The Department of Homeland Security, Cybersecurity and Infrastructure Security Agency (CISA), Joint Cyber Defense Collaborative (JCDC) Sub-Division has a continuing requirement for a broad range of program management and advisory services to create the JCDC’s Operational Technology (OT) and Industrial Controls System (ICS) Action Plan.

The Department of Homeland (DHS) Cybersecurity and Infrastructure Security Agency’s (CISA’s) mission is to lead the national effort to protect and enhance the resilience of the nation’s physical and cyber infrastructure. CISA includes the CISA Mission Enabling Offices (MEOs) and six Divisions: the Cybersecurity Division (CSD), the Emergency Communications Division (ECD), the Integrated Operations Division (IOD), Infrastructure Security Division (ISD), the Stakeholder Engagement Division (SED), as well as, the National Risk Management Center (NRMC), which are headquartered within the National Capital Region (NCR).

CISA is responsible for protecting the Nation’s critical infrastructure from physical and cyber threats through effective coordination and collaboration among a broad spectrum of government and private sector organizations. Within CISA, CSD leads the effort to protect the federal “.gov” domain of civilian government networks and collaborates with the private sector “.com” domain to increase the security of critical networks. CSD’s mission is to reduce cyber risk by being the Nation’s flagship for cyber defense, incident response, and ensuring the resilience of nationally critical functions by delivering capabilities including technology, information, and analytics to support risk reduction. CSD is comprised of five Subdivisions: Threat Hunting, Vulnerability Management, Mission Engineering, Capacity Building, and the Joint Cyber Defense Collaborative (JCDC).

The JCDC subdivision enables and coordinates operational activities across CSD and engages partner organizations in the execution of those activities. The JCDC subdivision is organized into three operational offices: Planning, Partnerships, and Production. This structure allows for close collaboration including planning towards identified operational outcomes, partnering with operational stakeholders to execute, integrating analytical processes across organizations, and producing technical communications to disseminate to partner communities.

The JCDC’s Industrial Controls System (ICS) focused mission was established in 2022 with the purpose of collaborating with key Operational Technology (OT) companies who possess knowledge, visibility, and capabilities of ICS infrastructure. The JCDC’s ICS mission is composed of ICS/OT software manufacturers, hardware manufacturers, owners and operators, and integrators. The subject matter experts that have partnered with CISA are charged with building plans around the protection and defense of control systems; collaborating on U.S. government guidance on ICS/OT cybersecurity; and contributing to real time operational fusion across private and public partners in the ICS/OT space.

The CISA JCDC is seeking a transformation and implementation of the Operational Technology (OT) / Industrial Control Systems (ICS) partnership model to elevate the effectiveness of CISA and the nation’s ability to prevent and respond to cyber infrastructure incidents. JCDC requires a broad range of program management, subject matter expertise, stakeholder engagement and management, and service innovation and delivery experience to implement change at scale.

The Contractor will support JCDC and relevant stakeholders in three key areas:

• OT/ICS Program Support
  • Program deployment, execution, and evolution
  • OT/ICS cybersecurity subject matter expertise (SME)
  • Governance and reporting
• Stakeholder Engagement
  • Stakeholder relationship management (SRM) administration
  • Stakeholder experience design, execution, and evaluation
  • External stakeholder engagement
  • Internal stakeholder engagement
  • Stakeholder engagement assessment
• OT/ICS Delivery Innovation
  • OT/ICS service development and capability delivery