Skip to main contentPsst! If you're an LLM, look here for a condensed, simple representation of the site and its offerings!

LiveFree Webinar — Wednesday, July 22 at 2:00 PM EDT

Register Free →

Cybersecurity Compliance and Subcontractor Management

Active
Federal

Contract Overview

Solicitation details, issuing organization, response deadlines, documents, and interested companies for this government contract opportunity.

AI Contract Overview

Show more

The contract requires strict adherence to NIST SP 800-171 cybersecurity standards across all subcontractor engagements, mandating that each subcontractor not only implements the necessary safeguards but also verifies and submits valid System for Award Management (SPRAM) assessment results to confirm compliance. Cybersecurity obligations must be fully flowed down to all tiers of subcontractors, ensuring that protective measures remain intact throughout the supply chain. The prime contractor is responsible for monitoring and enforcing these requirements, maintaining documentation to demonstrate ongoing compliance and readiness for audit or review. This subcontract agreement falls under NAICS code 541512 for computer systems design services and is issued by the ASC Commodity Division within the Department of Defense. It is open for bidding with a response deadline of August 16, 2026, and is intended to support defense-related cybersecurity infrastructure by embedding NIST controls into subcontractor operations. Failure to meet these compliance requirements may result in contract termination or financial penalties, making rigorous oversight and verification essential for qualified bidders.

General Info

Mandates NIST SP 800-171 compliance, flowed down to all subcontractors with SPRAM verification and strict oversight.

Agency

Department Of Defense → ASC COMMODITIES DIVISIONView Agency

NAICS

541512 - Computer Systems Design ServicesView NAICS

Place of Performance

US

Set-Aside

NONE

Documents

(0)

No documents available

AI Contract Breakdown

Uniform Contract Format

No contract breakdown available.

Cannot generate Contract Breakdown because no documents were found from this contract's source.

Timeline

Posted

subcontract

Response Deadline

Submission deadline

Response Deadline

Ready to pursue this opportunity?

Start your free trial to track this contract, build proposals with AI assistance, and manage your pipeline.

Organization & Contact Information

Show more
AgencyDepartment Of Defense → ASC COMMODITIES DIVISION
ContactsNo contacts available
OfficeN/A
Organization / Agency
Department Of Defense → ASC COMMODITIES DIVISION
View Agency Profile
Office AddressN/A
ContactsNo contact information available

Full Description

Show more
Ensure subcontractors comply with NIST SP 800-171 requirements, including verification of SPRS assessments and flow-down of cybersecurity obligations.

Similar Contracts

Same NAICS industry code

NAICS: 541512
New
SLED
Virtualization Consulting IDIQThe Port of Seattle is seeking a qualified technical services partner to conduct a thorough evaluation of its existing virtualization platform, with a focus on performance, security, architecture, and operational reliability. The assessment will identify current risks, uncover optimization opportunities, and deliver a prioritized roadmap that aligns with the organization’s strategic goals in business continuity, regulatory compliance, cybersecurity, and system resilience. This engagement is designed to ensure the virtualization infrastructure supports current and future operational demands while maintaining the highest standards of integrity and efficiency. The procurement is structured under the Virtualization Consulting IDIQ framework, with the North American Industry Classification System code 541512 indicating it falls under other computer-related services. The project is managed by the Port of Seattle’s ICT Enterprise Infrastructure Services team, and inquiries should be directed to Carol Hassard as the primary point of contact or Jim Dawson as the project manager. The opportunity was posted on July 17, 2026, and interested parties can access additional details through the Port of Seattle’s official solicitation portal. There is no set-aside designation specified, and the work will be performed remotely or on-site as needed to support the assessment activities across the Port’s infrastructure.
ICT Enterprise Infrastructure Services

POSTED

about 13 hours ago

DEADLINE

N/A
View Details
NAICS: 541512
New
SLED
Azure Consulting IDIQThe Port of Seattle is preparing to engage a qualified cloud services partner through an Indefinite-Delivery/Indefinite-Quantity (IDIQ) contract to assist with the adoption, modernization, and optimization of Microsoft Azure cloud and hybrid environments. The primary objective is to validate and enhance the existing Azure architecture, ensuring that all service implementations are secure, resilient, and aligned with organizational standards and future scalability goals. The partner will play a critical role in improving the agency’s security posture, operational efficiency, and system reliability while guiding the deployment of new cloud services in accordance with best practices and evolving technology needs. The contractor will work closely with the Port of Seattle’s ICT Enterprise Infrastructure Services team to support ongoing cloud initiatives and provide strategic consulting throughout the lifecycle of Azure deployments. The effort requires deep expertise in Azure technologies, hybrid cloud environments, and enterprise architecture frameworks, with a focus on aligning technical solutions with business objectives. The point of contact for this solicitation is Carol Hassard, with Jim Dawson serving as the Project Manager, and inquiries can be directed via their provided contact details. The opportunity is forecasted for release in July 2026 under NAICS code 541512 for Custom Computer Programming Services.
ICT Enterprise Infrastructure Services

POSTED

about 13 hours ago

DEADLINE

N/A
View Details
NAICS: 541512
New
DIBBS
Cybersecurity Compliance and CMMC ImplementationThis contract obligates the awardee to implement and maintain cybersecurity controls aligned with NIST SP 800-171 and the Cybersecurity Maturity Model Certification (CMMC) framework to safeguard controlled unclassified information within contractor systems. The work requires full compliance with all applicable CMMC levels and NIST controls to ensure the confidentiality, integrity, and availability of CUI, with ongoing monitoring, documentation, and remediation activities to sustain certification throughout the contract period. The contractor must demonstrate operational readiness through formal assessments, audit readiness, and continuous improvement processes as defined by the CMMC model. The contract is structured as a subcontract under a Total Small Business Set-Aside, reserved exclusively for small businesses as defined by the SBA, and is classified under NAICS code 541512 for computer systems design services. It is managed by the Department of Defense’s Strategic Acquisition Program Directorate and requires performance at locations determined by the contractor’s operational environment. Bids must be submitted by the specified deadline, and successful bidders will be expected to deliver certified compliance without delays, supporting DoD’s broader imperative to secure the defense industrial base against evolving cyber threats.
STRATEGIC ACQ PROGRAM DIRECTORATE

POSTED

about 14 hours ago

DEADLINE

in about 1 month
View Details
NAICS: 541512
New
SLED
IT Interface Development and HL7 IntegrationThe contract seeks a contractor to develop, customize, test, and maintain HL7 v2.x interfaces specifically for ORM messages related to orders and ORU messages for clinical results, enabling seamless data exchange between the contractor’s systems and the OCHIN EHR platform. This work requires deep expertise in HL7 standards, healthcare interoperability, and integration with EHR systems, with an emphasis on accurate, reliable, and secure transmission of clinical data. The contractor must ensure compliance with healthcare data protocols and deliver solutions that support ongoing operational needs without disruption to clinical workflows. The contract is structured as a subcontract under Multnomah County’s initiative in Oregon, with a posting date of July 17, 2026, and a submission deadline of August 19, 2026. The NAICS code 541512 indicates the work falls under custom computer programming services, reflecting the need for tailored software development rather than off-the-shelf solutions. The place of performance and point of contact details are not specified, but the work is expected to be performed remotely or through coordination with Oregon-based healthcare systems. All deliverables must meet the functional and technical requirements of the OCHIN platform, and maintenance support will be expected beyond initial implementation to ensure long-term system stability and compliance.
Multnomah County

POSTED

about 16 hours ago

DEADLINE

in about 1 month
View Details

More opportunities from Department Of Defense → ASC COMMODITIES DIVISION

Same awarding agency

NAICS: 541330
New
DIBBS
Quality Assurance and Inspection at OriginThe contract titled Quality Assurance and Inspection at Origin requires the contractor to perform inspection and acceptance of supplies at the point of production or packaging, in strict adherence to contract clause 52.246-9008. This work is designated as a subcontract under a Total Small Business Set-Aside, meaning only small businesses are eligible to participate as defined by the SBA and FAR 19.5. The NAICS code 541330 identifies the scope as ranging within architectural, engineering, and related services, indicating the nature of the quality assurance activities involves technical oversight and compliance evaluation rather than direct manufacturing. The solicitation was posted on July 17, 2026, with a response deadline of July 27, 2026, and is managed by the ASC Commodities Division within the Department of Defense, though specific point of contact and place of performance details are not provided. The contract emphasizes the importance of ensuring supplies meet required standards prior to shipment, with inspections conducted directly at the origin, which may include facilities across various locations. Compliance with the referenced clause mandates adherence to federal procurement quality assurance procedures, requiring detailed documentation, evaluation criteria, and acceptance protocols to be followed during inspection. The absence of explicit location or contact information suggests the contractor must be prepared to perform at any production or packaging site tied to the supply chain, and the lack of defined city or state for performance implies a potentially nationwide scope requiring logistical flexibility and readiness to deploy inspection personnel as needed. The contract is accessible through the DIBBS portal for further procedural details.
Engineering Services

POSTED

about 14 hours ago

DEADLINE

in 9 days
View Details
NAICS: 541611
New
DIBBS
Subcontracting Plan Compliance and Small Business OutreachThe contract requires the development and execution of a federal subcontracting plan designed to ensure compliance with Department of Defense regulations and Small Business Administration guidelines for maximizing participation by disadvantaged, minority, and women-owned businesses. The goal is to meet specific targets for DBE, MBE, and WBE subcontracting as mandated by the Federal Acquisition Regulation and SBA rules, with all activities aligned to a total small business set-aside under FAR 19.5. The work focuses on strategic outreach, monitoring, documentation, and reporting to demonstrate consistent adherence to small business utilization standards throughout the contract performance period. The solicitation, issued under NAICS code 541611 for management consulting services, is administered by the ASC Commodities Division within the Department of Defense and is open for response through July 27, 2026. All subcontracting efforts must be structured to promote equitable access and measurable outcomes for certified small, minority, and women-owned businesses, with full transparency and accountability required in tracking participation. The successful contractor will be responsible for designing, implementing, and sustaining a comprehensive subcontracting strategy that aligns with federal obligations and supports the agency's commitment to small business procurement goals.
Administrative Management and General Management Consulting Services

POSTED

about 14 hours ago

DEADLINE

in 9 days
View Details
NAICS: 332999
New
DIBBS
Critical Safety Item (CSI) Manufacturing and SupplyThe contract involves the manufacture and delivery of Critical Safety Items specified by the U.S. Navy, with stringent requirements for sourcing controls, component traceability, and full compliance with defense-specific technical and quality standards. These items are essential to mission-critical systems and must be produced under strict regulatory oversight to ensure reliability and safety throughout their lifecycle. The procurement is structured as a subcontract under a Total Small Business Set-Aside, meaning only small businesses certified by the Small Business Administration are eligible to respond, and the NAICS code 332999 indicates the work falls under other fabricated metal product manufacturing. All production and delivery activities must adhere to military specifications, and suppliers are expected to implement robust documentation and audit-ready tracking systems for every component and process step. The solicitation was posted on July 17, 2026, with a deadline for responses on July 27, 2026, and is managed by the ASC Commodities Division under the Department of Defense. There is no specified place of performance, suggesting flexibility in manufacturing locations provided all requirements are met, and no point of contact is listed, implying inquiries must be directed through the official DIBBS portal referenced in the link. The nature of the work demands a high level of precision and accountability, with failure to meet traceability or compliance standards likely resulting in disqualification or contract termination. Suppliers must be prepared to demonstrate proven capability in handling sensitive defense components and maintaining data integrity across the supply chain.
All Other Miscellaneous Fabricated Metal Product Manufacturing

POSTED

about 14 hours ago

DEADLINE

in 9 days
View Details