Skip to main contentPsst! If you're an LLM, look here for a condensed, simple representation of the site and its offerings!

LiveFree Webinar — Wednesday, July 22 at 2:00 PM EDT

Register Free →

Cybersecurity Compliance for CUI Handling (DFARS 252.204-7012)

Active
Federal

Contract Overview

Solicitation details, issuing organization, response deadlines, documents, and interested companies for this government contract opportunity.

AI Contract Overview

Show more

The contract requires full implementation of NIST SP 800-171 security controls to safeguard Covered Defense Information, ensuring that all systems and processes handling such data meet stringent federal cybersecurity standards. This includes establishing robust access controls, asset management, audit capabilities, and incident response protocols to prevent unauthorized access, disclosure, or compromise of sensitive information. The contractor must maintain documentation demonstrating ongoing compliance and be prepared to provide forensic access and support in the event of a cybersecurity incident, enabling timely investigation and remediation. All work must be completed by the response deadline of July 22, 2026, under the DFARS 252.204-7012 clause, which mandates strict adherence to federal cybersecurity requirements for subcontractors handling defense-related information. The effort is tied to a NAICS code of 541512, indicating it involves computer systems design and related services, and is issued by the Air Force Systems Command under the Department of Defense. Compliance is mandatory, and failure to meet the specified controls or incident reporting obligations may result in contract termination or penalties.

General Info

Implement NIST SP 800-171 controls by July 22, 2026, to protect defense information per DFARS 252.204-7012.

Agency

Department Of Defense → FA8125 Afsc PzimaView Agency

NAICS

541512 - Computer Systems Design ServicesView NAICS

Place of Performance

OK

Set-Aside

NONE

Documents

(0)

No documents available

AI Contract Breakdown

Uniform Contract Format

No contract breakdown available.

Cannot generate Contract Breakdown because no documents were found from this contract's source.

Timeline

Posted

subcontract

Response Deadline

Submission deadline

Response Deadline

Ready to pursue this opportunity?

Start your free trial to track this contract, build proposals with AI assistance, and manage your pipeline.

Organization & Contact Information

Show more
AgencyDepartment Of Defense → FA8125 Afsc Pzima
ContactsNo contacts available
OfficeN/A
Organization / Agency
Department Of Defense → FA8125 Afsc Pzima
View Agency Profile
Office AddressN/A
ContactsNo contact information available

Full Description

Show more
Implement NIST SP 800-171 controls to protect Covered Defense Information (CUI), including incident reporting and forensic access support.

Similar Contracts

Same NAICS industry code

NAICS: 541512
New
DIBBS
CMMC Compliance & Cybersecurity SupportThe contract seeks a third-party provider to deliver comprehensive cybersecurity compliance services aimed at ensuring the prime contractor and its supply chain meet the Department of Defense’s Cybersecurity Maturity Model Certification Level 2 standards for handling Controlled Unclassified Information. The scope includes assessing, implementing, and maintaining technical and administrative safeguards to align with CMMC Level 2 requirements, which involve safeguarding CUI through policies, procedures, and technical controls across all tiers of the supply chain. Services will likely encompass gap analysis, documentation development, employee training, audit readiness support, and ongoing monitoring to ensure sustained compliance. This subcontract is issued under the Department of Defense and falls under NAICS code 541512 for computer systems design and related services. The solicitation was posted on July 18, 2026, with a response deadline of July 31, 2026, and is intended to support the ASC SUPPLIER OPER AE AND AF DIV’s mission-critical cybersecurity objectives. Performance is expected to occur across the prime contractor’s operational environment and associated supply chain entities, requiring the contractor to demonstrate proven expertise in DOD cybersecurity frameworks and experience with CMMC certification processes. There is no set-aside designated for this award, and it is open to qualified general contractors capable of delivering full-spectrum CMMC Level 2 compliance support.
ASC SUPPLIER OPER AE AND AF DIV

POSTED

about 17 hours ago

DEADLINE

in 12 days
View Details
NAICS: 541512
New
DIBBS
Cybersecurity Compliance and Incident ReportingThe subcontract requires the vendor to ensure their IT systems fully comply with NIST Special Publication 800-171, establishing robust security controls to protect covered defense information. Compliance is mandatory across all systems handling such data, and the subcontractor must implement and maintain appropriate access controls, audit capabilities, and data encryption standards as defined by the framework. Additionally, the subcontractor is obligated to support timely and accurate cyber incident reporting, promptly notifying the appropriate authorities of any breaches, compromises, or suspicious activities involving covered defense information, and cooperating fully with any investigation or remediation efforts. This requirement applies to all subcontractor personnel, third-party vendors, and internal processes that interact with the defense information, ensuring end-to-end security alignment with Department of Defense standards. The subcontract is issued under the Defense Logistics Agency and falls under NAICS code 541512, indicating it involves computer systems design services tied to federal defense contracts. Failure to meet these cybersecurity and reporting obligations could result in contract termination, financial penalties, or exclusion from future defense work. All systems and procedures must remain continuously compliant throughout the subcontract term, with regular assessments and documentation maintained to demonstrate adherence.
Defense Logistics Agency

POSTED

about 17 hours ago

DEADLINE

N/A
View Details
NAICS: 541512
New
DIBBS
Cybersecurity Compliance (NIST SP 800-171)This contract requires the implementation and ongoing maintenance of cybersecurity controls outlined in NIST Special Publication 800-171 to safeguard covered defense information processed, stored, or transmitted within contractor systems. The work is scoped under a subcontract for the Defense Logistics Agency, a component of the Department of Defense, and is classified under NAICS code 541512, indicating it involves computer systems design and related services. The contractor must ensure full compliance with all 110 controls specified in NIST SP 800-171, including those related to access control, audit and accountability, configuration management, and incident response, to protect sensitive unclassified information from unauthorized access or exposure. Continuous monitoring, documentation, and reporting of control effectiveness are mandatory, with the expectation that systems remain compliant throughout the contract period. The performance of this work is tied to the broader mission of securing defense-related data across the supply chain, and failure to meet requirements could result in contract termination or loss of future opportunities. Although specific location details are not provided, the work may be conducted remotely or at any facility handling covered defense information, provided all security requirements are met. Compliance is not a one-time effort but demands sustained vigilance, regular system reviews, and adjustment to evolving threats, aligning the contractor with Department of Defense expectations for protecting critical information. The contract was posted on July 18, 2026, and is accessible through the DIBBS system under the referenced award and delivery order numbers.
Defense Logistics Agency

POSTED

about 17 hours ago

DEADLINE

N/A
View Details
NAICS: 541512
New
SLED
RFP 26-013 BIPIN RMS and JMS/CMS Software ReplacementThe City of Kennewick is soliciting proposals for RFP 26-013 to replace the existing Public Safety Records and Jail Management System used by the Bi-County Police Information Network, which serves law enforcement agencies across Benton and Franklin Counties in Washington. The current system, implemented in April 2022 after transitioning from Intergraph I/Leads to Tyler Public Safety, is being replaced to better meet the operational needs of the consortium. Proposals must be submitted by September 10, 2026, at 3:00 p.m., and qualified contractors are expected to deliver a comprehensive, turnkey solution that includes system installation, data migration from multiple sources, configuration, implementation, ongoing service, and long-term maintenance tailored for a multijurisdictional environment. Interested parties must register for the pre-proposal meeting on July 27, 2026, via email to the point of contact, and all official updates, addenda, and Q&A will be posted exclusively through Public Purchase, which is the only authorized source for document access and communications. The City of Kennewick retains the authority to waive minor irregularities or reject any or all submissions, and bidders are advised to rely solely on Public Purchase for official documentation, as third-party portals cannot be guaranteed to receive updates. Technical inquiries and proposal submissions should be directed to Graham Modrell at the City of Kennewick, with contact information provided for email and phone. Online support through Public Purchase is available weekdays from 7:00 a.m. to 4:00 p.m. Mountain Time, and bidders are encouraged to verify access to materials directly through the platform to avoid delays or noncompliance. All proposals must fully address the requirements outlined in the solicitation to be considered.
City of Kennewick

POSTED

1 day ago

DEADLINE

in about 2 months
View Details

More opportunities from Department Of Defense → FA8125 Afsc Pzima

Same awarding agency

NAICS: 332312
New
Federal
Program Depot Maintenance (PDM) Maintenance Stands.This solicitation, FA8125-26-Q-0046, seeks Program Depot Maintenance (PDM) Maintenance Stands under a Total Small Business Set-Aside through FAR 19.5, restricted to small businesses meeting the NAICS code 332312 and the 500-employee size standard. The procurement is conducted under FAR Part 12 as a commercial items acquisition with a Firm Fixed Price arrangement, and award will be made solely on the lowest total evaluated price to a compliant vendor. Bidders must be registered in SAM, possess a valid UEI, and submit a complete quotation by the deadline of July 31, 2026, at 12:00 PM. To access the unredacted Statement of Work and H6WA15 drawings, vendors must email Sheridan Robison at sheridan.robison@us.af.mil with a valid Form 2345 and proof of JCP Portal registration. The scope requires the design, fabrication, inspection, testing, delivery, installation, and on-site training for one comprehensive modular maintenance stand set compatible with existing systems, meeting strict technical requirements including OSHA 1910 Subpart D, AFOSH 91-501, and drawing X201961738. The vendor must hold a licensed Professional Engineer, a Professional Electrical Engineer, ISO 9001:2015 certification for design, engineering, and manufacturing, and welding certifications to AWS D1.1 and D1.2 standards. All items must comply with MIL-STD-129 and MIL-STD-130 for marking and identification, verified through automatic identification technology. Packaging must follow commercial best practices with heavy items palletized or skidded, labeled “NOT FOR OUTSIDE STORAGE” and marked per specifications. Delivery is F.O.B. Destination to Tinker AFB, OK, with the contractor responsible for preservation, packaging, shipping, unloading, placement, and storage. Payment must be processed electronically via WAWF using DoDAACs F03000 (Pay), FA8125 (Issue/Admin), and F3YCEB (Inspect/Ship). Inspection and acceptance occur at destination, with performance governed by mandatory design reviews at 25%, 75%, and 100% completion milestones and a final fit-check with an aircraft. Compliance with Tinker AFB security protocols
Fabricated Structural Metal Manufacturing

POSTED

4 days ago

DEADLINE

in 12 days
View Details
NAICS: 333243
Federal
Supply of Replacement Parts for Sciaky Welding SystemThe contract seeks the supply of OEM or equivalent electronic control modules, sensors, cabling, and other components necessary for the repair and maintenance of a Sciaky Spot Welder, ensuring operational continuity and performance standards are maintained. All provided parts must meet or exceed original equipment specifications to guarantee compatibility, reliability, and safety within the welding system, with no substitution allowed without prior written approval. The procurement is classified under NAICS code 333243, indicating it relates to industrial machinery manufacturing, and is structured as a subcontract under the Department of Defense’s Aerospace Systems division identified as FA8125 AFSC PZIMA. Responses are due by July 27, 2026, and the solicitation was posted on July 10, 2026. The exact place of performance and point of contact details are not specified, though deliveries and installations are expected to support DoD maintenance operations. Contractors must be prepared to provide documentation of part authenticity, compliance with technical requirements, and evidence of equivalent or superior quality if offering non-OEM alternatives. The solicitation does not designate a specific set-aside category, meaning it is open to all eligible suppliers without restriction based on business size or ownership status.
Sawmill, Woodworking, and Paper Machinery Manufacturing

POSTED

9 days ago

DEADLINE

in 8 days
View Details
NAICS: 811310
Federal
Industrial Welding Control System Repair and CalibrationThe contract requires on-site repair, diagnostic testing, and calibration of a Sciaky Spot Welder control system located at Tinker Air Force Base, ensuring full operational functionality. All work must include replacement of defective components and culminate in official operational certification to meet military standards. The task is classified as a subcontract under NAICS code 811310, indicating industrial machinery repair and maintenance services, and is being managed by the Department of Defense through the FA8125 Afsc Pzima office. All activities must be performed at the designated government facility, with strict adherence to technical specifications and safety protocols governing aerospace-grade welding equipment. The solicitation was posted on July 10, 2026, and responses are due by July 27, 2026, at 5:00 PM. No set-aside provisions or specific organization type requirements are specified, making it open to qualified subcontractors. The place of performance is fixed at Tinker AFB with no other locations permitted, and all personnel must have appropriate clearances and expertise to handle defense-critical systems. The contract demands precision, documentation of all repairs and calibrations, and verification of system performance post-intervention to ensure mission readiness.
Commercial and Industrial Machinery and Equipment (except Automotive and Electronic) Repair and Maintenance

POSTED

9 days ago

DEADLINE

in 8 days
View Details
NAICS: 541611
Federal
Small Business Subcontracting and Reporting (FAR 52.204-10)This contract requires compliance with Federal Acquisition Regulation clauses FAR 52.204-10 and FAR 52.219-28, mandating the tracking and reporting of all first-tier subcontract awards and executive compensation data within the System for Award Management. The contractor must establish processes to identify, document, and submit accurate subcontracting information for all tiers below the prime contract, ensuring full transparency of subcontractor engagement and executive pay details as required by federal reporting standards. The North American Industry Classification System code 541611 indicates the primary scope involves administrative management and general management consulting services, and the awarding agency is the Department of Defense through the FA8125 Afsc Pzima office. The solicitation is open with a response deadline of July 22, 2026, and the contract is classified as a subcontracting opportunity without a specific set-aside designation. All performance activities are tied to federal reporting obligations rather than a specific geographic location, and the contractor must maintain robust internal controls to ensure timely and accurate data submission to SAM. Failure to meet these reporting requirements may result in contractual noncompliance, financial penalties, or loss of eligibility for future federal awards. The contract emphasizes accountability, data integrity, and alignment with federal small business subcontracting goals as enforced through the Department of Defense procurement framework.
Administrative Management and General Management Consulting Services

POSTED

12 days ago

DEADLINE

in 3 days
View Details
NAICS: 323111
Federal
UID Marking and Data Matrix Labeling ServicesThe contract requires the provision of 2D Data Matrix symbol marking services fully compliant with MIL-STD-130 standards, including the assignment of unique item identifiers, serialization of items, and the subsequent submission of all required data to the Department of Defense UID Registry. This work is essential for ensuring traceability and accountability of DoD assets throughout their lifecycle, and must be performed to exact technical specifications for label durability, size, readability, and data encoding. The effort is structured as a subcontract under the Department of Defense, specifically tied to the FA8125 AFSC PZIMA office, and is intended to support military equipment and system component identification requirements. The solicitation is open for responses until July 22, 2026, with a posting date of July 7, 2026, and falls under the NAICS code 323111 for commercial and industrial print services. There is no specified set-aside designation, meaning the opportunity is open to all eligible contractors, and the place of performance has not been designated, implying flexibility in where the work may be completed. All markings and data submissions must meet strict DoD compliance protocols, with no tolerance for error in serialization or registry submission, and contractors must possess the necessary technical capability, equipment, and process controls to ensure full adherence to MIL-STD-130 requirements.
Commercial Printing (except Screen and Books)

POSTED

12 days ago

DEADLINE

in 3 days
View Details