Cybersecurity Capability Maturity Program Assessment
The University of Michigan is seeking proposals for a cybersecurity capability maturity program assessment across its health hospital systems, aligning with the NIST Cybersecurity Framework.
University of Michigan
General
Open
RFP-0012111-TECH-2026
Jun 08, 2026 04:00 PM
May 01, 2026 09:30 PM
Request for Proposal (RFP)
Local
Original Solicitation Links
[
RFP-0012111-TECH-2026
]cybersecurity capability maturity program assessment
Contact
ANUSHALIE DIAS WEERASINHA
+17346470503
Description
The University of Michigan is seeking proposals from qualified suppliers to partner with its technology teams across the University of Michigan Health hospital systems. The scope of this opportunity includes U-M Health, U-M Health-West, and UM-Health Sparrow. The selected supplier will conduct interviews, gather information, and perform assessments to evaluate the cybersecurity program maturity in alignment with the NIST Cybersecurity Framework (CSF). The University expects to enter into an agreement for an initial assessment with a three-year period, with an option to extend for two additional assessments. The University's standard terms and conditions will apply to the contract.
Classification Codes
NAICS541512Computer Systems Design Services
PSCDJ10Security and Compliance support delivered as a service, by subscription, or service contract. Includes support of security policies/controls, processes, measuring compliance of relevant legal/compliance requirements, and responding to security breaches. Also provides support for IT Security systems providing Continuous Diagnostics and Mitigation (CDM) for real-time Cyber Security and protection such as vulnerability scanning, managing firewalls, intrusion prevention systems, and security information and event management (SIEM). Includes Disaster Recovery (DR) services to support DR policy, process and means, dedicated failover facilities and perform DR testing.
Smart Codes
cybersecurity assessmentnist cybersecurity frameworkhospital system security
Timeline
May 01, 2026 12:00 PM-Open Date
Jun 08, 2026 12:00 PM-Close Date