CYBERSECURITY SUPPORT IN THE INTERNATIONAL FINANCIAL SECTOR
ID: 19AQMM25R0032Type: Solicitation
Overview

Buyer

STATE, DEPARTMENT OFSTATE, DEPARTMENT OFACQUISITIONS - AQM MOMENTUMWASHINGTON, DC, 20520, USA

NAICS

Custom Computer Programming Services (541511)

PSC

IT AND TELECOM - SECURITY AND COMPLIANCE AS A SERVICE (DJ10)

Original Source

https://sam.gov/opp/5610d4ea782a4f9db80e64c8343cff72/view
Timeline
    Description

    The Department of State is soliciting proposals for cybersecurity support services aimed at enhancing the counter-cybersecurity posture of foreign entities against threats from the Democratic People's Republic of Korea (DPRK) within the international financial sector. The procurement seeks specialized expertise to provide timely cyber incident response, consultancy, and forensic analysis, with a focus on combatting cyber theft and money laundering in cryptocurrency exchanges. This initiative is part of the U.S. government's broader commitment to international cybersecurity collaboration and compliance with sanctions against DPRK, emphasizing the need for contractors to adhere to the NIST Cybersecurity Framework and maintain personnel with active security clearances. Proposals are due by January 13, 2025, with inquiries accepted until December 3, 2024; interested parties should contact Khoa Tran at TranKD@state.gov for further information.

    Point(s) of Contact
    Khoa Tran
    TranKD@state.gov
    Files
    Title
    Posted
    19AQMM25R0032-0001.pdf
    This document pertains to the amendment of solicitation 19AQMM25R0032 by the U.S. Department of State for providing cybersecurity support to at-risk countries, specifically addressing threats from the Democratic People’s Republic of Korea (DPRK). The amendment, effective December 16, 2024, extends the proposal due date to January 13, 2025, and includes responses to vendor inquiries. The contract encompasses a scope of services including remote cyber incident response, consulting, forensic analysis, and training for foreign governments and financial institutions. Key requirements for the contractor include the deployment of cybersecurity experts within 14 days, maintenance of NIST cybersecurity standards, and provision of periodic reports during contract execution. The contractor is also responsible for ensuring all personnel have the necessary security clearances and for managing travel costs associated with service delivery. With increasing emphasis on collaboration among international financial sectors to combat ransomware and theft, this contract importantly outlines necessary precautions against cybersecurity threats to foreign entities, promoting global cooperation in fortifying cybersecurity infrastructure against malicious state-sponsored efforts. The overall goal is to enhance regional security and resilience in the face of sophisticated cyber threats.
    19AQMM25R0032.pdf
    The government document outlines a solicitation (19AQMM25R0032) for cybersecurity support services aimed at bolstering defense against threats from the Democratic People’s Republic of Korea (DPRK) within the international financial sector and virtual asset service providers. The contract seeks experts to provide timely cyber incident response, consultancy, and forensic analysis to foreign governments and organizations experiencing cyber threats, emphasizing a 48-hour response window and the deployment of subject matter experts within 14 days. Key deliverables include periodic reports, after-action reports post-engagement, and adherence to the NIST Cybersecurity Framework. The solicitation is part of the U.S. Department of State’s efforts to comply with a range of sanctions and UN resolutions against DPRK by enhancing cybersecurity resilience globally. Contractors are required to follow specific security protocols, including hiring personnel with active security clearances. The document also details payment processes, including travel cost reimbursement policies and invoicing requirements to ensure compliance with federal regulations. Overall, this solicitation reflects the government's commitment to international cybersecurity collaboration and risk mitigation against state-sponsored threats.
    Approved BIDDER DD254_19AQMM-25-R-0032.pdf
    The document is a DD Form 254, a Contract Security Classification Specification utilized by the Department of Defense (DoD) in relation to a specific contract, numbered 19AQMM-25-R-0032, which addresses cybersecurity support for at-risk countries. It outlines security clearance requirements, specifying that contractor personnel must possess a SECRET security clearance. The form outlines the need for safeguarding classified information, detailing the access requirements regarding various types of classified data such as COMMUNICATIONS SECURITY (COMSEC) information and NATIONAL INTELLIGENCE INFORMATION. It emphasizes compliance with the National Industrial Security Program Operating Manual (NISPOM) and other pertinent regulations, including reporting responsibilities for contractors dealing with sensitive information. The document requires coordination with designated government officials for proposed changes, and it prohibits public dissemination of contract-related information without appropriate approval. This specification is key to ensuring secure operations in alignment with national security protocols, particularly in the sensitive field of cybersecurity. Overall, the form serves as a governance tool to maintain stringent security standards throughout the contract's execution.
    Cybersecurity Q-A.pdf
    The document outlines responses to questions related to a government Request for Proposal (RFP) for global cybersecurity support targeting North Korean cyber threats. Key points include the absence of Government Furnished Equipment, clarification on cost data beyond fixed-price amounts, and the allowance for offerors to include pricing assumptions. The anticipated workload involves responding to two cybersecurity incidents annually, with expectations for remote and on-site support, including the roles of Subject Matter Experts (SMEs) and technical writers. The contractor is responsible for tailored cybersecurity training, post-incident engagement, and providing relevant personnel qualifications. Deployment locations are mainly projected in Europe and East/Southeast Asia, and contractors must demonstrate prior experience working with blockchain and virtual asset firms. There is a firm fixed-price requirement with specific terms for pricing proposals, which should reflect the scope of work and include various engagement activities. This RFP reflects the government's commitment to bolstering cybersecurity resilience against DPRK cyber activities while requiring clear deliverables and comprehensive understanding from the offerors.
    Lifecycle
    Title
    Type
    CYBERSECURITY SUPPORT IN THE INTERNATIONAL FINANCIAL SECTOR
    Currently viewing
    Solicitation
    Similar Opportunities
    CYBER COLLABORATION SUPPORT SERVICES
    Active
    Homeland Security, Department Of
    The Department of Homeland Security (DHS), through its Cybersecurity and Infrastructure Security Agency (CISA), is seeking information on Cyber Collaboration Support Services to enhance the resilience of the nation’s cyber infrastructure. The primary objectives include providing program management, stakeholder engagement, technical messaging, incident management, and technology support to strengthen collaborations and improve incident response readiness. This initiative is crucial for modernizing cybersecurity operations and ensuring a unified governmental approach to protecting critical infrastructure from cyber threats. Interested entities are invited to submit their capabilities by January 17, 2025, and may participate in an upcoming Industry Day for further engagement; inquiries can be directed to Hannah Moussa at hannah.moussa@cisa.dhs.gov or by phone at 202-568-4157.
    Technical Support Services
    Active
    Agency For International Development
    The United States Agency for International Development (USAID) Office of Inspector General (OIG) is soliciting proposals for Technical Support Services, specifically focused on cybersecurity assessments and vulnerability testing. The procurement aims to engage qualified small businesses under NAICS code 541519 to provide services such as external network penetration tests, internal vulnerability assessments, and related staff training, all crucial for enhancing the agency's cybersecurity posture. This contract, structured as a Blanket Purchase Agreement (BPA) with a maximum value of $5 million, will span a base period of one year with four optional renewal periods, emphasizing the importance of technical capabilities over pricing in the evaluation process. Interested contractors must submit their proposals by December 27, 2024, and direct any inquiries to Kiaira Stallworth at kstallworth@oig.usaid.gov or Scott Ferrante at sferrante@oig.usaid.gov.
    Proposed Establishment of a Federally Funded Research and Development Center-Second Notice
    Active
    State, Department Of
    The U.S. Department of State intends to establish a Federally Funded Research and Development Center (FFRDC), seeking public input on the proposed initiative. FFRDC will focus on three key areas: Diplomatic Innovation and Modernization, Global CyberTech Solutions, and Global Operations and Acquisitions. It aims to strengthen global engagement through R&D, IT advancements, and collaborative acquisition methodologies. The SBA also seeks disaster assistance loans for Minnesota storm and flood victims, while the STB approves GLTRR's track acquisition in Chicago. The RFP for the FFRDC is expected in late 2024, with public comments due by August 15th.
    Request for Information - Enterprise Virtualization and Hybrid Cloud Infrastructure Services
    Active
    State, Department Of
    The U.S. Department of State is seeking information from industry vendors regarding their capabilities to provide an enterprise hybrid cloud computing platform as part of a Request for Information (RFI). The objective is to identify a proven commercial-off-the-shelf (COTS) solution that can effectively manage and automate virtual desktops, servers, networks, and storage services while adhering to federal security standards and supporting a zero trust security approach. This initiative is crucial for enhancing the Department's IT infrastructure and ensuring secure operations across its critical business processes. Interested parties must submit their responses by January 6, 2025, and can direct inquiries to Meghan M. Mullen at MullenMM@state.gov or John K. Warner at WarnerJ1@state.gov.
    Request for Information (RFI) PEO Missiles and Space OCIO Cybersecurity Intrusion Detection Capability
    Active
    Dept Of Defense
    The Department of Defense, specifically the Army's Program Executive Office for Missiles and Space, is seeking information regarding cybersecurity intrusion detection capabilities through a Request for Information (RFI). The objective is to gather insights on currently available non-developmental cybersecurity intrusion detection systems that support Integrated Fires Offensive and Defensive Operations. This RFI is part of market research to identify potential sources and does not constitute a request for proposals or guarantee future contracts. Interested parties must submit an unclassified white paper by 1600 hours EST on January 10, 2025, detailing their technical approach and capabilities, with submissions directed to the primary contact, Christopher M. Caputo, at christopher.m.caputo.civ@army.mil.
    Strategic Planning, Operational Test & Evaluation, and Architecture Evaluation
    Active
    Homeland Security, Department Of
    The Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) is seeking qualified firms to support Strategic Planning, Operational Test & Evaluation, and Architecture Evaluation within its Cybersecurity Division. The primary objectives include enhancing national cyber defense and resilience through effective integration of systems, conducting research and development, and providing engineering expertise to support CISA's cybersecurity initiatives. This opportunity is critical for advancing the nation’s cybersecurity posture and involves a five-year contract that emphasizes compliance with security regulations and the necessity for contractor personnel to hold appropriate security clearances. Interested parties must submit their capabilities statements electronically by January 21, 2025, and can participate in an optional Industry Day to learn more and provide input. For further inquiries, contact Hannah Moussa at hannah.moussa@cisa.dhs.gov or call 202-568-4157.
    Advanced Computing Branch Subject Matter Expert (SME) Support
    Active
    Homeland Security, Department Of
    The Department of Homeland Security (DHS) is seeking qualified vendors to provide Subject Matter Expert (SME) support for advanced computing projects, including areas such as cybersecurity, artificial intelligence, data analytics, and quantum information sciences. The procurement aims to enhance homeland security missions by leveraging advanced computing technologies and requires expertise in scientific evaluation, technical support, and program management to assist the DHS Science and Technology Directorate (S&T) in its core research and technological advancement efforts. This initiative is crucial for addressing critical national security challenges and ensuring effective deployment of scientific resources. Interested parties should submit their responses detailing their capabilities and experience by contacting Khadijah Dark at khadijah.dark@hq.dhs.gov or Jason Rios at jason.rios@hq.dhs.gov, with the anticipated contract spanning five years and a total performance period of up to seven years.
    CALL 0002 - HNCO Industry Outreach Event Responses
    Active
    Dept Of Defense
    The Department of Defense, specifically the United States Air Force, is soliciting industry responses for the CALL 0002 - HNCO Industry Outreach Event, aimed at enhancing cyber warfare mission systems. This initiative seeks innovative solutions to accelerate the development of offensive cyber capabilities that support air superiority and resilience, with a focus on addressing identified capability gaps. The funding ceiling for this opportunity is approximately $100 million, with a two-step submission process involving white papers and proposals due by January 31, 2025. Interested parties can reach out to Timothy Emeott at timothy.emeott@us.af.mil or Corey M. Berry at corey.berry.2@us.af.mil for further information.
    Network Management
    Active
    Dept Of Defense
    The Department of Defense, specifically the U.S. Army Combat Capabilities Development Command (DEVCOM), is seeking insights from businesses regarding network management for defensive cybersecurity operations (DCO). The Request for Information (RFI) aims to gather information on the roles and interactions between Network Operations Centers (NOC) and Security Operations Centers (SOC), focusing on their structures, collaboration during incidents, and the potential integration of these functions, including the involvement of managed service providers. This initiative underscores the critical need for specialized network management to ensure effective DCO, emphasizing continuous monitoring and rapid incident response capabilities. Interested parties are encouraged to submit white papers addressing specific queries related to NOC and SOC configurations, handling of Indicators of Compromise (IoCs), and scalability strategies, with responses due to the Engineering & Systems Integration (ESI) Directorate at the provided email address. Note that submissions will not result in contracts but will inform future acquisition strategies.
    Request for Information: Next-generation Commercial Operations in Defended Enclaves (NCODE)
    Active
    Dept Of Defense
    The Department of Defense, specifically the Army, is seeking input through a Request for Information (RFI) for its Next-generation Commercial Operations in Defended Enclaves (NCODE) initiative, aimed at enhancing cybersecurity for small businesses within the Defense Industrial Base (DIB). The initiative intends to establish a secure, cloud-based environment that provides essential productivity tools and advanced business operations support, enabling small businesses to comply with NIST SP 800-171 security standards. This effort is crucial for improving the cybersecurity posture of small businesses engaged with the Department of Defense, facilitating their ability to meet emerging contractual requirements. Interested parties are encouraged to submit their responses by 10:00 EST on December 24, 2024, and can direct inquiries to the NCODE team at ncode@army.mil.