The U.S. Department of Homeland Security's National Urban Security Technology Laboratory (NUSTL) has issued a Request for Information (RFI) regarding Security Information and Event Management (SIEM) Solutions. The purpose of this RFI, posted on September 5, 2024, and due by October 5, 2024, is to conduct market research and gather information on commercially available SIEM systems that meet specific requirements for law enforcement, fire personnel, and first responders. Key criteria include having a technology readiness level of 9, robust access control and encryption features, and no financial ties to nations known for cyber activities against the U.S.
This RFI is not a solicitation for proposals and carries no obligation for the government to enter into a contract based on the responses. Interested vendors should submit detailed information via an online questionnaire provided, ensuring no proprietary or confidential information is included. NUSTL seeks to assess the potential of available products to inform their SAVER program, which supports emergency responders in equipment procurement. All submissions will be considered public information and may be used in future SAVER documentation.
The RFI Vendor Questionnaire for SIEM Solutions outlines essential inquiries directed at vendors to ascertain the capabilities and support offered for Security Information and Event Management (SIEM) products. It focuses on several key areas: the types of technical support and service contracts available, warranty details for hardware, and product longevity guarantees. It also seeks information on included training materials for new users, software updates, and data encryption processes. The document probes into features related to access control, including user accounts and access roles, and inquiries about certifications or compliance with standards such as FedRAMP or STIG. This questionnaire serves as a template for government agencies to evaluate potential vendors offering SIEM solutions, ensuring they meet specific operational and security requirements crucial in a federal or state/local context.