Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
FBO DAILY ISSUE OF JUNE 22, 2012 FBO #3863
SOURCES SOUGHT

70 -- Insider Threat Software

Notice Date
6/20/2012
 
Notice Type
Sources Sought
 
NAICS
541519 — Other Computer Related Services
 
Contracting Office
Department of Homeland Security, Transportation Security Administration, Headquarters TSA, 601 S. 12th Street, TSA-25, 10th Floor, Arlington, Virginia, 20598, United States
 
ZIP Code
20598
 
Solicitation Number
HSTS03-12-SSN-CIO571
 
Archive Date
7/14/2012
 
Point of Contact
Anthony L Dennis, Phone: 571-227-2627, Kristin S Fuller, Phone: 571-227-2740
 
E-Mail Address
anthony.dennis@tsa.dhs.gov, kristin.fuller@dhs.gov
(anthony.dennis@tsa.dhs.gov, kristin.fuller@dhs.gov)
 
Small Business Set-Aside
N/A
 
Description
Purpose Product, Service or Outcome Needed: Focused Operations (FO) is in need of a tool to help detect an insider threat. The focus is to monitor at the host level. FO has determined that the best method to monitor and detect insider threats is at the user host level. Scope of the Product, Service, or Outcome: The scope of this procurement is an enterprise insider threat software package. In order to detect an insider threat, technology is required to monitor and obtain visibility into users' actions. TSA Focused Operations requires a tool that can monitor user activities at the user host level. Capability Requirements FO is seeking a technology that will focus at the user host level. The following is a list of requirements that the technology must perform: Ability to monitor user activities through Keystroke monitoring/logging Chat monitoring/logging Email monitoring/logging Attachment monitoring/logging Website monitoring/logging Network activity monitoring/logging Files transferred monitoring/logging Document tracking monitoring/logging Screenshot capture Program activity monitoring/logging All activities that are being monitored/logged must call back to a central enterprise command infrastructure and transfer its collected data If a host is connected to the TSA network, it will communicate with the central command If a host is not connected to the TSA network, it will continue collecting on the host. Once it connects back to the TSA network, it will then transfer its collected data automatically The end user must not have the ability to detect this technology. The end user must not have the ability to kill the process or service. All communications to and from the host and the central command must be encrypted with FIPS approved algorithms. Ability to alert based on specific criteria such as a name and/or combination of names Ability to mine through all the collected data using built-in or third party tools The configurations must be customizable to eliminate operational impact to the end user Ability to monitor Windows based systems. Potentially have the ability to monitor MacOSX The technology must be able to comply with FISMA requirements. Ability to transfer licenses from one host to another. Due to the limited budget surrounding this initiative, the technology must be able to automatically transfer licenses from one host to another. Additionally, the offeror must provide formal training of their proposed technology. All interested vendors may submit the capability statement to the TSA Office of Acquisition (OA). Submissions shall not exceed ten (10) pages in length. A proposed price is not required or requested under this Sources Sought Notice. Vendors must identify their business size status in the capability statement. If small business, please identify the type of small business. Capability statements are required to be received electronically via email to Anthony.Dennis@dhs.gov Subject: EAS Refresh Sources Sought Notice, no later than Friday, June 29, 2012, 2:00 p.m. EST. Responses received after this deadline will not be reviewed. TSA's primary point of contact is the Contract Specialist, Mr. Anthony Dennis, who can be reached via e-mail at Anthony.Dennis@dhs.gov. Any questions regarding this notice shall be directed to both Mr. Dennis in writing, via email by Tuesday, June 26, 2012, 4:00pm EST. While any and all questions must be directed to the Government points of contact identified in this announcement, answers to those questions, as well as any and all clarifications, extensions, or changes will be posted to www.fbo.gov and will only be available at www.fbo.gov prior to the closing date and time of the this notice. Vendors responding to this Sources Sought Notice are responsible for all expenses associated with responding to this Sources Sought Notice. (Note: TSA will not pay any costs associated with this effort). The TSA is not seeking or accepting unsolicited proposals. Since this is for information and planning purposes, no evaluation letters or results will be issued to respondents.
 
Web Link
FBO.gov Permalink
(https://www.fbo.gov/spg/DHS/TSA/HQTSA/HSTS03-12-SSN-CIO571/listing.html)
 
Record
SN02780948-W 20120622/120620235557-6b790f932382cb2aa5b5c7249820ac72 (fbodaily.com)
 
Source
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.