The General Services Administration (GSA) is on track to award the next round of task orders in January and February 2015 as part of a cyber security monitoring program managed by the Department of Homeland Security (DHS), according to a GSA official.
Bids for Task Order 2A, which covers cyber security-related tools and services for DHS and its components, came in today and an award to a single contractor team is expected in January, Kristen Knapper, director, Civilian Sector of the Federal Systems Integration and Management Center at GSA, told Defense Daily on Wednesday at a cyber security conference hosted by Federal Computer Week.
GSA issued a solicitation on Monday for Task Order 2B, which will be for similar tools and services for the Departments of Agriculture, Energy, Interior, Transportation, the Executive Office of the President, Veterans Administration and Office of Personnel Management, with an award slated for February, Knapper told attendees. Bids are due in 30 to 40 days and an award to one contractor team is planned, she said.
The task orders will be made under the DHS-managed Continuous Diagnostics and Mitigation (CDM) program, which will allow federal civilian agencies to better monitor their cyber networks for anomalies and problems. GSA and DHS in August 2013 selected 17 teams, each led by a single vendor, to compete for task orders under the potential $6 billion CDM program.
In January 2014 GSA awarded the first task CDM task orders, worth a combined $60 million, to four companies to provide sensors that federal agencies could deploy to monitor their networks and respond to malicious traffic. The awardees were Hewlett Packard [HPQ], Knowledge Consulting Group, Northrop Grumman [NOC] and Technica. Those contracts have already resulted in $26 million in cost avoidance through the competitive pricing under CDM, GSA and DHS officials have said.
After Task Order 2B is awarded, GSA and DHS will pause before awarding the next four task orders under phase two of the CDM program, Knapper said. Although acquisition planning has begun for the next four task orders, the pause will allow lessons learned from the first two task orders to be incorporated into the proposals for the succeeding ones, she said.
The four remaining task orders in phase two are expected to move forward in two week increments beginning next spring, Knapper said.
She described the phase two task orders as basically gap fillers, which will help federal agencies get to a minimum baseline. According to GSA’s CDM website, the main goal of phase two is least privilege, which refers to restricted access to information on a computer network, and infrastructure integrity.
John Streufert, director of Federal Network Resilience within DHS’ Office of Cybersecurity and Communications, told attendees that DHS is testing a computing security dashboard supplied by RSA, the security division of EMC Corp. He said the commercial off the shelf RSA Archer dashboard offered the highest value at the lowest cost.
Streufert said the dashboard will be available for other agencies to purchase. More information about the dashboard and the testing will be available in early 2015, he said.
The federal CDM dashboard is supposed to give DHS more visibility into the state of network security within each federal agency.