Information Security/Cybersecurity Services
Request for Proposals for Information Security/Cybersecurity Services
The Transbay Joint Powers Authority (TJPA) has issued a Request for Proposals (RFP) for INFORMATION SECURITY/CYBERSECURITY (Services) for the Transbay Program, from firms or managed information security service providers with expertise in assessing information technology (IT) and operation technology (OT) system vulnerabilities and risks and creating and implementing enterprise-wide strategic information security programs for large, mixed-use facilities.
The TJPA is seeking proposals from skilled and reputable information security and cybersecurity experts to create and implement an information security/cybersecurity program that is both consistent with and aligned to the new Salesforce Transit Center’s strategic operation plan, with a near-term focus on developing and implementing information security policies as the center is scheduled to begin operations in downtown San Francisco in early 2018. Multiple transit agencies and retail tenants will operate at the transit center, which is expected to draw thousands of commuters, area workers and residents, and tourists each day. The transit center will use multiple automated systems and networks for information processing, control and communications; securing these systems against security threats including cyber-attacks is critical to the TJPA’s mission to ensuring a safe and secure transportation facility for these commuters, visitors, and employees. The agreement is anticipated to be for an initial period of five years, with two options to extend by two years each.
A pre-proposal conference was held Tuesday, November 28, 2017, at 3:00 pm at TJPA offices, 201 Mission Street, Suite 2100, San Francisco, CA 94105. Attendance at the pre-proposal was optional, but highly encouraged. Review Q&A from the pre-proposal conference here.
Individuals must execute a Non-Disclosure Agreement to receive certain Sensitive Security Information. (Some browsers may require cookie blockers to be turned off for the NDA upload widget to appear below and be useable.)
Proposal packages must be received by the TJPA no later than 5:00 pm Pacific Time on Thursday, January 11, 2018 (extended from December 21, 2017) at the TJPA offices. Responses that are not received by the time and date specified or do not contain all the required information and completed forms shall be deemed non-responsive and rejected without consideration.
[Note: Proposers are encouraged to Register on the TJPA’s website to be alerted when changes and new documents are added]
| Download Documents | No. of Files: 9 | |
| Document (Click to Download) | File Size & Type | Date Posted |
| Information Regarding Confidentiality of Pricing | 48 KB .pdf | 1/8/2018 |
| Questions & Answers Set No. 2 | 33 KB .pdf | 12/15/2017 |
| RFP 17-11: Addendum 2 (extends due date for proposals) | 53 KB .pdf | 12/15/2017 |
| Questions & Answers Set No. 1 | 33 KB .pdf | 12/14/2017 |
| RFP 17-11: Addendum 1 (extends deadline for questions) | 37 KB .pdf | 12/1/2017 |
| RFP 17-11: Information Security/Cybersecurity Services | 597 KB .pdf | 11/14/2017 |
| Attachment 3, Pricing Form | 55 KB .xls | 11/14/2017 |
| Non-Disclosure Agreement (NDA) | 1008 KB .pdf | 11/14/2017 |
| NDA Designated Individuals Template | 68 KB .xls | 11/14/2017 |
| Key Dates | |
| Request for Proposals Issued | Tuesday, November 14, 2017 |
| Pre-proposal Conference | Tuesday, November 28, 2017, 3:00 p.m. |
| Questions on RFP due | Monday, December 11, 2017, 5:00 p.m. (formerly December 5) |
| Responses to questions posted | Friday, December 15, 2017 (formerly December 12) |
| Proposals due | Thursday, January 11, 2018, 5:00 p.m. (formerly December 21) |
| Interviews | Wednesday, February 14, 2018 (formerly February 6, January 16) |
| Contract Recommended for Approval | Thursday, March 8 or April 12, 2018 (formerly February 8) |
