and should include their contact information and proprietary data handling instructions. For further inquiries, vendors may contact Harlan Daar at harlan.daar@ci.irs.gov or Allen Pride at allen.Pride@ci.irs.gov.
    RFI - Identity Protection/Identity Monitoring Services
    Active
    Treasury, Department Of The
    The Department of the Treasury, specifically the Internal Revenue Service (IRS), is seeking information from qualified firms to provide Identity Protection and Identity Monitoring Services aimed at enhancing safeguards against identity theft and addressing future taxpayer data breaches. The IRS requires comprehensive monitoring services that extend beyond traditional credit report monitoring, including fraud detection from various data sources, with the goal of offering continuous identity protection for three years following a breach notification. This initiative is crucial for complying with federal mandates regarding the safeguarding of Personally Identifiable Information (PII) and reflects the IRS's commitment to strengthening identity protection measures amid increasing cybersecurity threats. Interested parties should submit their responses by November 25, 2024, at 12:00 noon EST, to Maria Hagedorn and Katherine Diaz via the provided email addresses, ensuring that no proposals or bids are submitted at this stage.
    Contractor-Hosted Fully Integrated Records Facility (FIRF) IDIQ
    Active
    Health And Human Services, Department Of
    The U.S. Department of Health and Human Services, specifically the Food and Drug Administration (FDA), is conducting market research for a Contractor-Hosted Fully Integrated Records Facility (FIRF) services under an Indefinite Delivery-Indefinite Quantity (IDIQ) contract. The objective is to identify potential small business sources capable of providing comprehensive services such as document processing, data entry, and record tracking, aimed at enhancing the management of records related to public health. This initiative is crucial for improving operational efficiency and ensuring compliance with federal regulations, ultimately supporting the FDA's mission to safeguard public health. Interested vendors must submit their responses, including a completed Vendor Feedback Form and comments on the draft Statement of Work, via email to Contract Specialist Noah Wills by 12:00 PM (Eastern) on November 19, 2024, with the anticipated contract period running from September 15, 2025, to September 14, 2030.
    DMDC Cardstock Warehousing and Logistical Support
    Active
    Dept Of Defense
    The Department of Defense, through the Defense Human Resources Activity (DHRA), is seeking proposals for Cardstock Warehousing and Logistical Support Services, with a focus on managing the DoD's Identity Credential Management program. The contractor will be responsible for warehousing, inventory management, and distribution of various identity credentials, including Common Access Cards (CAC) and Uniformed Services Identification Cards (USID), ensuring compliance with security standards and efficient logistics operations. This contract, valued at approximately $20 million, is set for a performance period from February 1, 2025, to July 31, 2029, and is designated as a Total Small Business Set-Aside. Interested parties must submit their proposals by 10:00 AM ET on November 18, 2024, and can direct inquiries to Lashondra Pelican at lashondra.n.pelican.civ@mail.mil or Melissa Tamayo at melissa.s.tamayo.civ@mail.mil.
    Digital Collateral (DCOL) eVault
    Active
    Housing And Urban Development, Department Of
    The Department of Housing and Urban Development (HUD) is seeking proposals for a Digital Collateral (DCOL) eVault solution to securely manage electronic notes (eNotes) and related documentation as collateral for mortgage-backed securities. The primary objective is to implement a robust electronic vault that integrates with the Mortgage Electronic Registration System (MERS) eRegistry, facilitating the secure storage and management of electronic loan documents for federally insured mortgage loans. This initiative is crucial for enhancing the efficiency and security of mortgage-related processes, ensuring compliance with federal regulations, and supporting Ginnie Mae's Digital Collateral program. Interested contractors must submit their proposals by December 4, 2024, and direct any inquiries to Cheri Redding at Cheri.L.Redding@hud.gov. The contract is anticipated to be awarded on a firm-fixed-price basis, covering a total performance period of five years, including one base year and four optional renewal years.