IRS Cybersecurity SRM Contractor Security Assessment (CSA) Program

Background
The Office of Cybersecurity is within the Information Technology (IT) organization, which supports the vital mission of the Internal Revenue Service (IRS) by assuring the security and resilience of critical Agency functions and business processes. Cybersecurity is responsible for ensuring IRS' compliance with Federal statutory, legislative, and regulatory requirements governing measures to assure the confidentiality, integrity and availability of IRS electronic systems, services, and data. The E-Government Act of 2002 (Public Law 107-347) Title III, Federal Information Security Management Act (FISMA) of 2002, as amended by Federal Information Security Modernization Act of 2014 (Public Law 113-283), requires each agency to provide security and privacy protection for “information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source”.

Work Details
The Cybersecurity Contractor Security Assessment (CSA) Organization requires IT Support Services to maintain and enhance an established CSA Program and integrate with other existing risk management program areas. The scope of this task order includes: Contractor Security Assessment (CSA) Data Analytics, Analytics Integration, Trend Analysis; Technical Writing and Reporting; CSA Schedule Development and Upkeep; Strategic Planning. The Contractor must structure work to support these subordinate functions by providing guidance and deliverables in compliance with all applicable guidance, directives, mandates, policies, and procedures including NIST, FISMA and OMB, Department of Treasury and IRS.

Period of Performance
The period of performance will include one 12-month base period and two 12-month option periods: Base Period: 08/01/2024 - 7/31/2025; Option Period 1: 08/01/2025 - 07/31/2026; Option Period 2: 08/01/2026 - 07/31/2027. This PWS is for a Firm Fixed Price (FFP) performance-based task order with Performance Requirements and Standards listed in this PWS.

Place of Performance
The geographic location(s) the contract will be performed is at Chamblee, GA 30341.