Request for Information - Enterprise Virtualization and Hybrid Cloud Infrastructure Services
ID: 1019530027Type: Special Notice
Overview

Buyer

STATE, DEPARTMENT OFSTATE, DEPARTMENT OFACQUISITIONS - AQM MOMENTUMWASHINGTON, DC, 20520, USA

NAICS

Computing Infrastructure Providers, Data Processing, Web Hosting, and Related Services (518210)

PSC

IT AND TELECOM - NETWORK AS A SERVICE (DG10)

Set Aside

Partial Small Business Set-Aside (FAR 19.5) (SBP)
Timeline
  1. 1
    Posted Dec 17, 2024, 12:00 AM UTC
  2. 2
    Updated Dec 17, 2024, 12:00 AM UTC
  3. 3
    Due Jan 6, 2025, 10:00 PM UTC
Description

The U.S. Department of State is seeking information from industry vendors regarding their capabilities to provide an enterprise hybrid cloud computing platform as part of a Request for Information (RFI). The objective is to identify a proven commercial-off-the-shelf (COTS) solution that can effectively manage and automate virtual desktops, servers, networks, and storage services while adhering to federal security standards and supporting a zero trust security approach. This initiative is crucial for enhancing the Department's IT infrastructure and ensuring secure operations across its critical business processes. Interested parties must submit their responses by January 6, 2025, and can direct inquiries to Meghan M. Mullen at MullenMM@state.gov or John K. Warner at WarnerJ1@state.gov.

Point(s) of Contact
Files
Title
Posted
Dec 18, 2024, 3:03 AM UTC
The Cybersecurity Supply Chain Risk Management (C-SCRM) Questionnaire is a document designed for vendors submitting offers to the government, focusing on their risk management approaches regarding cybersecurity within their supply chains. The questionnaire is structured into three main sections: Contact Information, Vendor Risk Management Plan, and Physical and Personnel Security. Vendors are required to provide key contact details and respond to specific queries regarding their identification of supply chain threats, mapping of suppliers, and verification processes related to supply chain risk management. Additionally, the document outlines expectations for conducting employee background checks and preventing tampering of Information and Communications Technology (ICT) inventory. It emphasizes that responses must be credible, and the government may request documentation to confirm provided details. This systematic effort aligns with federal standards outlined in NIST SP 800-53, underlining the government's initiative to enhance cybersecurity resilience within supply chains and ensure that organizations have robust risk management practices in place.
The Secure Software Development Attestation Form, mandated by Executive Order 14028 and related OMB Memoranda, aims to ensure software used by federal agencies is developed securely. It outlines the obligations of software producers to attest to their compliance with established secure software development practices as outlined by NIST standards. The document specifies that software requires self-attestation if developed or significantly modified after September 14, 2022, or if it is continually updated. Exemptions apply to open-source software, federal agency-developed software, and components that are publicly available. The self-attestation form collects details about the producer and software, requiring completion by an authorized signatory, typically the CEO. The producer can choose to substantiate compliance via a third-party assessment. If a completed attestation cannot be obtained, agencies may still use the software with a documented risk mitigation plan. Compliance with these protocols supports the federal objective of enhancing cybersecurity and securing the software supply chain effectively. The process encourages accountability and regular monitoring of security practices in software development.
The U.S. Department of State's Bureau of Diplomatic Technology has issued a Request for Information (RFI) to assess industry capabilities for providing an enterprise hybrid cloud computing platform. The goal is to find a market-leading solution that allows for monitoring and managing virtual resources like desktops and servers, ensuring compatibility with federal security standards while being scalable and user-friendly. The RFI solicits responses detailing company background, technical capability assessments relative to outlined functional requirements, and relevant federal project experience. Required qualifications include proven commercial-off-the-shelf (COTS) products, mandatory federal security certifications, and support for a diverse range of virtualization and cloud services. The document emphasizes a zero trust security approach and requires submissions by January 6, 2025, while stipulating that this RFI does not commit the government to procuring any products or services. This initiative aims to identify capable vendors who can meet the Department's complex IT needs effectively and securely.
Lifecycle
Title
Type
Similar Opportunities
Managed Attribution and Secure Remote Web Browsing
Active
Dept Of Defense
The Department of Defense, through the Air Combat Command Acquisition Management and Integration Center, is seeking information from qualified vendors regarding a cloud-based solution for managed attribution and secure remote web browsing. The primary objective is to develop a scalable virtual browser that supports robust collection capabilities while ensuring the security of analytic personnel and DoD networks against adversarial threats. This initiative is crucial for the Department's efforts in countering transnational organized crime and drug trafficking, providing essential intelligence analysis services to law enforcement agencies. Interested parties must submit their responses to the Request for Information (RFI) by January 8, 2025, at 12:00 PM EST, directed to Chase Gordon at chase.gordon@us.af.mil.
FA8307_RFI_Red_Hat_Openshift_Alternatives
Active
Dept Of Defense
The Department of Defense, specifically the Department of the Air Force, is seeking information from qualified vendors regarding alternatives to the Red Hat OpenShift Platform Plus, which is currently utilized for application development and deployment. The government requires solutions that can operate across unclassified impact levels, support C++ software pipelines, and incorporate a DevSecOps approach to enhance security within development workflows. This initiative is crucial for maintaining productivity and compliance in software development processes. Interested vendors must submit their responses using the provided RFI template to the designated contacts, Geoffrey Bender and Elijah Simmons, by the specified deadline, noting that no contract awards will be made as a result of this RFI.
Request for Information (RFI): Insider Threat Program Technical Solutions
Active
Justice, Department Of
The Department of Justice (DOJ) is issuing a Request for Information (RFI) to gather insights from qualified vendors specializing in technology solutions for Insider Threat Programs. The DOJ seeks to understand vendor capabilities in areas such as artificial intelligence, user behavior analytics, and data loss prevention, with the aim of enhancing its proactive measures against insider threats that could compromise sensitive information and national security. This initiative is part of the DOJ's broader commitment to cybersecurity and threat mitigation, and interested vendors must submit their responses, including a Vendor Information Template and Technical Capabilities Matrix, by January 24, 2025. For further inquiries, vendors can contact DeChanta Vaughan or Sar McClain at ITP@usdoj.gov.
DHS Procurement Records Management Modernization (PRM2)
Active
Homeland Security, Department Of
The Department of Homeland Security (DHS) is seeking industry feedback for its Procurement Records Management Modernization (PRM2) initiative, aimed at enhancing its electronic contract filing system. The project focuses on developing a cloud-based solution that improves contract file storage, workflow, and compliance management, serving approximately 1,800 personnel across various DHS components. This modernization effort is critical for streamlining procurement operations and ensuring regulatory compliance throughout contract lifecycles. Interested parties are encouraged to submit their feedback on the Draft Request for Quote by January 8, 2025, to Breean Jaroski at Breean.Jaroski@hq.dhs.gov, with no vendor marketing materials accepted.
Request for Information: Next-generation Commercial Operations in Defended Enclaves (NCODE)
Active
Dept Of Defense
The Department of Defense, specifically the Army, is seeking input through a Request for Information (RFI) for its Next-generation Commercial Operations in Defended Enclaves (NCODE) initiative, aimed at enhancing cybersecurity for small businesses within the Defense Industrial Base (DIB). The initiative intends to establish a secure, cloud-based environment that provides essential productivity tools and advanced business operations support, enabling small businesses to comply with NIST SP 800-171 security standards. This program is critical for improving the cybersecurity posture of small businesses engaged with the Department of Defense, facilitating their participation in government contracts while ensuring compliance with federal security requirements. Interested parties must submit their responses by 10:00 EST on January 10, 2025, and direct any inquiries to the NCODE team at ncode@army.mil.
Sources Sought Notice (SSN)/Request for Information (RFI) – 70SBUR25I00000009 Identity, Credentials, and Access Management - Enterprise Services 3 (ICAM-ES 3)
Active
Homeland Security, Department Of
The Department of Homeland Security, specifically the U.S. Citizenship and Immigration Services (USCIS), is seeking information from small business vendors through a Sources Sought Notice (SSN)/Request for Information (RFI) regarding the Identity, Credentials, and Access Management - Enterprise Services 3 (ICAM-ES 3) program. The objective is to gather market research on technical and program management support for maintaining the USCIS ICAM enterprise IT services program, which is crucial for enhancing security, privacy, and efficiency across various systems. Interested vendors are invited to provide detailed information about their capabilities, past experiences, and relevant projects, particularly in areas such as technology integration and zero-trust implementation. Responses are due by January 17, 2025, and should be directed to Sylwia Salkic at Sylwia.Salkic@uscis.dhs.gov or Gary Whitney at gary.d.whitney@uscis.dhs.gov.
Request for Information - USCIS Enterprise Collaboration Network (ECN)
Active
Homeland Security, Department Of
The U.S. Citizenship and Immigration Services (USCIS), part of the Department of Homeland Security, is seeking information through a Request for Information (RFI) regarding its Enterprise Collaboration Network (ECN) to inform future acquisitions related to its SharePoint platform. The USCIS requires support services that encompass program management, operations and maintenance, development of new applications, and enhancements to existing applications, all while adhering to federal standards and utilizing Agile Methodology. This initiative is crucial for modernizing web technologies and improving services for approximately 30,525 users. Interested parties should submit their responses, which should not exceed six pages, by January 3, 2025, and can direct inquiries to Nicholas Hart at nicholas.a.hart@uscis.dhs.gov or by phone at 802-872-4128.
Horizon and Workspace One Product Subscription Licenses and Software Support
Active
Dept Of Defense
The Department of Defense, specifically the U.S. Army Contracting Command – Rock Island, is seeking proposals from small businesses for the procurement of Horizon and Workspace One product subscription licenses and software support. This initiative aims to establish an Army Enterprise License Agreement (ELA) for a three-year period, which includes a one-year base period and two additional one-year ordering periods, to enhance the Army's Virtual Desktop Infrastructure (VDI) capabilities while ensuring data security and operational reliability. The selected contractor will provide essential software packages and support services, with a total estimated contract value of $186,388.50, and proposals are due by January 6, 2025. Interested vendors should direct inquiries to Maria Baskovic at maria.g.baskovic.civ@army.mil or Irene Kremer-Palmer at irene.m.kremer-palmer.civ@army.mil before the deadline for questions on December 24, 2024.
Cloud Service Provider for Defense Retiree and Annuitant Pay System
Active
Dept Of Defense
The Department of Defense, through the Defense Finance and Accounting Service (DFAS), is seeking information from qualified vendors regarding the operation and maintenance (O&M) of its IL-5 cloud infrastructure as part of its transition from a mainframe hosting environment to a commercial cloud service provider. The procurement aims to identify personnel with the necessary skills and experience to support a cloud-hosted environment, focusing on areas such as Infrastructure as Code implementation, database maintenance, server OS hosting, web server administration, and cybersecurity measures. This initiative is critical for enhancing DFAS's IT capabilities and ensuring effective management of its information systems. Interested parties must submit their responses by January 10, 2025, and can direct inquiries to Eric J. Filion at eric.j.filion.civ@mail.mil.
Request for Information (RFI) PEO Missiles and Space OCIO Cybersecurity Intrusion Detection Capability
Active
Dept Of Defense
The Department of Defense, specifically the Army's Program Executive Office for Missiles and Space, is seeking information regarding cybersecurity intrusion detection capabilities through a Request for Information (RFI). The objective is to gather insights on currently available non-developmental cybersecurity intrusion detection systems that support Integrated Fires Offensive and Defensive Operations. This RFI is part of market research to identify potential sources and does not constitute a request for proposals or guarantee future contracts. Interested parties must submit an unclassified white paper by 1600 hours EST on January 10, 2025, detailing their technical approach and capabilities, with submissions directed to the primary contact, Christopher M. Caputo, at christopher.m.caputo.civ@army.mil.