GSA Simplifies Categories for IT-70 HACS SINs

In Cyber Security Strategy, Information Securityby Keith Melancon

The General Services Administration (GSA) announced changes to the Information Technology Schedule 70 (IT-70) Highly Adaptive Cybersecurity Services (HACS) Special Item Numbers (SINs) on November 14, consolidating its cyber security contract vehicles. The main change is the addition of a new sub-category covering the High Value Assets (HVAs) to be in line with Office of Management and Budget (OMB) and Department of Homeland Security (DHS) priorities in safeguarding critical federal data systems.

In addition to the new HVA subcategory, the HACS SINs will be collapsed to a single HACS as 132-45, with corresponding capabilities being described as sub-categories that are listed below:

  • High Value Asset Assessments
  • Risk and Vulnerability Assessment (RVA)
  • Incident Response
  • Penetration Testing
  • Cyber Hunt

Delta Risk is one of the few companies to hold all four of the GSAs IT-70 HACS SINs for:

These changes will allow Delta Risk to expand the services we can offer, as we already support the DHS efforts on securing HVA resources through our work in supporting RVAs, Security Architecture Reviews (SARs), and the Continuous Diagnostics and Mitigation (CDM) program. We are currently developing our self-attestation to have the HVA subcategory added to our IT-70 offerings.

“The changes to the Cyber SINs will allow Delta Risk to expand services available to our federal customers, as well as state and local customers, who use IT-70,” said Rich Burke, Vice President for Business Development. “Our team is already embedded in evaluating HVAs across the government as part of our support to DHS, as well as in support of the State of North Carolina. We are already doing the work and are ready to continue to more in-depth support to customers needing experienced cyber security professionals to protect critical infrastructure.”