DOJ RFI: FISMA AND FISCAM Continuous Monitoring and Assessment of Cyber Security Controls

DOJ OCIO has issued an RFI for FISMA AND FISCAM Continuous Monitoring and Assessment of Cyber Security Controls for the Federal Prison Industries. The office of CIO and Information Security Officer (ISO) provides guidelines for applying the Risk Management Framework to information systems to include conducting the activities of security categorization, security control selection and implementation, security control assessment, information system authorization, and security control monitoring.

The contractor work required includes an assessment of NIST’s SP800-53 Rev IV Controls and the contractors shall assist UNICOR with assessment of NIST’ SP800-53 Rev IV Controls for Moderate Systems. This solicitation is for five systems. Contractor shall perform assessment of Management, Operational and Technical security controls prescribed for an information system to protect the confidentiality, integrity and availability of the system.

With regard to Continuous Monitoring, the contractor shall assist with a strategy and implementation of a program for the continuous monitoring of security control effectiveness including the potential need to change or supplement the control set, taking into account any proposed/actual changes to the information system or its environment of operation.

  1. Security impact analyses on proposed or actual changes to organizational information Systems and environments of operation;
  2. Assessment of selected security controls (including system- specific, hybrid, and common controls) based on the organization-defined continuous monitoring strategy; Security status reporting to appropriate organizational officials;
  3. Active involvement with authorizing officials in the ongoing management of information System-related security risks;
  4. Assessment of Security controls in…”

The Contract Period of performance will be from date of Award 2,080 hours or 1 year at the discretion of FPI, to include 4 option years or equivalent hours at the discretion of FPI. Offers are solicited only from small concerns.

Read more here.


Tagged: , ,

This topic contains 0 replies, has 1 voice, and was last updated by  Jackie Gilbert 2 years, 2 months ago.

  • Author
  • #62794

    Replies viewable by members only


You must be logged in to reply to this topic.


Questions?. Send us an email and we'll get back to you, asap.


©2021 MileMarker10, LLC all rights reserved | Community and Member Guidelines | Privacy Policy | About G2Xchange FedCiv

Opportunities. Starting Points.

About our Data

The Vault is a listing of expiring contracts, task orders, etc. within a certain set of parameters, to include:

  • Have an initial total estimated contract value of $10 million or above
  • Federal Civilian Only – DHS, Transportation, Justice, Labor, Interior, Commerce, Energy, State, and Treasury Actions
  • NAICS codes include: 511210, 518210, 519130, 519190, 541511,
    541513, 541519, 541611, 541618,
    541690, 541720, 541990
  • Were modified within the last 12 calendar months
  • The data represented is based on information provided by the government

Who has access? Please note that ALL G2Xchange FedCiv Members will receive access to all basic and much of the advanced data. G2Xchange FedCiv Corporate Members will receive access to ALL Vault content (basic and advanced).

Feedback/Suggestions? Contact us at and let us know what you think. 

G2Xchange FedCiv

Log in with your credentials for G2Xchange FedCiv

Forgot your details?