99--FAA of REQUESTS FOR INFORMATION for Information Technology Systems Security Support Services (ISSS)Program
Solicitation Number: 12499
Agency: Department of Transportation
Office: Federal Aviation Administration (FAA)
Office: Federal Aviation Administration (FAA)
Added: Nov 21, 2012 2:30 pm Modified: Nov 21, 2012 6:19 pmTrack ChangesNotice of REQUESTS FOR INFORMATION for Information Technology Systems Security Support Services (ISSS) FAA Program
Open Date: November 21, 2012 Close Date: December 20, 2012
The Federal Aviation Administration (FAA) has a requirement for Information Technology Systems Security Support Services. This is a Two Tier Request For Information. This first level requirement is a set-aside a Service-Disabled Veteran -Owned Small Business (SDVOSB). The second level if not enough SDVOSBs received, will be for Small Businesses Only. The FAA intends to award one contract, delivery order or task order to a SDVOSB or Certified Small Business Contractor whose proposal represents the best overall value to the Government. The contract terms will be Firm-Fixed Price.
Included in this RFI is the Government's Statement of Work (SOW) that comprises place of performance, applicable documents, program planning and management, tasks and requirements, any additional task order support, deliverables, and labor category duties and qualifications.
The contract total period of performance is 10 years: a one-year base period, one one-year option, and 4 two year options to be exercised at the sole discretion of the Government. Government Estimate Costs Range $20-$50 Million. The intent of this announcement is to permit first, Service-Disabled Veteran -Owned Small Business Information Technology Security firms and only if necessary Certified Small Businesses Technology Security Firms that possess the technical knowledge, skills and abilities in support of this acquisition to provide specific information as to their capabilities. Should the FAA conclude that a sufficient number of SDVOSB firms possess the unique technical abilities required; the FAA will not pursue information and capabilities from Certified Small Business. FAA will then conduct a competitive procurement for SDVOSB Firms and release a Requests For Offer. All terms and conditions of the awardees' contract and provisions stated hereunder the resulting FAA contract will apply to all issued Task Orders for performed work.
Interested companies are required to submit documentation evidencing the possession of each of the following demonstrated capabilities and qualifications, which are all equally important: Overall Information System Security Engineering Experience:
1. Experience in supporting information system security is required. 2. Knowledge of United States Federal information system security legislation, policies, directives, and practices is required. 3. Experience in supporting United States Air Traffic Control Systems is required.
Successful Information Security Support to large organizations: 1. Experience in providing information security support to a large commercial or governmental organization is favorable.
2. Minimum 5 -10 years work experience in Information Systems Security (ISS), Federal Information Security Management Act (FISMA), National Institute of Standards and Technology (NIST) 800 Special Publication Series, Federal Information Protection Standards (FIPS) or related technologies.
3. Experienced providing information security support to governmental organizations listed below will be viewed with increasing favor: a. Any United States Federal Agency. b. The Federal Aviation Administration c. Any FAA National Airspace System (NAS)
Information Systems Security Certifications: Nationally recognized information systems security certifications are required in performance of this contract. Included in RFI response firms should identify certifications. Firm should possess at least one of the following certifications:
CISSP - Certified Information Systems Security Professional CAP - Certified Authorization Professional CISA - Certified Information Systems Auditor CISM - Certified Information Systems Manager CSSLP - Certified Secure Software Lifecycle Professional CEH - Certified Ethical Hacker CPT - Certified Penetration Tester CEPT - Certified Expert Penetration Tester CWSP - Certified Wireless Security Professional EC-Council/Certified Hacking Forensic Investigator (CHFI) Security+ CCNA Security - Cisco Certified Network Associate Security Certification Education and Work Experience Requirements are favorable when possessing the following:
At least a Bachelor's Degree in: Information System Engineer (ISE)
Computer Science Electronic Engineering Electrical Engineering Information Systems or related Information Technology Program Degree. Minimum or 5- 10 years work experience in ISS, FISMA, NIST 800 Special Publications Series
or related technologies. One of the following required Certifications: CISSP, Security+, CAP, CISA, CISM, CEH, and CCNA Security. Information Security Analyst (ISA)
Computer Science Electronic Engineering Electrical Engineering Information Systems or related Information Technology Program Degree. And a minimum or 2- 5 years work experience in ISS, FISMA, NIST 800 Special Publications Series or related technologies. Desired Certifications: CISSP, Security+, CAP, CISA, CISM, CEH, and CCNA Security.
Responses to this RFI are to be submitted directly to FAA Contracts Specialist Stephanie McKnight-Bailey marked "ISSS RFI-Anthony Hill, CO" by 10:00 a.m. Eastern Standard Time (EST) NLT 12/20/2012.
Federal Aviation Administration Facilities & Service Contracts Group Office of Acquisition & Contracting 600 Independence Avenue, S.W. AAQ-230, FOB 10B, Room 2E22NN Washington, DC 20003-1250 202-385-8450 Attention: Stephanie McKnight-Bailey
Email or Facsimile responses will not be acceptable. All concerns, inquiries, or questions must be in writing and emailed to Stephanie.Mcknight-Bailey@faa.gov ISSS RFI in the subject line NLT 12/4/2012. No telephone questions will be accepted nor answered.
Companies that submit technical capability statements and fail to demonstrate possession of any of the above mentioned qualification factors, or fail to meet the RFI Closing Date will not be considered for distribution of the resulting solicitation, Screening Information Request (SIR) and/or Request For Proposal (RFP).
NOTICE: The FAA will not pay for any information received or costs incurred in preparing responses to this Request For Information. All proprietary information should be marked. This request for information shall not be construed as a request for proposal or as an obligation on the part of the Government (FAA) to acquire these services.
Please consult the list of document viewers if you cannot open a file.
November 21, 2012
FEDERAL AVIATION ADMINISTRATION, AAQ-230 HQ - FAA Headquarters (Washington, DC)
Anthony Hill, 240-412-5944