IT Security and Compliance Consulting Services

The Vendor is required to provide to create and maintain secure computing enclaves for regulated research. 
- These enclaves are not general-purpose work environments and are exclusive to computing-intensive academic research activities.
- Provide to engage an authorized or candidate c3pao from the cybersecurity maturity model certification (CMMC) ecosystem to support the center for high performance computing (CHPC) and the price college of engineering (engineering) in enhancing the cybersecurity posture of their secure research computing enclaves.
- Objectives
•    Support the design and implementation of an institute High Performance Computing research enclave within CHPC. 
•    Assess readiness for 3rd party validation of the institute environment’s security posture.
•    Provide remediation actions for Engineering’s CMMC 2.0 Level 1 configuration and implementation for Federal Contract Information
•    Strengthen the existing CMMC Level 2 implementation within Engineering in preparation for a C3PAO audit.
•    Conduct a mock audit to assess readiness for formal CMMC Level 2 certification for CoE.
•    Develop a comprehensive cybersecurity compliance strategy tailored to both CHPC and Engineering.
•    Provide design and strategies for the CMMC L2 enclave to encompass the Nanofabrication Laboratory and other shared lab spaces
- Provide detailed findings, remediation recommendations, and scoring.
- Provide configuration guidance for technical systems that the university can implement.
- Change Management
•    The vendor will support changes in accordance with the university’s change management process. This includes:
•    Documenting proposed changes
•    Communicating with stakeholders
•    Obtaining necessary approvals.

- Contract Period/Term: 2 years
- Questions/Inquires Deadline: December 30, 2025