DISTRICT OF COLUMBIA SUPERIOR COURT OFFICE OF CONTRACTS AND PROCUREMENT REQUEST FOR PROPOSALS (RFP) FROM GSA FEDERAL SUPPLY SCHEDULE CONTRACTORS FOR



Similar documents
UNIVERSITY OF CENTRAL ARKANSAS PURCHASING OFFICE 2125 COLLEGE AVENUE SUITE 2 CONWAY, AR 72034

REQUEST FOR PROPOSAL INFORMATION TECHNOLOGY SUPPORT SERVICES

Introduction and Background

Leader Dogs for the Blind 1039 South Rochester Road Rochester Hills, MI 48307

DISTRICT OF COLUMBIA COURTS OFFICE OF CONTRACTS AND PROCUREMENT. CLOSING DATE March 14, 2016, no later than 2:00 P.M.

RFP No C017 OFFICE OF TECHNOLOGY INFORMATION SYSTEMS AND INFRASTRUCTURE PENETRATION TEST

211 LA County. Technology Infrastructure Assessment. Request for Proposals. August 2012 Request for Proposals- 211 LA County 1

III. Services Required The following details the services to be provided to the Town of North Haven in the area of information services:

CITY OF MILTON REQUEST FOR PROPOSAL # ITS

Introduction. Acknowledgments Support & Feedback Preparing for the Exam. Chapter 1 Plan and deploy a server infrastructure 1

REQUEST FOR PROPOSAL

REQUEST FOR PROPOSAL

Request for Proposals (RFP) Strategic Education Consulting Services December 2012 FILING DEADLINE: DECEMBER 21, 2012 (5 P.M. EST)

WEBSITE MAINTENANCE & SUPPORT

AMENDMENT NO. 1. OMB Circular A-1 23 Consulting Services. Wednesday, August 29,2012, no later than 1.00 pm EST

Request for Proposal RFP No. IT Phone System Replacement

Request for Proposals

Scope of Work Microsoft Infrastructure Upgrade

REQUEST FOR PROPOSALS BOND COUNSEL SERVICES FOR AFFORDABLE HOUSING RFP # Santa Ana Housing Authority

REQUEST FOR PROPOSALS INFORMATION TECHNOLOGY SUPPORT SERVICES. Bid Packets are Due:

City of Casper, Wyoming. Request for Proposals. for. Food Service Point of Sale Solution

Information Security Assessment and Testing Services RFQ # Questions and Answers September 8, 2014

Bid closing date December 21, 2013

PROPOSALS REQUESTED THE TOWN OF OLD ORCHARD BEACH POLICE DEPARTMENT FOR IP-BASED VOICE COMMUNICATION SYSTEM

PRE-PROPOSAL CONFERENCE

REQUEST FOR PROPOSAL (RFP) BID# MARINA AND LAND LEASE MANAGEMENT SYSTEM. SUBMISSION DEADLINE: Tuesday, April 15, 2014 at 11:00 AM (ET)

Request for Resume (RFR) CATS II Master Contract. Section 1 General Information R00B

Indian Institute of Technology, Kharagpur Kharagpur , WB, India

REQUEST FOR PROPOSALS. 403(b) Retirement Plan Investment Analysis and Consulting. July 2012

Response to Questions CML Managed Information Security

Invitation for Proposal NOTICE IS HEREBY GIVEN THAT SEALED PROPOSALS ARE SOUGHT AND REQUESTED FOR THE FOLLOWING:

CARMEL UNIFIED SCHOOL DISTRICT REQUEST FOR PROPOSALS - VOIP SYSTEMS

DEPARTMENT OF MENTAL HEALTH/EVIDENCE-BASED SUPPORTED EMPLOYMENT REQUEST FOR PROPOSAL AMENDMENT NUMBER ONE (1) RM-11-RFP-042-BY4-TLW

REQUEST FOR PROPOSALS: Internal and External Assessment of Network, Computer, and Application Environments.

City of Vallejo REQUEST FOR PROPOSAL WORKERS COMPENSATION CLAIMS AUDIT

Request for Quote Avaya Telephone System Maintenance

Kings Regional Occupational Program Course Information

CORPORATION FOR PUBLIC BROADCASTING Request for Proposals Moderated Online Focus Groups and Data Analysis

Request for Pre- Qualification

Vendor Questions and Answers

MAYA ANGELOU PUBLIC CHARTER SCHOOL

Request for Proposals

Request for Proposal Managed IT Services 7 December 2009

HIPAA SECURITY RISK ANALYSIS FORMAL RFP

Accredited Continuing Medical Education and Continuing Education for Clinicians

Network Security Policy

Mechanical Contractor Pre-Qualification Packet. SPSC N180 Computer Data Room Phase II. Project No. CP Notice No. Notice

Penetration Testing. Request for Proposal

IN THE COURT OF APPEALS OF MARYLAND ADMINISTRATIVE ORDER ON VIDEO CONFERENCING PILOT PROGRAMS

INCIDENT RESPONSE CHECKLIST

FINAL JOINT PRETRIAL ORDER. This matter is before the Court on a Final Pretrial Conference pursuant to R. 4:25-1.

8.OFFER DUE DATE: 2:00pm September 18, PAYMENT DISCOUNT TERMS

City of Cotati Sonoma County, California

Our Systems Experience, Specifically:

LOUISIANA BOARD OF REGENTS ENDOWED SUPERIOR GRADUATE STUDENT SCHOLARSHIPS SUBPROGRAM POLICY AND GUIDELINES

REQUEST FOR PROPOSAL FINANCIAL PLANNING CONSULTANT

HACC Central Pennsylvania s Community College Harrisburg, PA. Request for Proposal RFP For. Integrated Marketing Communications Services

Berkeley Unified School District ROUTING FORM Contract, MOU and Amendment Approval

PART V PROPOSAL REQUIREMENTS

Antivirus and Malware Prevention Policy and Procedures (Template) Employee Personal Device Use Terms and Conditions (Template)

THIS SERVICE LEVEL AGREEMENT DEFINES THE SERVICE LEVELS PROVIDED TO YOU BY THE COMPANY.

Solicitation Information 10 May 2012

Request for Resumes (RFR) CATS II Master Contract. All Master Contract Provisions Apply

REQUEST FOR INFORMATION

HACC Central Pennsylvania s Community College Harrisburg, PA. Request for Proposal RFP For Website Content Development HACC

Pre-proposal Conference

CORPORATION FOR PUBLIC BROADCASTING Request for Proposals Community Service Grants Business Process Analysis

IT 3202 Internet Working (New)

CITY OF MARTINSVILLE REQUEST FOR PROPOSALS UTILITY BILL PRINTING & MAILING SERVICES SEPTEMBER 22, 2015

THIS SERVICE LEVEL AGREEMENT DEFINES THE SERVICE LEVELS PROVIDED TO YOU BY THE COMPANY ( Exchange My Mail ).

NETE-4635 Computer Network Analysis and Design. Designing a Network Topology. NETE Computer Network Analysis and Design Slide 1

REQUEST FOR PROPOSALS: PROFESSIONAL INSURANCE CONSULTANT SERVICES

Prepared by: OIC OF SOUTH FLORIDA. May 2013

The NOSB Marine Science Program

NOLENSVILLE POLICE DEPARTMENT REQUEST FOR PROPOSAL AND BID RECORDS MANAGEMENT SYSTEM SOFTWARE

Additional services are also available according to your specific plan configuration.

NOTICE TO OFFERORS REQUEST FOR PROPOSALS ( RFP ) ASPA FSM.INSURANCE FOR ASPA AUTO FLEET. Vehicle Insurance for ASPA Auto Fleet

REQUEST FOR PROPOSAL-INFORMATION TECHNOLOGY SUPPORT SERVICES

Electrical Contractor Pre-Qualification Packet. CHEM R/R Bus Duct & Generator (DMI) Project No. CP Notice No

ReDBox SUPPORT AGREEMENT

Network Security Policy

Request for Proposal RFP 0226 EDU. Website Development, Support, and Maintenance of NEON Website (

UNIVERSITY OF NEVADA, LAS VEGAS Master Agreement Agreement No.

Request for Proposal For: PCD-DSS Level 1 Service Provider St. Andrew's Parish Parks & Playground Commission Bid Deadline: August 17, 2015 at 12 Noon

REQUEST FOR PROPOSAL INFORMATION SECURITY PROGRAM PROVIDER

URBAN LOCAL BODIES, HARYANA SHORT TERM TENDER

SEALED BID REQUEST FOR INFORMATION

Request for Proposal Website Design and Development City of Shelton, Washington

REQUEST FOR QUALIFICATIONS (RFQ) IT Support Services. Date Issued: January 10, Response Due Date: January 31, 2014 by 4:00 p.m.

Project Management Guidelines

GODADDY INC. CORPORATE GOVERNANCE GUIDELINES. Adopted as of February 3, 2015

Learn AX: A Beginner s Guide to Microsoft Dynamics AX. Managing Users and Role Based Security in Microsoft Dynamics AX Dynamics101 ACADEMY

Enterprise K12 Network Security Policy

CITY OF GOLETA, CALIFORNIA REQUEST FOR PROPOSALS INFORMATION TECHNOLOGY SUPPORT SERVICES

REQUEST FOR PROPOSAL FINANCIAL ADVISOR SERVICES FOR COMMUNITY CONSOLIDATED SCHOOL DISTRICT 62

How To Write A Wsca Master Agreement

Request for Information Non-Electronic Health Record Vendors

REQUEST FOR PROPOSAL (RFP)

Access Control Regulations

REQUEST FOR PROPOSALS VOLUNTEER SECURITY VETTING SERVICES

Transcription:

DISTRICT OF COLUMBIA SUPERIOR COURT OFFICE OF CONTRACTS AND PROCUREMENT REQUEST FOR PROPOSALS (RFP) FROM GSA FEDERAL SUPPLY SCHEDULE CONTRACTORS FOR INFORMATION AND TECHNOLOGY PENETRATION TESTING AND INFORMATION SECURITY SERVICES SOLICITATION NUMBER: DCSC-14-FS-0024 ISSUE DATE: April 10, 2014 CLOSING DATE & TIME: April 23, 2014, 2:00PM

The District of Columbia Courts (the Courts) are seeking a qualified Contractor to provide Information and Technology Penetration Testing and Information Security services to be utilized throughout the Courts. The Courts intends to award a firm-fixed-price contract as a result of this solicitation. The offeror shall submit a price and technical proposal for services specified in accordance with the Scope of Services, of this solicitation. Section I: Background The Courts, the judicial branch of the District of Columbia government, which is comprised of the Court of Appeals, the highest court of the District; the Superior Court of the District of Columbia, a trial court with general jurisdiction over virtually all local legal matters; and the Court System, which provides administrative support functions for both Courts. The mission of the Courts is to protect rights and liberties, uphold and interpret the law, and resolve disputes peacefully, fairly and effectively in the Nation's Capital. The Information Technology Division (ITD) serves the Superior Court and Court System by developing, delivering, supporting and managing the Integrated Justice Information System (IJIS) as well as other computer systems. The ITD plays an important role by delivering services that facilitate case flow, supporting automated business processes, equipping employees with productivity-enhancing tools, and providing the automatic and seamless exchange of information with other agencies. The Courts infrastructure primarily consists of a Cisco network, Cisco security devices, Microsoft operating systems, and multiple VLANs. The security topology is typical and consists of outside network, inside network, DMZ network and partner s network. These topologies are built and secured utilizing Cisco switches, Web filters, Email gateways, authentication server, virus protection server etc. Assessments, scans, and penetration testing shall be scheduled ahead of time and coordinated with multiple Courts Information and Technology teams. Section II: Objectives The Courts are interested in conducting a security assessment and penetration test that will allow the Courts to: Gain a better understanding of potential network vulnerabilities that may be visible from the Internet; Determine if the current network security architecture is both secure and scalable to five year growth and threat deterrence; Determine if the current Microsoft domain architecture is both secure and optimized for best performance; Evaluate network and security configurations to ensure that it meets industry best practices; Evaluate the security associated with public self service web applications that are used by the Courts customers; Privacy Impact Assessment; 2

Ensure Courts public WIFI networks from main campuses and distributed campuses (all within D.C.) are segmented from the Courts inside network. These activities are part of the Courts ongoing risk management program and are focused on identifying the risk level that the Courts are currently exposed to so that an appropriate set of responses to those threats can be developed. The Courts are seeking to identify and select an outside, independent organization to perform the activities listed above. The remainder of this document provides additional information that will allow potential vendors to understand the scope of the effort and develop a proposal in the format as described below. Section III: Scope of Work The selected contractor will (1) perform penetration test and security assessment (2) develop a detailed penetration test and security assessment report and an executive summary report (3) provide an oral presentation to the Courts management. Section IV: Deliverables All Deliverables shall be in a form and manner in accordance with the Statement of Work. The Project is not complete until all the Deliverables are provided and approved by the Contracting Officer s Technical Representative (COTR). The date of award shall be the date the Contracting Officer issues a notice to proceed. The Contractor shall provide penetration test and security assessment for the following operating systems, applications, and network equipment: External Penetration Test Public facing network subnets: 2 (/26 and /27) Number of live hosts in public network: 15 Internal Network Security Assessment Number of internal networks: 2 Number of servers in the target space: /8 Network Number of devices in the target space: 2048 Number of sites: five main sites connected via dark fiber, five field units over frame-relay, and one site-to-site VPN connection o Server Configuration Reviews (Servers, Web Applications, Databases) Number and type (operating system and function) of servers to be reviewed: Microsoft 2008 Exchange: 6 Database Servers (Oracle & MSSQL): 47 3

Web Servers (IIS, Apache, Oracle): 38 AD/DNS Servers: 8 Microsoft Member Servers: 105 Network Attached Storage: xx Server Farm VLANs: 5 vlans. Each vlan is carved with /24 bit mask. Spanning Locations: 4 (Building A, Building B, Building C, Gallery Place, 4 field offices, COOP site, Moultrie Building) Cisco Switches: there are 4- Core switches Microsoft Workstations: 1810 Wireless: 2 LAN Controllers, 100 Wireless Access Points (WAPs). o Security Equipment Configuration Reviews Number of type of firewalls to be reviewed: Cisco ASA Firewalls: 3 Watchguard FW: 1 Ironport gateway Gateway: 2 IPS/IDS: 2 Cisco IPs The Contractor shall provide an Executive Summary Report that can be presented to the Courts senior managers. The Contractor shall also provide a formal oral presentation of the findings and recommendations to the Courts. The Contractor shall provide a report that include but not limited to the method employed, positive security aspects identified, detailed technical vulnerability findings, an assignment of a risk rating for each vulnerability test, supporting detailed exhibits for vulnerabilities when appropriate, and detailed technical remediation steps. The Contractor shall also provide a formal oral presentation of the findings and recommendations to the Courts. Section V: Schedule The Contractor shall complete all tasks and deliverables within 60 days of the contract award date. Section VI: Contract Administration: Contract Administrator: The Contract Administrator (CA) is responsible for general administration of the contract and advising the Contracting Officer as to the Contractor s performance or non-performance of the contract requirements. In addition, the Contract Administrator is responsible for the day-to-day monitoring and supervision of the contract. The Contract Administrator shall be: Mr. Jayendra Luitel Information and Technology Division 410 E Street, N.W. Washington, D.C. 20001 Jay.Luintel@dcsc.gov 4

Section VII: Term of Contract The term of the contract shall be for (60) sixty days from the date of award. The date of award shall be the date the Contracting Officer signs the contract document. Section VIII: Commencement of Work The Contractor shall commence work on the contract award date. Section IX: Proposal Submission Information Each firm shall submit technical proposal, detailed work performance schedule, and a price proposal in accordance with the performance of work specified in the Scope of Work. At a minimum, the contractor s bona-fide proposals shall describe how it intends to accomplish the requirements stated in Scope of Work and at what price. Each firm shall submit an original and three (3) copies of their technical proposal and an original and (3) copies of their price proposal. Proposals shall be submitted in a sealed envelope clearly marked in the lower left corner with the following: Solicitation Number: DCSC-14-FS-0024 Title: PENETRATION TESTING AND INFORMATION SECURITY SERVICES Closing Date/Time: April 23 2014, no later than 2:00 P.M. Offerors submitting their responses by U.S. mail must mail their responses to the following address: District of Columbia Courts Administrative Services Division Procurement and Contracts Branch 616 H Street, N.W., Suite 612 Washington, D.C. 20001 Attention: Darryl Allen, Contract Specialist Offerors submitting their responses by hand delivery/courier services must hand deliver their responses to the following address: District of Columbia Courts Administrative Services Division Procurement and Contracts Branch 5

701 7 th Street, N.W. Suite 612 Washington, D.C. 20001 Attention: Darryl Allen, Contract Specialist Questions concerning this Request must be directed by e-mail to: Darryl Allen, Contract Specialist Procurement and Contracts Branch Administrative Services Division District of Columbia Courts E-mail address: allendm@dcsc.gov Section X: Explanation to Prospective Offerors/Bidders Any prospective offeror desiring an explanation or interpretation of this solicitation must request it by email no later than April 15, 2014 no late 4:00PM. Requests should be directed to the procurement contact person at the e-mail address listed in Section IX. Any substantive information given to a prospective offeror concerning a solicitation will be furnished promptly to all other prospective offerors as an amendment to the solicitation, if that information is necessary in submitting offers or if the lack of it would be prejudicial to any other prospective offerors. Oral explanations or instructions given before the award of the contract will not be binding. Section XI: Technical Proposal Format and Content Volume I - Technical Proposal shall be comprised of the following Sections: Section A B C C D Description General Information Technical Approach Qualification of Firm Qualification and experience of proposed staff Past Performance Section A - General Information The Contractor shall provide in Section A of the proposal a brief description of its organization to including: 1. Brief history of Company; 2. Name, Address, Telephone Number and DUNS and federal tax identification Numbers of the Offeror; 3. Whether the Offeror is a corporation, joint venture, partnership (including type of partnership) or individual; 4. Name, address, and current phone number of Offeror s contact person. 6

Section B - Technical Approach A 5-page limit has been established for the Technical Approach to encourage concise presentation, while responding to and explaining how all technical requirements shall be fulfilled. Any material beyond the 5-page limit will NOT be considered. Section C Qualification of Firm Offeror shall include documentation showing the firm s qualification, expertise, knowledge and experience in meeting the requirements of this solicitation; and Section D Qualification of Proposed Staff The offeror shall include resumes/credentials showing the proposed staff's qualification, expertise, knowledge and experience to meet the requirements of this solicitation. Section E Past Performance: Three (3) letters of reference to include information about previously performed District or federal or private contracts providing similar and/or like services, inclusive of dates, contract amount, address and telephone number of the contract administrator. Each reference shall address: 1. Quality of work/service 2. Timeliness of performance 3. Cost Control 4. Business Relations 5. Customer Satisfaction Section XII Price Proposal Volume II - Price Proposal shall be comprised of the following Sections: Section A Description Detailed breakdown of Price For your information, pricing shall identify all cost. At a minimum, your price proposal shall: a. Identify the number of hours each labor category, hourly rates and extended price; and b. Identify the total price and include a summary of all items/sins proposed. Please note: It is a request for proposals from GSA Federal Supply Schedule Contractors. 7

All firms submitting proposals in reference to this Request shall include a copy of their current GSA Federal Supply Contract(s). Section XIII - Terms of Payment Payments shall be dispersed upon acceptable delivery of the following items: # Deliverable % 1 Penetration Test and Security Assessment 50% 2 Documentations (Reports and Presentations) 50% Section XIV - Contract Type: This is a firm-fixed unit price contract. Section XV - Evaluation of Proposals: The Courts intend to make an award to the responsible firm whose proposal represents the best value to the Courts. The Courts will perform an initial evaluation of each Offeror s proposal using the technical evaluation criteria stated below. The recommendation for award will be based upon the total points awarded for the technical evaluation of the written proposals plus the evaluation of the Offeror s price proposal for realism, reasonableness, and completeness. The Courts may award a contract upon the basis of initial offers received, without discussions. Therefore, each initial offer shall contain the Offeror's best terms from a cost and technical standpoint. If discussions are held with Offerors, all Offerors within the competitive range will be notified regarding the holding of discussions and will be provided an opportunity to submit written Final Proposal Revisions. Section XVI - Technical Evaluation Criteria The technical evaluation factors set forth below shall be used to evaluate each proposal. The maximum points for technical are 100 total points. The criteria for evaluating the proposals and their respective points are as follows: 8

EVALUATION CRITERIA MAXIMUM POINTS Technical Approach 0-40 Personnel Qualifications 0-30 Firm s Qualifications and Public Sector Experience 0-15 Past Performance 0-15 TOTAL 100 Section XVII - Price Proposal Evaluation The Courts will not rate or score price, but will evaluate each Offeror s price proposal for realism, reasonableness, and completeness. This evaluation will reflect the Offeror s understanding of the solicitation requirements and the validity of the Offeror s approach to performing the work. Alternative price proposals, if considered by the Courts, will be evaluated on contract type risk, potential savings, other advantages or disadvantages to the Courts, and the discretion of the government. Realism: The Courts will evaluate the realism of the proposed price by assessing the compatibility of proposed price with proposal scope and effect. In the evaluation, the Courts will consider the following: a. Do the proposed prices reflect a clear understanding of the requirements? b. Do the proposed prices for performing various functional service requirements reflect the likely costs to the Offeror in performing the effort with reasonable economy and efficiency? c. Are proposed prices unrealistically high or low? d. Are the proposed prices consistent with the technical and management /staffing approach (e.g., if the Offeror proposes a staff of x people, the price proposal must account for x people)? Reasonableness: In evaluating reasonableness, the Courts will determine if the Offeror s proposed prices, in nature and amount, do not exceed those, which would be incurred by a prudent contractor in the conduct of competitive business. 9

The assessment of reasonableness will take into account the context of the source selection, including current market conditions and other factors that may impact price. In the evaluation, the Courts will consider the following: a. Is the proposed price comparable to the independent Courts cost estimate? b. Is the proposed labor/skill mix sufficient to meet the Courts requirements based upon the Offeror s technical and management approach? Completeness: In evaluating completeness, the Courts will determine if the Offeror s provides pricing data of sufficient detail to fully support the offer and permit the Courts to evaluate the proposal thoroughly. In the evaluation, the Courts will consider the following: a. Does the proposed price include all price elements the Offeror is likely to incur in performing the effort? b. Are proposed price traceable to requirements? c. Do proposed price account for all requirements? d. Are all proposed prices supported with adequate data to permit a thorough evaluation? 10

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information