Iowa City Community School District Bidopportunities #2025-BUS-7248

Pre-qualified Vendor for Cyber Security Services

The Iowa Department of Management has awarded a master agreement (2025-BUS-7248) to Optiv Security Inc. for pre-qualified cybersecurity services, including risk assessments, breach notification assistance, incident response, vulnerability testing, security training, monitoring, policy development, compliance support, security architecture review, and forensic analysis. The agreement is valid until November 30, 2029, with five renewal options, and allows other governmental entities to utilize the contract. Optiv Security Inc., headquartered in Denver, Colorado, will provide services primarily in Des Moines, Iowa. The contract includes detailed provisions on service scope, performance standards, confidentiality, security standards, and insurance requirements. The agreement is non-exclusive and involves a 1% administrative fee paid quarterly to the Iowa Department of Management. The primary contact for the vendor is Mallory Breitung, and the agency contact is Laura Shannon. The award is categorized under the state government sector, with jurisdiction in Iowa, and the NAICS code 541512 (Computer Systems Design Services). Potential competitors for similar awards include Accenture, CDW-G, Crowe, ERM, FedTec, Global Solutions Group, Heartland Business Systems, Insight Public Sector, Inspira, Marco Technologies, NWN Carousel, ProCircular, RSM, RubinBrown, TEKsystems, True North, Tryfacta, and Tyler Tech.

Description

Cyber Security Pre-Qualified Vendor (Cyber Security Speed) - Future Statements of Work issued by Purchasing Entities and other specifics associated with such future Statements of Work (SOW) will be established consistent with the Purchasing Entity's procurement obligations. In most cases, this will involve some form of competitive bidding among pre-qualified ITQ vendors, with appropriate exceptions available in emergency or sole source scenarios. A Vendor's inclusion in one of the ITQ categories of services in no way guarantees an award of any future SOW by the Purchasing Entity. Vendor Qualified Categories include Cybersecurity Risk Assessments, Breach Notification Assistance, Incident Response Planning and Execution, Vulnerability Assessment and Penetration Testing, Security Awareness Training, Security Monitoring and Threat Detection, Security Policy and Procedure Development, Compliance and Regulatory Support, Security Architecture Design and Review, and Forensic Analysis, Investigation & Litigation Support.

View original record