RISK MANAGEMENT FRAMEWORK AUTHORIZATION PACKAGES & ADMINISTRATION
The purpose of this update is to post the FINAL Q&A's for the subject requirement.
The purpose of Amendment #1 is to show the changes in Sections 1, 2, 3, 6, and 12 of the RFQ, and provide answers to questions received.
The Department of the Navy / Assistant for Administration (DON/AA) Navy Office of Information (CHINFO) has a requirement for the procurement of Risk Management Authorization packages and administration services. CHINFO manages all U.S. Navy content for Navy’s flagship websites, social media placements and digital archives. Ensuring the availability of these systems is a key part of the Navy’s public affairs effort. To accomplish this, and to satisfy the requirements of subchapter III of chapter 35 of Title 44, United States Code (U.S.C.), also known and referred to in this instruction as the “Federal Information Security Management Act (FISMA) of 2002” and to align with the requirements established in DoD 8510.01 Risk Management Framework (RMF) for DoD Information Technology (IT), CHINFO is contracting for information systems support. This Performance Work Statement (PWS) details the tasks required to accredit the existing systems.