DOI RFQ: CIS Security Benchmarks and CIS CAT Pro

“1. Background

The United States Department of the Interior (DOI) seeks to improve its system security configurations to levels that are widely accepted as exhibiting prudent due care, having applied excepted best practice as well as minimizing its risk of disruptions and cybercrime. To accomplish this, DOI requires access to benchmarks and tools that ensure the security, privacy, integrity, and availability of information assets, as well as participation in the selection and development of future benchmarks which are of particular use and value to its members.

This requirement is for the renewal of the enterprise-wide Center for Internet Security (CIS) Security Benchmarks End User Membership to the Department of the Interior, including all DOI Agencies, Bureaus, and Offices. This membership shall provide enterprise-wide access to CIS resources. DOI is within the organization employee-size threshold, as identified by CIS, of 50,000 to 99,999 employees…”

“2. Requirements

The Contractor shall provide enterprise-wide CIS Security Benchmarks End User Membership, tailored specifically to DOI. The annual membership shall include all the CIS Membership benefits listed on the CIS website at http://benchmarks.cisecurity.org/membership, as well as:

  1. Access to the CIS Configuration Assessment Tool (CIS-CAT), which analyzes the configuration of target systems and returns a score between 1-100 for Security Benchmark conformity. CIS-CAT reports allow users to easy to identify which aspects of a target system are out of compliance.
  2. The ability to distribute the Security Benchmarks, Benchmark Assessment Tools, CIS Controls and Consensus Security Metrics within DOI.
  3. Access to the Security Benchmarks Members website, including:
    1. Development versions of Security Benchmarks not available to the general public (Word, Excel, XCCDF, OVAL, XML)
    2. CIS Controls
    3. Automated remediation kits for implementing and assessing Security Benchmark guidance
    4. Tutorials and webcasts
    5. Member-only discussion forums
    6. Unlimited access to CIS-CAT Users Guide
  4. Support Services for CIS Security Benchmarks Members at no additional charge:
    1. Up to 2 hours of telephone support per month, after initial e-mail contact.
    2. Unlimited email support via: support@cisecurity.org
    3. Unlimited participation in the discussion forums on the CIS Security Benchmarks Community Web Site
  5. Option to list DOI’s name / logo on the Membership Roster.
  6. Ability to use the CIS Security Benchmarks logo and CIS Membership Mark on DOI’s website and documents.
  7. Electronic notification of updates to the Benchmarks and Scoring Tools…”

Read more here.

0
Tags:

This topic contains 0 replies, has 1 voice, and was last updated by  Jackie Gilbert 1 month ago.

  • Author
    Posts
  • #145084

    Replies viewable by members only

    0

You must be logged in to reply to this topic.

CONTACT US

Questions?. Send us an email and we'll get back to you, asap.

Sending

©2022 MileMarker10, LLC all rights reserved | Community and Member Guidelines | Privacy Policy | About G2Xchange FedCiv

Opportunities. Starting Points.

About our Data

The Vault is a listing of expiring contracts, task orders, etc. within a certain set of parameters, to include:

  • Have an initial total estimated contract value of $10 million or above
  • Federal Civilian Only – DHS, Transportation, Justice, Labor, Interior, Commerce, Energy, State, and Treasury Actions
  • NAICS codes include: 511210, 518210, 519130, 519190, 541511,
    541512, 
    541513, 541519, 541611, 541618,
    541690, 541720, 541990
  • Were modified within the last 12 calendar months
  • The data represented is based on information provided by the government

Who has access? Please note that ALL G2Xchange FedCiv Members will receive access to all basic and much of the advanced data. G2Xchange FedCiv Corporate Members will receive access to ALL Vault content (basic and advanced).

Feedback/Suggestions? Contact us at Vault@G2Xchange.com and let us know what you think. 

G2Xchange FedCiv

Log in with your credentials for G2Xchange FedCiv

Forgot your details?