Information System Contingency Plans Generation
Overview
Buyer
Place of Performance
NAICS
PSC
Set Aside
Original Source
Timeline
Qualification Details
Fit reasons
- NAICS alignment with historical contract wins in similar service areas.
- Scope strongly matches core technical capabilities and delivery model.
Risks
- Past performance thresholds may require one additional teaming partner.
- Potential clarification needed on staffing minimums before bid/no-bid.
Next steps
Validate eligibility requirements, assign capture owner, and schedule partner outreach to confirm teaming strategy before submission planning.
Quick Summary
The Defense Information Systems Agency (DISA), specifically the J742 Contingency Planning team, has issued a Request for Information (RFI) to identify potential tools, services, and solutions for automating the generation of Information System Contingency Plans (ISCPs) for DISA mission-critical systems. Small businesses are strongly encouraged to respond. Responses are due by May 05, 2026, at 2:00 PM CT.
Purpose & Scope
DISA aims to transform and improve its contingency planning capabilities by automating, streamlining, and digitizing the ISCP creation process. The current manual process is labor-intensive, time-consuming (weeks to months), and drains high-cost talent. The goal is to reduce ISCP production time to days, allow high-cost talent to focus on primary duties, and enable faster, data-driven decisions by leadership.
Desired Capabilities
Solutions should be able to:
- Ingest, parse, and understand continuity planning information from existing program documents (e.g., CONOPs, TTPs, IRPs, SSPs).
- Identify plan shortfalls and interact with Subject Matter Experts (SMEs) to gather missing information.
- Generate ISCP documents compliant with National Institute of Standards and Technology (NIST) formats.
- Organize information into a digital representation for leadership interaction.
- Maintain up-to-date ISCP documents as systems evolve.
- Securely produce ISCPs in accordance with Department of Defense (DoD) continuity security classification guidelines.
ISCPs are formal documents detailing procedures for restoring capabilities after disruption and must conform to relevant DoD and NIST directives, including CJCSI 6510.01F, DoDD 3020.26, DoDI 3020.42, DoDI 8500.01, and NIST 800-34, Rev. 1.
Requested Information
Respondents should provide:
- Corporate Information: Company name, address, POC, business type (including socioeconomic category for small businesses), cleared personnel status, and available contract vehicles.
- Applicable Tools, Products, and Services: Descriptions of how offerings address ISCP generation, including AI applications and user interface/SME interaction.
- Operational Employment: Details on fielded ISCP solutions, including deployment environment (cloud/on-prem), Government customers, networks, and authorization on DoD networks (NIPRNet, SIPRNet, JWICS).
- Other Information: Any additional relevant details.
Response Guidelines & Timeline
- Response Due: May 05, 2026, at 2:00 PM CT.
- Questions Due: April 21, 2026, at 2:00 PM CT.
- Submission: White paper (max 7 pages, single-spaced, 12-point type, 1-inch margins) via email (5 MB limit).
- Email to: carly.a.youngless.civ@mail.mil and kenric.l.phillips.civ@mail.mil.
Additional Notes
This is an RFI for market research purposes only and does not constitute a Request for Proposals (RFP). No solicitation is available at this time, and no costs will be reimbursed for RFI responses. DISA may hold one-on-one discussions with potential offerors.