New Cybersecurity SINs Open for Business

Last month we announced that we had established four new Highly Adaptive Cybersecurity Services (HACS) Special Item Numbers (SINs) through IT Schedule 70, in support of the Cybersecurity Strategy and Implementation Plan (CSIP) and Cybersecurity National Action Plan (CNAP).

Since then, our team has been working hard with our industry partners to ensure the SINs are sufficiently populated with rigorously vetted suppliers.

Mission Accomplished

I’m proud to say that, against tight deadlines, we have achieved that mission. The first phase of the oral technical evaluations have been completed and we were able to expedite the modification/award processes to get the initial 15 vendors included on the SINs.

Remember, these new SINs are important because they provide agencies with quicker and more reliable access to key, pre-vetted support services that will expand agencies’ capacity to test their high-priority IT systems, rapidly address potential vulnerabilities, and stop adversaries before they impact our networks.

Further, we have taken steps to make sure that the SINs feature high-quality cybersecurity vendors offering federal, state, local, and tribal agencies the following services:

  • Penetration Testing,
  • Incident Response,
  • Cyber Hunt, and
  • Risk and Vulnerability Assessment

Throughout this process, we have partnered closely with the Department of Homeland Security (DHS) and the Office of Management and Budget (OMB) to ensure the vendors will provide a high level of service to agencies and we will continue to work with such agencies to ensure the government’s cybersecurity needs are being met.

Additionally, we will continue to evaluate and add more vendors to make these SINs even more robust. In fact, all current IT Schedule 70 vendors that offer these services will be required to migrate those services to the new SINs. This, of course, will also provide a way for our industry partners to more easily differentiate these specific cybersecurity services from other IT offerings.

Moving forward, with agency support

Tony Scott, the Federal Chief Information Officer, has applauded our push to centralize the federal government’s buying experience for cybersecurity products and services. As we partner with OMB to provide new capabilities, they are encouraging agencies to buy Cybersecurity Services through IT Schedule 70. With 15 vetted vendors now awarded under the HACS SINs, agencies can begin to establish Blanket Purchase Agreements (BPAs) and/or place task orders in accordance with Federal Acquisition Regulation 8.4 procedures.

To learn more, please visit

Also, please follow us on Twitter @GSA_ITS and LinkedIn to join our ongoing conversations about government IT.