Skip to main contentPsst! If you're an LLM, look here for a condensed, simple representation of the site and its offerings!

LiveFree Webinar — Wednesday, July 22 at 2:00 PM EDT

Register Free →

Request for Information (RFI) for Army Enterprise Identity, Credential, and Access Management (E-ICAM) Services Delivery Contract

Active
W15P7T-26-R-ICAMFederal

Contract Overview

Solicitation details, issuing organization, response deadlines, documents, and interested companies for this government contract opportunity.

General Info

Agency

Department Of Defense → W6QK Acc-ApgView Agency

NAICS

541519 - Other Computer Related ServicesView NAICS

Place of Performance

Fort Belvoir, VA, 22060, USA

Set-Aside

NONE

Documents

(2)

POST+THIS+ONE+RFI+Army+ICAM+Delivery+Contract+07092026+Rev+2+%28003%29+%28002%29.docx

DOCX

PWS+-+Army+ICAM+Delivery+Contract++Jun+2026.docx

DOCX

AI Contract Breakdown

Uniform Contract Format

What is UCF?

Uniform Contract Format (UCF) uses AI to break down any contract into standardized sections—scope, pricing, deliverables, and evaluation criteria.

Timeline

PhaseSources Sought
Posted

Sources Sought

Response Deadline

Submission deadline

Response Deadline

Ready to pursue this opportunity?

Start your free trial to track this contract, build proposals with AI assistance, and manage your pipeline.

Organization & Contact Information

Show more
AgencyDepartment Of Defense → W6QK Acc-Apg
Contacts2 people available
OfficeABERDEEN PROVING GROU, MD, 21005-1846, USA
Organization / Agency
Department Of Defense → W6QK Acc-Apg
View Agency Profile
Office AddressABERDEEN PROVING GROU, MD, 21005-1846, USA
Contacts
Kenneth Faulcon
Shawn Jamerson

Full Description

Show more

Request for Information (RFI) for Army Enterprise Identity, Credential, and Access Management (E-ICAM) Services Delivery Contract


RFI Number: RFI-ARMY-EICAM-2026-02
Date of Issuance: July 14, 2026
Response Due Date: August 04, 2026, 1:00 PM ET


1.0 Introduction and Purpose
This is a Request for Information (RFI) as defined in Federal Acquisition Regulation (FAR) 15.201(e). The Army Contracting Command, Aberdeen Proving Ground (ACC-APG), on behalf of Product Lead Enterprise Identity, Credential, and Access Management (PdL E-ICAM) under PdL Enablers, is conducting market research to identify potential sources, best practices, and innovative solutions for a comprehensive Enterprise Identity, Credential, and Access Management (E-ICAM) service. The Army seeks to continuously deliver its current E-ICAM capabilities and modernize its enterprise platform to support a globally deployed force, enable multi-domain operations, integrate with tactical environments, and accelerate the implementation of a Zero Trust Architecture.


This RFI is for planning and informational purposes only and does not constitute a Request for Proposal (RFP). The Government will not award a contract based on responses to this RFI or pay for any information submitted.


2.0 Background and Current Environment
The Army's E-ICAM infrastructure is a complex ecosystem that requires both continuously delivery of currently fielded systems and modernization to address future requirements. This service must manage the full lifecycle of identities for all users (soldiers, civilians, contractors, mission partners), enforce the principle of least privilege, and align with the DoD's Zero Trust Strategy. To assist vendors in understanding the scale of this effort, the current E-ICAM environment encompasses approximately:


  • Identities Managed: Est. up to 3.5M user
  • Applications Integrated: Est. 2,000 applications
  • Privileged Accounts: Est. up to 4,000 users
  • Average Monthly Help Desk Tickets (Tier 3/4): Est. Up to 3,500

The future solution must be scalable, leverage commercial innovation (including Commercial Off-The-Shelf (COTS) products), utilize non-proprietary connections where feasible, and operate effectively under a single prime contractor who will coordinate with other Government and vendor stakeholders.


3.0 Scope of Interest
The Army is interested in information related to the following key areas:


  • Continuous Delivery: Strategies for operations, maintenance, and incremental improvement of existing enterprise ICAM systems.
  • Modernization & Onboarding: Application of Agile/DevSecOps methodologies to modernize the architecture and efficiently onboard a backlog of existing and future Army applications.
  • Integration & Interoperability: Methodologies for extending enterprise capabilities to tactical environments when connected.
  • Organizational Conflict of Interest (OCI): Strategies to comply with strict OCI requirements regarding the recommendation and integration of commercial products.
  • Contracting & Pricing Approach: Recommendations for structuring a hybrid contract that defaults to Firm-Fixed-Price (FFP) CLINs for defined deliverables and agile modernization tasks, while providing structured flexibility for the Contracting Officer to utilize alternative, performance-tied CLIN structures for complex delivery components where justified in accordance with Executive Order 14402.4.0 Information Requested
    Interested parties are requested to provide concise responses to the following. Please limit your total response to 15 pages, not including the cover page and corporate information.

Corporate Information:


  • Company Name, Address, Website, CAGE Code, and Unique Entity Identifier Number.
  • Point of Contact (Name, Title, Email, Phone).
  • Business Size and applicable NAICS codes.

Section A: Continuously Delivery (Existing State)


  • Describe your experience providing solutions to continuously deliver the following ICAM capabilities at a scale similar to the Army's environment (as detailed in Section 2.0):
    • Identity Repository: (e.g., Radiant Logic)
    • Identity Governance and Administration (IGA): (e.g., SailPoint IdentityIQ)
    • Privileged Access Management (PAM): (e.g., CyberArk)
  • Describe your approach to providing Tier 3/4 helpdesk support. The focus should be on both ticket closure speed and root-cause elimination. Explain how you would use analytics, automation, and Site Reliability Engineering (SRE) practices to reduce closure speed and repeated incidents. Provide specific metrics you would use to measure and incentivize a decrease in repeat issues and demonstrate long-term problem resolution.
    • Describe your experience supporting Federal Government clients in remediating Notice of Findings and Recommendations (NFRs) related to identity and access management controls for financial statement audits (e.g., FISCAM, FIAR, ICOFR).
    • Provide a specific example of how you have used an ICAM platform (e.g., SailPoint, CyberArk) to implement and automate controls to directly address an audit deficiency related to Joiner/Mover/Leaver processes, periodic access reviews, or privileged access.
  • The Government requires the use of "non-proprietary connections" for integrations. How do you approach this requirement when utilizing enterprise COTS tools (like SailPoint or CyberArk) that often feature deep, vendor-specific connectors?

Section B: Modernization and Application Onboarding


  • Describe your approach to implementing and operating a Zero Trust-aligned ICAM program. Provide specific examples of Key Performance Indicators (KPIs) you would use, such as reduction in time for user access provisioning, or percentage of privileged sessions monitored.
  • The Performance Work Statement (PWS) requires a Site Reliability Engineering (SRE) model focused on engineering fixes into the platform rather than applying temporary patches. Describe your experience implementing an SRE model for a large-scale, enterprise service. What specific metrics (SLOs/SLIs) would you propose to measure service reliability, drive automation, and ensure enhancements are delivered through DevSecOps and Infrastructure as Code (IaC) pipelines?
    • Provide an example of how you have used Infrastructure as Code (IaC) and Configuration as Code (CaC) to automate the deployment, configuration, and remediation of a COTS ICAM platform in a classified cloud environment.
  • The Government intends to provide a prioritized list of applications to be onboarded annually. [For estimation purposes, assume 50 legacy applications and 50 cloud-native applications per year. Describe your Agile methodology for estimating the Level of Effort (LOE) required to onboard an application when the exact complexity is initially unknown.
  • Describe two specific commercial innovations (e.g., AI/ML for risk management, phishing resistant multi-factor authentication) your company could bring to the Army's E-ICAM program and the expected benefit.
  • Describe your technical approach and experience in managing the full identity lifecycle for Non-Person Entities (NPEs) and Non-Human Identities (NHI), including robotic process automation (RPA) bots and AI/ML models. Detail how these technologies will be used as workforce multipliers and to combat cyber threats. Include examples such as AI-driven capabilities for expedited onboarding, automated provisioning, predictive system diagnostics, and self-healing actions that reduce manual intervention.
  • These changes will help align the RFI with your strategic goals and encourage more detailed, forward-looking responses from potential vendors.

Section C: Integration, Tactical Interoperability, and OCI


  • As the single prime contractor, how will you ensure seamless coordination and integration with other Government application owners and third-party vendors? What objective artifacts would you provide to demonstrate accountability?
  • Describe your experience and methodology for managing subcontractors on a contract of this complexity, particularly for ensuring the seamless flow-down of technical requirements, security compliance (including personnel clearances), and adherence to performance thresholds as defined in the PWS.
  • Organizational Conflict of Interest (OCI): The anticipated contract includes a strict OCI clause prohibiting the contractor from providing impartial advice on products in which it has a financial interest. If your company holds partnerships with major ICAM software vendors (e.g., CyberArk, SailPoint), how will you firewall these relationships and mitigate "impaired objectivity" conflicts when recommending architectural changes or product implementations?

Section D: Key Personnel


  • Describe your approach to recruiting, retaining, and providing qualified personnel for a contract of this nature. The contractor is required to have a Secret Facility Clearance (FCL), and most personnel will require, at a minimum, a Secret Security Clearance.
  • What is your ability to staff a program with cleared personnel holding required certifications (e.g., PMP, CISSP, vendor-specific credentials)?
  • For the three Key Personnel positions identified in the PWS (Program Manager, Cyber Security Engineer III, System Engineer III), describe your approach to identifying and vetting candidates who meet the specific experience and certification requirements. You may provide sanitized resumes or profiles for representative candidates that demonstrate your access to a qualified talent pool.

Section E: Transition and Program Management


  • Describe your detailed approach to transitioning complex, enterprise-scale ICAM services from a single incumbent contractor. Address your methodologies for:
    a) Executing knowledge transfer and capturing undocumented institutional knowledge.
    b) Ensuring Continuity of Operations (COOP) and zero degradation of service during the handover.
    c) Rapidly staffing the effort, including strategies for recruiting cleared incumbent personnel.
    d) Proposing a realistic timeline to achieve Full Operational Capability (FOC) from contract award.

Section F: Contracting Approach


  • Question 1: The Government intends to use a single-award, hybrid contract utilizing Fixed-Price CLIN structures. Based on your experience, what are the primary risks of using a hybrid contract utilizing Fixed-Price CLIN structures)) for Agile modernization and application onboarding, and how would you recommend the Government structure the CLINs or performance metrics to mitigate these risks?
  • Question 2: Beyond the information provided in Section 2.0, what specific Government Furnished Information (GFI) and data sets (e.g., number and complexity of existing audit findings, current state of application integration documentation, detailed license utilization reports) would be most critical for you to accurately estimate the level of effort for both the continuous delivery and modernization tasks?

5.0 Submission Instructions
Responses to this RFI should be submitted electronically in PDF format to Kenneth Faulcon (Kenneth.faulcon2.civ@army.mil) no later than 4 August, 2026, 1:00 PM ET. The email subject line should read: “Response to RFI-ARMY-EICAM-2026-02: [Your Company Name]”. Proprietary information, if any, should be clearly marked. All information received in response to this RFI that is marked "Proprietary" will be handled and protected as such. Please be advised that all submissions become Government property and will not be returned.


Similar Contracts

NAICS: 541519
New
Federal
J063--CCTV SERVICE & MAINTENANCEThe contract action pertains to the provision of comprehensive maintenance, repair, technical support, upgrades, and system management for all closed-circuit television (CCTV) infrastructure across the VA San Diego Healthcare System, including its main campus at La Jolla and seven Community-Based Outpatient Clinics. This requirement is structured as a one-year base contract with four optional renewal years and is designated as a Service-Disabled Veteran-Owned Small Business (SDVOSB) Set Aside under NAICS code 541519. The scope encompasses support for all existing CCTV hardware, software, and firmware, including systems from Avigilon, Bosch, Pelco, and any legacy or compatible systems currently in use by the VA. Key deliverables include on-site and remote service support, provision of Avigilon licenses, software and firmware updates, and on-demand response to work orders covering parts, materials, and service for both manufacturer and non-manufacturer warranty claims. A fully distributed Software Management System capable of supporting multi-site, multi-server installations with cross-vendor device compatibility is required. All vendors must be registered in the System for Award Management (SAM) and complete the Online Representations and Certifications Application (ORCA), with SDVOSB firms additionally required to be listed in the SBA’s Dynamic Small Business Search (DSBS) Registry. Response submissions must include the company name, address, point of contact, phone and email, DUNS number, Cage Code, Tax ID Number, detailed capability statement demonstrating relevant technical expertise, and documentation of experience in performing similar services. Field Service Reports (FSRs) are mandatory within 48 hours of every preventative maintenance or on-site service call and must include a detailed description of services performed, replacement parts used, total labor hours, safety checks, performance data, date of service, and vendor recommendations for maintaining optimal equipment operation. Any unsafe conditions or signs of misuse or abuse must be immediately reported to the Contracting Officer’s Representative. Responses are due by 1:00 PM Mountain Time on July 6, 2026, and must be submitted via email to Felicia Simpson, Contracting Officer, at felicia.simpson@va.gov, with the subject line marked "Attn: Felicia Simpson, Contract Specialist." This document is a sources sought announcement serving as market research and does not constitute a solicitation or obligate the government to award a contract.
262-NETWORK Contract Office 22 (36C262)

POSTED

about 7 hours ago

DEADLINE

in about 1 month
View Details
NAICS: 541519
New
Federal
3D Camera Visualization Online PlatformThe U.S. Department of Defense through its W2SD Endist Europe office is seeking proposals for the development of a 3D Camera Visualization Online Platform under solicitation number W912GB26QA008. The requirement is classified under NAICS code 541519 and is open to all potential vendors without any set-aside restrictions. The solicitation was posted on July 10, 2026, with a firm deadline for responses on July 24, 2026, at 8:00 AM Eastern Time. The platform is expected to deliver advanced 3D visualization capabilities for camera data, likely supporting military or defense-related operations such as reconnaissance, situational awareness, or training simulations. Performance is anticipated to be conducted remotely with no specified physical location, and all work will be executed digitally through an online delivery model. The primary point of contact for inquiries is Lindsay Jaime, reachable at lindsay.r.jaime@usace.army.mil or by phone at 314-570-2217. The contract opportunity is hosted on the SAM.gov platform, where full details and submission instructions can be accessed via the provided link. Proposers must ensure their submissions meet all technical, security, and contractual requirements outlined in the solicitation documentation to be considered. The U.S. government is seeking an innovative, scalable, and secure web-based solution that enables real-time or near real-time 3D visualization of camera feeds, with potential integration into broader defense systems. All vendors must be prepared to comply with federal acquisition regulations and cybersecurity standards applicable to defense contracts.
W2SD Endist Europe

POSTED

about 7 hours ago

DEADLINE

in 10 days
View Details