ContractSources Sought

Insider Threat Monitoring Tool

DEPT OF DEFENSE• M9549426R0019

Response Deadline

May 29, 2026

9 days left

Days Remaining

Until deadline

Set-Aside

No Set aside used

Notice Type

Sources Sought

Contract Opportunity Analysis

The U.S. Marine Corps, under the Department of the Navy, is seeking information from industry on support for its Insider Threat Program Monitoring Tool, a sources sought notice focused on maintenance, enhancement, and expansion of the capability. The work centers on fielding, operating, enhancing, and sustaining a comprehensive insider threat monitoring system that includes user activity monitoring, behavioral analytics, and case management across the Marine Corps Enterprise Network. Key context includes full lifecycle support for a Protection Level 4 system, 24/7/365 monitoring of up to 200,000 endpoints, integration with existing DoD, USMC, and intelligence community baselines, compliance with CNSSD 504 and the National Insider Threat Policy, and TS/SCI-cleared personnel. Interested organizations are asked to submit an email capability statement no more than eight pages by 29 May 2026 at 10:00 AM EST to Makyla Clark and Ryan Brown, with proprietary information clearly marked.

Classification Codes

NAICS Code

541512

Computer Systems Design Services

PSC Code

DA10

IT AND TELECOM - BUSINESS APPLICATION/APPLICATION DEVELOPMENT SOFTWARE AS A SERVICE

Solicitation Documents

1 Files

PWS_ 08 May 2026_updated.docx

Word•71 KB•May 19, 2026

AI Summary

This Performance Work Statement outlines the requirements for a contractor to field, operate, and sustain a comprehensive Insider Threat Monitoring System for the U.S. Marine Corps Insider Threat Program. The system, to be deployed on the Marine Corps Enterprise Networks (NIPRNet), includes User Activity Monitoring (UAM), a Behavioral Analytics Platform, and a Case Management System. Key objectives involve maintaining UAM compliance, deploying and sustaining a functional Behavioral Analytics Platform with STIG remediation, and enhancing the Case Management System. The scope encompasses full lifecycle technical support for a Protection Level 4 (PL4) system, 24/7/365 monitoring of up to 200,000 endpoints, and support for administrative users. Tasks include vulnerability management, Risk Management Framework (RMF) compliance, hardware and software support (including Next-Generation Firewalls and Cisco switches), training, and monthly reporting. All contractor personnel must possess a TS/SCI clearance and adhere to strict security and data ownership policies.

Related Contract Opportunities

Project Timeline

postedOriginal Solicitation PostedMay 19, 2026

deadlineResponse DeadlineMay 29, 2026

expiryArchive DateJun 13, 2026

Agency Information

Department

DEPT OF DEFENSE

Sub-Tier

DEPT OF THE NAVY

Office

COMMANDING OFFICER

Point of Contact

Name

Makyla Clark

Emailmakyla.j.clark.civ@usmc.mil

Phone703-571-6511

Place of Performance

Arlington, Virginia, UNITED STATES

Official Sources

View on SAM.gov