SSA looks for cyber risk help

Shutterstock image. Copyright: Dgrilla.

WHAT: A Social Security Administration request for information on the availability of cybersecurity and risk management services to protect SSA programs and systems.

WHY: SSA is looking for services that will help it comply with the security requirements in the Office of Management and Budget Circular A-130 and the Federal Information Security Modernization Act of 2014. SSA also plans to implement an agencywide security program for its information systems and those operated by contractors on its behalf.

Officials are interested in security programs that can protect sensitive data across SSA's IT infrastructure, address security controls at the program level, and secure major applications, general support systems, IT resources and data.

The agency is also looking for continuous diagnostics and mitigation support via an existing Splunk software tool. Official would like to integrate the agency's CDM dashboards and data-mining scripts with the federal IT Dashboard to report metrics required under FISMA.

Furthermore, the agency wants to establish action plans to identify and compile information to satisfy security performance metrics defined by the White House, OMB and Department of Homeland Security. Services should include a quarterly review of CIO cybersecurity performance metrics, DHS' cross-agency priority goals and the White House's cyber scorecard key indicators, among others.

SSA officials said they are also contemplating contractor help with independent assessment of cloud computing services under the Federal Risk and Authorization Management Program.

Click here to read the RFI.

Posted by Mark Rockwell on Nov 04, 2016 at 12:50 PM


Featured

  • Cybersecurity
    Shutterstock photo id 669226093 By Gorodenkoff

    The disinformation game

    The federal government is poised to bring new tools and strategies to bear in the fight against foreign-backed online disinformation campaigns, but how and when they choose to act could have ramifications on the U.S. political ecosystem.

  • FCW PERSPECTIVES
    sensor network (agsandrew/Shutterstock.com)

    Are agencies really ready for EIS?

    The telecom contract has the potential to reinvent IT infrastructure, but finding the bandwidth to take full advantage could prove difficult.

  • People
    Dave Powner, GAO

    Dave Powner audits the state of federal IT

    The GAO director of information technology issues is leaving government after 16 years. On his way out the door, Dave Powner details how far govtech has come in the past two decades and flags the most critical issues he sees facing federal IT leaders.

Stay Connected

FCW Update

Sign up for our newsletter.

I agree to this site's Privacy Policy.