Government Contract | North Carolina
ESRMO Policy Manual Rewrite

Bid Information

Bid Alert No: 00000494254

Bid Title: ESRMO Policy Manual Rewrite

Agency Bid No. Title: ITS-009847-MW

Received Date: 02/24/2016

Close Date: 03/11/2016

Purchase Type: 1 year term

Delivery Point:

Delivery Date: Not Stated

Special Notices: Questions Due By 02/29/2016 02:00 PM, Bidder Preregistration


Specifications include, but are not limited to:Enterprise Architecture Standards: The North Carolina Statewide Technical Architecture is located at the following website: ( This provides a series of domain documents describing objectives, principles and leading practices for the development, implementation, and integration of business systems. Agencies and Vendors must refer to these Architecture documents when implementing enterprise applications and/or infrastructure. 2) Enterprise Licensing: Reserved. 3) Virtualization: Reserved. 4) NCID: Reserved. 5) The State may, in its sole discretion, investigate any substitute or equivalent goods irrespective of any representation made by a Vendor or manufacturer. 6) Specifications: Any deviation from specifications indicated herein must be clearly identified as an exceptionandlist e d o n a s e p a r a t e p a g e l a b e l e d E x c e p t i o n s t o S p e c i f i c a t i o n ; o t h e r w i s e , i t w i l l b e considered that items offered are in strict compliance with these specifications, and Vendor will be held responsible. Any deviations shall be explained in detail. The Vendor shall not construe this paragraph as inviting deviation or implying that any deviation will be acceptable. Offers of alternative or equivalent goods may be rejected; and if offered, must be supported by independent documentary verification of equivalence to the specified goods. 7) Scope of Work. a. Background: The State of North Carolina is adopting the National Institute of Standards & Technology (NIST) Risk Management Framework (RMF) which includes the application of NIST Special Publication 800-53 Revision 4 - Security and Privacy Controls for Federal Information Systems and Organizations as its basic framework for its information security policies and underlying standards. The NIST Special Publication 800-37 Revision Guide for Applying the Risk Management Framework to Federal Information Systems provides an organizational structure for the manual(s). The State has existing policies and standards based on ISO 27002 that need to be further developed and mapped to align to the NIST Special Publication 800-53 Revision 4 Security and Privacy Controls for Federal Information Systems and Organizations structure as well. The S t a t e s n e t w o r k i s c a t e g o r i z e d a t a F I P S 1 9 9 M o d e r a t e l e v e l a n d i n c l u d e s S t a t e d a t a t h a t exists in cloud environments

Product Codes: 91829, 96190, 92000, 91828

Agency Information

Issuing Agency: State of North Carolina - Office of Information Technology Services (ITS)

State: North Carolina

Agency Type: State and Local

Contact: Linda Waterman Statewide IT Procurement Office, 3900 Wake Forest Road, Raleigh, North Carolina, 27609

Phone: 919-754-6614

Fax: 919-981-5374




FREE Market Analysis

Get a FREE 90-Day Market Analysis and see the bids you’ve been missing