Opportunity

SAM #W91QF026QA015

Microsoft Sentinel SIEM/SOAR Implementation and Managed Services for U.S. Army University and War College

Buyer

MICC Carlisle Barracks

Posted

July 01, 2026

Respond By

July 08, 2026

Identifier

W91QF026QA015

NAICS

541512

The U.S. Army University and U.S. Army War College are seeking a Microsoft Solution Partner to implement and manage Microsoft Sentinel as their centralized SIEM/SOAR platform within their Microsoft 365 environment. - Government Buyer: - U.S. Army University / U.S. Army War College - OEMs and Vendors: - Microsoft (primary OEM for Sentinel, Azure, Defender, Entra ID, Intune, Exchange Online) - Products/Services Requested: - Microsoft Sentinel Implementation for approximately 350 Intune-managed endpoints - Azure Log Analytics Workspace and Azure resources (VPN, Logic Apps, servers, Kubernetes, data connectors) - Exchange Online Plan 1 license for email alerting - Defender for Cloud for storage protection - Integration with Microsoft Entra ID, Intune, Defender, and M365 audit logs - Professional services: discovery, solution design, implementation, configuration, knowledge transfer, administrator training, and delivery of documentation (build docs, operational guides, runbooks) - Managed support services: ongoing monitoring, Azure consumption cost management, monthly/quarterly performance and ticketing reports, adherence to service level objectives - Unique/Notable Requirements: - Compliance with NIST SP 800-53, OMB M-21-31, DoD, CJIS, CMMC, and HIPAA mandates - High data ingestion success rate (at least 98%) - Emphasis on Zero Trust, scalability, automation, and government self-sufficiency - Key personnel must have relevant certifications (e.g., CISSP, SC-200) - Comprehensive training and documentation for government administrators

Description

This is a SOURCES SOUGHT NOTICE only. Interested vendors may submit a statement of interest & documentation of their capabilities to the provided contact email.

This requirement is for the procurement of highly specialized commercial professional services to design, implement, and operationalize the Microsoft Sentinel platform. These services require intimate and expert-level knowledge of USAWC's specific Microsoft 365 A5 licensing and security configuration.

The critical performance requirements for this acquisition center on the successful implementation of a fully operational security platform. The contractor must design a system that complies with NIST SP 800-53 and OMB M-21-31 event logging mandates. The contractor shall successfully onboard approximately 350 endpoints and all specified M365 data sources, ensuring at least a 98% data ingestion success rate. The contractor must also deliver comprehensive training and "as-built" documentation to ensure Government self-sufficiency.

Please see attached documents for further details.

View original listing