Acquisition Planning Forecast System

Forecast Record Number: 

F2025069864 Print

U.S. Department of Homeland Security
Component: DHS HQ/CISA Published Date: Sept. 22, 2025, 3:05 p.m. Previously Published On: Sept. 19, 2025, 3:49 p.m.
NAICS: 541519 - Other Computer Related Services Competition: YES
Small Business Set-Aside: N/A Small Business Program: None
Contract Vehicle: GSA Schedule Contract Type: Labor Hour
Contract Status: New Requirement Anticipated Award Quarter: Q4 FY2026
Estimated Solicitation Release: 2026-05-01 Contract Complete: 2028-09-29
Requirements Title: Malware Analysis Support Services
Description: COCO intends to issue the RFQ under the GSA MAS SIN 54151HACS Cyber Hunt and Incident Response Subgroups in accordance with FAR Subpart 8.404 and FAR 8.405-2(c)(3)(iii)(B). The Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Division (CSD) Threat Hunting (TH) subdivision is seeking malware analysis subject matter expertise to support Threat Hunting’s Code and Media Analysis (CMA) Section. Malware analyst support personnel shall support CMA in providing forensic analysis and reverse engineering of malware in direct support of active Incident Response (IR) Branch engagements and Threat Hunting (TH) and Cybersecurity Division (CSD) priorities. The Contractor shall, under government supervision, assist in the evaluation and analysis of complex malicious code through the utilization of government provided tools. Support personnel shall be responsible for providing findings in technical reports with details of the malware, identification parameters, advanced capabilities, and mitigation strategies. Support shall also entail conducting research in the area of malicious software, vulnerabilities, and exploitation tactics.
Estimated Dollar Range: $10,000,000.00 to $20,000,000.00 Place of Performance: Arlington, VA
POC Name: Hannah Moussa Alternate POC Name: Jennifer Burbage
POC Phone: (202) 568-4157 Alternate POC Phone: (202) 935-6138
POC Email: [email protected] Alternate POC Email: [email protected]
Small Business Specialist/APFS Coordinator POC Name: Melody Hinkle
Small Business Specialist/APFS Coordinator POC Phone: (202) 812-0440 Small Business Specialist/APFS Coordinator POC Email: [email protected]

Change Log

Field Changed Old Value New Value Date Changed
Previous Published Date 09/12/2025 09/19/2025 Sept. 22, 2025
Published Date 09/19/2025 09/22/2025 Sept. 22, 2025
Last Updated Date 09/19/2025 09/22/2025 Sept. 22, 2025
Alternate Contact Email [email protected] [email protected] Sept. 22, 2025
Requirements Contact Email [email protected] [email protected] Sept. 22, 2025
Previous Published Date 08/21/2025 09/12/2025 Sept. 19, 2025
Published Date 09/12/2025 09/19/2025 Sept. 19, 2025
Last Updated Date 09/12/2025 09/19/2025 Sept. 19, 2025
Small Business Specialist/APFS Coordinator Email [email protected] [email protected] Sept. 19, 2025
Small Business Specialist/APFS Coordinator Last Name Milillo Hinkle Sept. 19, 2025
Small Business Specialist/APFS Coordinator First Name Nicholas Melody Sept. 19, 2025
Small Business Specialist/APFS Coordinator Phone (771) 888-5623 (202) 812-0440 Sept. 19, 2025
Previous Published Date 07/28/2025 08/21/2025 Sept. 12, 2025
Published Date 08/21/2025 09/12/2025 Sept. 12, 2025
Last Updated Date 08/21/2025 09/12/2025 Sept. 12, 2025
Contract Complete 09/24/2027 09/29/2028 Sept. 12, 2025
Requirement Solicitation #70RCSJ25Q00000166 was released 08/11/25 COCO intends to issue the RFQ under the GSA MAS SIN 54151HACS Cyber Hunt and Incident Response Subgroups in accordance with FAR Subpart 8.404 and FAR 8.405-2(c)(3)(iii)(B). The Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Division (CSD) Threat Hunting (TH) subdivision is seeking malware analysis subject matter expertise to support Threat Hunting’s Code and Media Analysis (CMA) Section. Malware analyst support personnel shall support CMA in providing forensic analysis and reverse engineering of malware in direct support of active Incident Response (IR) Branch engagements and Threat Hunting (TH) and Cybersecurity Division (CSD) priorities. The Contractor shall, under government supervision, assist in the evaluation and analysis of complex malicious code through the utilization of government provided tools. Support personnel shall be responsible for providing findings in technical reports with details of the malware, identification parameters, advanced capabilities, and mitigation strategies. Support shall also entail conducting research in the area of malicious software, vulnerabilities, and exploitation tactics. COCO intends to issue the RFQ under the GSA MAS SIN 54151HACS Cyber Hunt and Incident Response Subgroups in accordance with FAR Subpart 8.404 and FAR 8.405-2(c)(3)(iii)(B). The Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Division (CSD) Threat Hunting (TH) subdivision is seeking malware analysis subject matter expertise to support Threat Hunting’s Code and Media Analysis (CMA) Section. Malware analyst support personnel shall support CMA in providing forensic analysis and reverse engineering of malware in direct support of active Incident Response (IR) Branch engagements and Threat Hunting (TH) and Cybersecurity Division (CSD) priorities. The Contractor shall, under government supervision, assist in the evaluation and analysis of complex malicious code through the utilization of government provided tools. Support personnel shall be responsible for providing findings in technical reports with details of the malware, identification parameters, advanced capabilities, and mitigation strategies. Support shall also entail conducting research in the area of malicious software, vulnerabilities, and exploitation tactics. Sept. 12, 2025
Estimated Solicitation Release 08/11/2025 05/01/2026 Sept. 12, 2025
Award Quarter Q4 2025 Q4 2026 Sept. 12, 2025
Previous Published Date 06/11/2025 07/28/2025 Aug. 21, 2025
Published Date 07/28/2025 08/21/2025 Aug. 21, 2025
Last Updated Date 07/28/2025 08/21/2025 Aug. 21, 2025
Contract Complete 08/27/2027 09/24/2027 Aug. 21, 2025
Requirement The Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Division (CSD) Threat Hunting (TH) subdivision is seeking malware analysis subject matter expertise to support Threat Hunting’s Code and Media Analysis (CMA) Section. Malware analyst support personnel shall support CMA in providing forensic analysis and reverse engineering of malware in direct support of active Incident Response (IR) Branch engagements and Threat Hunting (TH) and Cybersecurity Division (CSD) priorities. The Contractor shall, under government supervision, assist in the evaluation and analysis of complex malicious code through the utilization of government provided tools. Support personnel shall be responsible for providing findings in technical reports with details of the malware, identification parameters, advanced capabilities, and mitigation strategies. Support shall also entail conducting research in the area of malicious software, vulnerabilities, and exploitation tactics. COCO intends to issue the RFQ under the GSA MAS SIN 54151HACS Cyber Hunt and Incident Response Subgroups in accordance with FAR Subpart 8.404 and FAR 8.405-2(c)(3)(iii)(B). Solicitation #70RCSJ25Q00000166 was released 08/11/25 COCO intends to issue the RFQ under the GSA MAS SIN 54151HACS Cyber Hunt and Incident Response Subgroups in accordance with FAR Subpart 8.404 and FAR 8.405-2(c)(3)(iii)(B). The Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Division (CSD) Threat Hunting (TH) subdivision is seeking malware analysis subject matter expertise to support Threat Hunting’s Code and Media Analysis (CMA) Section. Malware analyst support personnel shall support CMA in providing forensic analysis and reverse engineering of malware in direct support of active Incident Response (IR) Branch engagements and Threat Hunting (TH) and Cybersecurity Division (CSD) priorities. The Contractor shall, under government supervision, assist in the evaluation and analysis of complex malicious code through the utilization of government provided tools. Support personnel shall be responsible for providing findings in technical reports with details of the malware, identification parameters, advanced capabilities, and mitigation strategies. Support shall also entail conducting research in the area of malicious software, vulnerabilities, and exploitation tactics. Aug. 21, 2025
Previous Published Date None 06/11/2025 July 28, 2025
Published Date 06/11/2025 07/28/2025 July 28, 2025
Last Updated Date 06/11/2025 07/28/2025 July 28, 2025
Alternate Contact Email [email protected] [email protected] July 28, 2025
Requirements Contact Email [email protected] [email protected] July 28, 2025
Estimated Solicitation Release 06/30/2025 08/11/2025 July 28, 2025