This government file outlines comprehensive requirements for a solution focused on compliance, session capture, forensic tools, data sensitivity, policy management, and endpoint agents, with a strong emphasis on security and data integrity. Key compliance frameworks include EO 13587, EO 14028, CNSSD 504, NIST SP 800-53 Rev. 5, ICD 503, FIPS 140-2, and FedRAMP Moderate/High. The solution must provide DVR-style session capture, robust encryption (FIPS 140-2, TLS 1.2+, AES-256), tamper-evident logging, and granular data sensitivity controls. It requires a policy engine with compound conditions and multi-personnel authorization, and a lightweight endpoint agent with offline collection capabilities. User and Entity Behavior Analytics (UEBA) must offer configurable risk scoring and explainable alerts, independent of AI/ML for baseline monitoring. Governance includes

The Federal Bureau of Investigation (FBI) has issued a Request for Information (RFI) for a User Activity Monitoring and Behavioral Analytics Solution. This RFI, due by October 6, 2025, seeks to enhance the FBI's Insider Threat Program by identifying qualified vendors and commercial solutions for UAM and UEBA capabilities. The FBI requires solutions tailored for classified and air-gapped environments, compliant with Executive Order 13587 and CNSSD 504. The solutions must provide real-time alerts, audit logs, and anomaly detection, operating independently of AI/ML but capable of seamless integration. Only U.S.-based companies with a Top Secret facility clearance and SCI eligibility are eligible. Responses should address technical ability, experience in air-gapped deployments, GSA Schedule status, and staffing for Huntsville, AL, projects. This RFI is for informational and planning purposes only and does not constitute a solicitation or commitment to award a contract.