CISA manages a unique cybersecurity portfolio requiring a robust acquisition approach. We engage with prospective vendors to identify innovative cybersecurity solutions, share lessons learned, and solicit new opportunities to provide capacity building services to federal, state, local, tribal, and territorial government customers.
CISA is committed to supporting and improving acquisition strategy development, soliciting opportunities, and acquiring information technology tools and services to meet federal cybersecurity and information security goals while helping our stakeholders build cybersecurity capacity.
Doing Business to Support Cybersecurity Capacity Building Efforts: Industry Partners
Current and potential industry partners are encouraged to engage with CISA’s cybersecurity capacity building mission in a variety of ways, including the following:
- Capacity Building Vendor Outreach Program: CISA’s Capacity Building Vendor Outreach Program helps the agency collect and catalog capabilities to define future requirements for cybersecurity programs and collect information on best-in-class solutions. Conducting in-depth market research focused on capacity building programs and initiatives, the program includes coordinated engagements that cultivate staff understanding about current products, best practices, and upcoming trends through vendor-led demonstrations and presentations, and opportunities for future collaboration and discussion. For more information about vendor engagement opportunities, please submit a vendor engagement form.
- Continuous Diagnostics and Mitigation (CDM) Program’s Approved Products List (APL): The CDM APL is the authoritative catalog for approved products that meet CDM technical requirements. Software and hardware manufacturers and resellers can submit products for APL consideration monthly according to the CDM APL product submission calendar. CISA reviews each submission against established CDM Program criteria to validate the vendor’s claim that each product meets the requirements for the capability category for which it was submitted. CISA encourages cybersecurity original equipment manufacturers and others to regularly update and add new and innovative tools to the CDM APL. Please visit CDM APL for more information.
The following request for information (RFI) was posted on Dec. 20, 2022 and is INACTIVE as of Jan. 18, 2023:
Request for Information: Threat Intelligence Enterprise Services (TIES) Data Characteristics
- Notice ID: 47QFRA23K0007
- Overview: The purpose of this RFI is to assist the government in conducting market research focused on identifying industry partners who can furnish and provide commercial cyber threat intelligence (CTI) data for aggregation and integration into a CISA-sponsored Cyber Threat Intelligence Exchange Platform. These data characteristics and requirements include but are not limited to what is outlined at the link below.
- Response Date: Jan. 17, 2023, 2:00 p.m. EST
- For more information, visit SAM.gov
The following request for information (RFI) was posted on Nov. 16, 2022, and is INACTIVE as of Dec. 16, 2022:
Request for Information: Threat Intelligence Enterprise Services (TIES)
- Notice ID: 47QFRA23K0002
- Overview: The purpose of this RFI is to assist the government in conducting market research focused on potential offerors as well as to gain feedback from industry partners who can develop or configure a Cyber Threat Intelligence Exchange Platform and provide integration to customized CISA applications and commercial threat feed.
- For more information, visit https://sam.gov/opp/93a4740ad9ee4a1f959c933d8ae0b86a/view
Doing Business to Support Cybersecurity Capacity Building Efforts: Federal Customers
CISA works with federal stakeholders to gather requirements and develop, manage, and oversee innovative and complex cybersecurity acquisition strategies to provide commercial offerings to the federal enterprise. Potential federal partners are encouraged to engage with and use CISA’s cybersecurity capacity building program offerings.
Continuous Diagnostics and Mitigation Program
CISA’s Continuous Diagnostics and Mitigation (CDM) Program delivers cybersecurity tools, integration services, and dashboards to help participating agencies improve their security posture. The CDM Program was developed in 2012 to support government-wide and agency-specific efforts to provide risk-based, consistent, and cost-effective cybersecurity solutions to protect federal civilian networks across all organizational tiers.
CISA provides the following acquisition services and processes in support of the CDM Program for federal agencies.
CDM Dynamic and Evolving Federal Enterprise Network Defense (DEFEND)
CDM DEFEND is a series of task orders offering an all-encompassing approach for addressing CDM Program requirements. Each DEFEND task order is a single award Alliant Governmentwide Acquisition Contract (GWAC) executed by the awarded industry partner—the company responsible for installing and deploying CDM capabilities at federal civilian agencies. DEFEND offers a wide array of benefits to federal agencies, including flexibility, a streamlined procurement process, surge support for cybersecurity incidents, and optimal pricing by leveraging the federal government’s buying power.
The Office of Management and Budget (OMB) Memorandum 22-05, Fiscal Year 2021-2022 Guidance on Federal Information Security and Privacy Management Requirements, reinforces the importance of federal agencies using the CDM Program’s acquisition vehicles to procure agency tools and capabilities. Agencies are strongly encouraged to use current and future CDM acquisition vehicles.
Federal agencies interested in utilizing the DEFEND contract vehicle to procure information security continuous monitoring (ISCM) tools and services can contact us at email@example.com.
CDM Approved Products List (APL)
CISA manages the CDM APL and has ensured that approved CDM products are easily available for purchase by federal agencies through several options, including the CDM DEFEND contract vehicle, the Multiple Award Schedule (MAS) Information Technology (IT) contract (through GSA Advantage!), and the NASA SEWP CDM Catalog. Note that on GSA Advantage! all CDM APL products have a CDM tag, giving purchasers the confidence that these products are CDM approved. Please visit CDM APL for more information.
Cybersecurity Quality Services Management Office
CISA’s Cybersecurity Quality Services Management Office (Cyber QSMO) is the single shared service office for managing cybersecurity solutions for the U.S. government and potentially beyond. The program centralizes, standardizes, and offers high-quality cybersecurity services and capabilities to federal agency customers that meet or exceed government standards and requirements, and provides integration and adoption support. Robust acquisition management approaches for each initiative are required to ensure they are vetted and standardized cybersecurity services and vehicles provided with optimal cost savings.
Federal agencies can access these cybersecurity services by utilizing CISA cybersecurity acquisition vehicles.
More information on available CISA-funded services and vehicles to come.
Doing Business to Support Cybersecurity Capacity Building Efforts: SLTT Entities
- More information on Capacity Building opportunities for SLTT entities to come.
We’re hiring! CISA’s Capacity Building Acquisition and Budget team is seeking highly qualified professionals to fill mid- and senior-level positions. Capacity Building Acquisition and Budget staff are responsible for serving as advisors within CISA’s Capacity Building mission area and providing procurement and budget advice, guidance, and assistance to the organization. Acquisition staff develop innovative short- and long-term acquisition strategies and help build shared services programs to support the entire federal enterprise and SLTT entities.
Additionally, staff are responsible for planning, organizing, and carrying out major, substantive budgets for significant IT program components.
→ View the CB Acquisition and Budget Hiring Fact Sheet, June 2022 (PDF, 191KB)
To apply, please visit CISA Careers.
To learn more about collaborating with CISA to equip our customers to build their cybersecurity capacity, please email us at firstname.lastname@example.org.