The Department of Defense (DOD), Defense Counterintelligence and Security Agency (DCSA), has a continuing requirement for DCSA Enterprise Cybersecurity Support Services.

N/A

The overall objective of this potential requirement is to provide comprehensive cybersecurity support to the current enterprise and programs, and transformational cybersecurity support for the future DCSA organizational enterprise. Listed below are the functions necessary to carry out this objective:

• Provide knowledge-based support to help DCSA continue developing cybersecurity for the Agency, to include cloud environments;
• Provide knowledge-based support to help DCSA in the continued cybersecurity integration of the Enterprise Data Management (EDM) for the Agency;
• Provide assistance with the DCSA Authorization & Assessment (A&A) process to ensure the Risk Management Framework is implemented on DCSA systems;
• Provide assistance with DCSA systems to ensure the cybersecurity framework is implemented for identifying, protecting, detecting, responding to, and recovering from cyber threats & vulnerabilities;
• Conduct approved product analysis, to recommend products being considered for inclusion on the DCSA networks ensuring they are properly and uniformly analyzed for compliance with DoD and DCSA security requirements and best practices;
• Provide support with issuance and technical assistance with Non-Classified Internet Protocol Router Network (NIPRNet), Secret Internet Protocol Router Network (SIPRNet) and Joint Worldwide Intelligence Communications System (JWICS) tokens and Unclassified – Top Secret media destruction of various types of media and guidance to DCSA personnel;
• Review Cyber Workforce Improvement program reports/artifacts to ensure validation of requirements to obtain/maintain network access;
• Provide and perform incident response, forensics, threat hunt, and cyber operations test and evaluation for the Agency;
• Use Tools to detect, analyze, counter, and mitigate cyber threats and vulnerabilities; as well as to maximize user accessibility and functionality;
• Provide configuration and change management practices to establish and maintain consistency of a product or system’s attributes with its requirements and evolving technical baseline over its life;
• Ensure supply chain risk management is supported from a risk-based approach by conducing assessments. Provide support for securely onboarding and off-boarding personnel.

The DCSA-enterprise cybersecurity mission encompasses the cybersecurity systems engineering, secure systems integration, cybersecurity, oversight activities of its data management, and related cybersecurity technology efforts. The types of contractor-provided enterprise cybersecurity support services may include:

• Cyber Data Management
• Cybersecurity Engineering
• Cloud Security Engineering
• Cybersecurity Risk Management
• System Lifecycle Risk Management – Change and Configuration Management
• Cyber Defense Operations
• Cyber Compliance Support • Cyber Publication Services