CanadaBuys #20260158

OSFI Solicits SBIPS Professional Services for Ransomware Tabletop Exercise

The Office of the Superintendent of Financial Institutions (OSFI), a Canadian federal agency, is seeking professional services to conduct a ransomware tabletop exercise: - Government Buyer: - Office of the Superintendent of Financial Institutions (OSFI), Canada - Scope of Work: - Solutions-based informatics professional services (SBIPS) for a corporate incident response exercise - Focused on a ransomware scenario to validate OSFI's updated Corporate Incident Management capability - Exercise will incorporate Incident Command System principles and support business continuity and recovery - Eligible Vendors: - Only SBIPS Supply Arrangement Holders qualified under Tier 1 for security management services in the National Capital Region are eligible - Invited SA Holders include: Accenture Inc., CGI Information Systems and Management Consultants Inc., CIMA+ S.E.N.C., Compusult Limited, Deloitte Inc., IBM Canada Limited, DXC Technology Canada Co., Ernst & Young LLP, Gartner Canada Co., IBISKA Telecom Inc., IPSS INC., IT/Net - Ottawa Inc., KPMG LLP, Malarsoft Technology Corporation, MDOS CONSULTING INC., Open Text Corporation, OPTIV CANADA FEDERAL INC., Pricewaterhouse Coopers LLP, S.I. SYSTEMS ULC, T-REX SOLUTIONS LLC, Tata Consultancy Services Canada Inc., TEKsystems Global Services Corp., The Bell Telephone Company of Canada, TPG Technology Consulting Ltd., TRM Technologies Inc., Wiz Management Inc. - Security Requirements: - Minimum security clearance of 'Secret' for both the corporation and resources - Products/Services Requested: - No physical products; only professional services for the exercise - Period of Performance: - Estimated contract duration is 12 months - Unique Requirements: - Exercise must validate new incident management processes and support business continuity and recovery - Only pre-qualified vendors under the SBIPS arrangement may compete

Description

This solicitation is a Request for Proposal for solutions-based informatics professional services (SBIPS) focused on conducting a corporate incident response exercise centered on a ransomware event. The exercise aims to validate the operational readiness of the Office of the Superintendent of Financial Institutions' (OSFI) updated Corporate Incident Management capability, which integrates Incident Command System principles. The contract duration is estimated at 12 months starting from August 3, 2026. The procurement is open only to qualified SBIPS Supply Arrangement Holders under Tier 1 for services in the National Capital Region within the domain of security management.

View original listing