Inactive Total Small Business Set-Aside (FAR 19.5)

This Sources Sought Announcement is intended to identify Risk Assessment platforms capable of of performing the tasks outlined below. NCIS seeks a Software-as-a-Service (SaaS) platform capable of perf... This Sources Sought Announcement is intended to identify Risk Assessment platforms capable of of performing the tasks outlined below. NCIS seeks a Software-as-a-Service (SaaS) platform capable of performing cyber risk assessments for partner entities. The platform must provide integrated cyber supply chain risk management functionality to support ongoing mission requirements. The required service must: Provide a MITRE-based risk assessment Including a cyber risk technical assessment FAIR (Factor Analysis of Information Risk) analysis External compliance estimate Ransomware Susceptibility Index (RSI). Offer a clear and easily interpretable cyber risk report featuring: Letter-grade ratings with the capability to drill down into the technical details underlying each risk category. Support unlimited NCIS user accounts Enable the continuous monitoring of up to 200 entities. **Please let us know if you have any recommendations for alternative PSC or NAICS codes.