SamSearch

    Closed Solicitation · DEPT OF DEFENSE

    RISK ASSESSMENT - SOURCES SOUGHT ANNOUNCEMENT

    Issued by DEPT OF THE NAVY · NCIS QUANTICO VA
    Sol. N63285-25-SSA-0017Sources SoughtSet-aside: Total Small Business Set-Aside (FAR 19.5)QUANTICO, VA
    Closed
    STATUS
    Closed
    closed Oct 23, 2025
    POSTED
    Oct 16, 2025
    Publication date
    NAICS CODE
    541519
    Primary industry classification
    PSC CODE
    DA10
    Product & service classification

    AI Summary

    The Department of the Navy is seeking sources for a Software-as-a-Service platform that can perform comprehensive cyber risk assessments, including MITRE-based evaluations and continuous monitoring for multiple entities. Interested parties should provide insights on their capabilities and any alternative NAICS or PSC codes.

    Contract details

    Solicitation No.
    N63285-25-SSA-0017
    Notice Type
    Sources Sought
    Set-Aside
    Total Small Business Set-Aside (FAR 19.5)
    Posted Date
    October 16, 2025
    Response Deadline
    October 23, 2025
    NAICS Code
    541519AI guide
    PSC / Class Code
    DA10
    Issuing Office
    NCIS QUANTICO VA
    Sub-Agency
    DEPT OF THE NAVY
    Agency
    DEPT OF DEFENSE
    Primary Contact
    Ashley Allen
    City
    QUANTICO
    State
    VA
    ZIP Code
    22134-2253
    AI Product/Service
    service

    Description

    This Sources Sought Announcement is intended to identify Risk Assessment platforms capable of of performing the tasks outlined below.

    NCIS seeks a Software-as-a-Service (SaaS) platform capable of performing cyber risk assessments for partner entities. The platform must provide integrated cyber supply chain risk management functionality to support ongoing mission requirements.

    The required service must:

    • Provide a MITRE-based risk assessment
      • Including a cyber risk technical assessment
      • FAIR (Factor Analysis of Information Risk) analysis
      • External compliance estimate
      • Ransomware Susceptibility Index (RSI).
    • Offer a clear and easily interpretable cyber risk report featuring:
      • Letter-grade ratings with the capability to drill down into the technical details underlying each risk category.
    • Support unlimited NCIS user accounts
    • Enable the continuous monitoring of up to 200 entities.

    **Please let us know if you have any recommendations for alternative PSC or NAICS codes.

    Key dates

    1. October 16, 2025Posted Date
    2. October 23, 2025Proposals / Responses Due

    AI search tags

    cyber risk assessmentsoftware as a servicerisk managementcybersecurity servicescompliance analysis

    Frequently asked questions

    RISK ASSESSMENT - SOURCES SOUGHT ANNOUNCEMENT is a federal acquisition solicitation issued by DEPT OF DEFENSE. Review the full description, attachments, and submission requirements on SamSearch before the response deadline.

    SamSearch Platform

    Stop searching. Start winning.

    AI-powered intelligence for the right opportunities, the right leads, and the right time.

    Book a Demo