The vendor is required to provide to streamline the procurement of cybersecurity and supply chain risk management (SCRM) plan technical assistance for subgrantees.
- Agency has set forth minimum cybersecurity and supply chain risk management requirements for subgrantees deploying or upgrading broadband networks.
- The agency seeks to promote the continued improvement of cybersecurity and supply chain risk management (SCRM) practices to respond to evolving threats.
- NTIA, subgrantees must attest that they have an operational or ready-to-be operational cybersecurity risk management plan (cybersecurity plan) and a supply chain risk management plan (SCRM plan), collectively (plans) at the time the grant-funded network is made operational.
- The cybersecurity plan must reflect the latest version of the national institute of standards and technology (NIST) cybersecurity framework (CSF) and the standards and controls set forth in executive order 14028 and specify the security and privacy controls being implemented.
- Cybersecurity supply chain risk management practices for systems and organizations, and shall specify the SCRM controls being implemented.
- The technical complexities of developing and implementing cybersecurity plans and SCRM plans, and resource and knowledge constraints, particularly within small subgrantee organizations, and limited time for completion, the agency seeks to provide technical assistance to its subgrantees to meet cybersecurity plan and SCRM plan requirements.    
- The cybersecurity and supply chain risk management technical assistance program and this solicitation is made available through the capital project funds program administered by the treasury and the bead program administered by the NTIA.
- The cybersecurity and supply chain risk management technical assistance program uses federal funding, awarded offerors are required to follow the federal funding guidelines included with the model contract in this solicitation.
- Contract Period/Term: 1 year
- Questions/Inquires Deadline: June 03, 2025