| Requirement |
USCIS has a requirement for Cybersecurity Program Management and Development (CPMD). CPMD is scoped to obtain Program Management (PM) and Software Development (SD) professional services for USCIS Office of Information Technology (OIT), Information Security Division (ISD), to meet USCIS mission, goals, and developing a Cybersecurity Data Ecosystem (CDE). This will improve USCIS’s ability to identify, protect, respond, and recover from increased cybersecurity threats. The CDE is a framework that encompasses the collection, storage, processing, analysis, and sharing of data related to cybersecurity. The goal of this framework is to drive modularity and automation. CDE can include the integration of continuous intelligence sources, data storage that can exist in multiple forms, including data lakes, Security Information and Event Management (SIEMs), warehouses, and Cloud based storage buckets. A development pipeline promoting Security/Detections as Code through rigorous Continuous Integration and Continuous Deployment (CI/CD) methodologies, agile development, and visibility and tracking metrics. Individual security applications that make use of aforementioned data and continuous intelligence sources, external and third-party integrations, to include Application Programming Interface (API) interfaces, as well as performing orchestration and automations and integrating with external orchestration and automation infrastructure and tooling. CDE will also integrate into operations the capabilities of Artificial Intelligence/Machine Learning Operations (AI/ML Ops) to maximize the functionality and capability of individual security resources. GSA HACS 8(a) is anticipated to be used for this requirement. This requirement replaces CPSS, F2024066241. |
Update: 02/24/2025 - Requirement is being cancelled. USCIS will no longer pursue this effort.
USCIS has a requirement for Cybersecurity Program Management and Development (CPMD). CPMD is scoped to obtain Program Management (PM) and Software Development (SD) professional services for USCIS Office of Information Technology (OIT), Information Security Division (ISD), to meet USCIS mission, goals, and developing a Cybersecurity Data Ecosystem (CDE). This will improve USCIS’s ability to identify, protect, respond, and recover from increased cybersecurity threats. The CDE is a framework that encompasses the collection, storage, processing, analysis, and sharing of data related to cybersecurity. The goal of this framework is to drive modularity and automation. CDE can include the integration of continuous intelligence sources, data storage that can exist in multiple forms, including data lakes, Security Information and Event Management (SIEMs), warehouses, and Cloud based storage buckets. A development pipeline promoting Security/Detections as Code through rigorous Continuous Integration and Continuous Deployment (CI/CD) methodologies, agile development, and visibility and tracking metrics. Individual security applications that make use of aforementioned data and continuous intelligence sources, external and third-party integrations, to include Application Programming Interface (API) interfaces, as well as performing orchestration and automations and integrating with external orchestration and automation infrastructure and tooling. CDE will also integrate into operations the capabilities of Artificial Intelligence/Machine Learning Operations (AI/ML Ops) to maximize the functionality and capability of individual security resources. GSA HACS 8(a) is anticipated to be used for this requirement. This requirement replaces CPSS, F2024066241. |
Feb. 24, 2025 |
