Cybersecurity Capability Maturity Program Assessment Services

Overview

Cybersecurity & Data Privacy

Ann Arbor, Michigan, United StatesPosted 6 days agoDeadline: June 8th, 2026

Fit Score

Settle Intelligence

Settle helps teams find, evaluate, and respond to public RFPs. We continuously surface new opportunities, score them against your company strengths, and draft proposal responses so you can focus on the work that wins business.

SUMMARY

Assessment of a Michigan government authority's cybersecurity program maturity in alignment with the Cybersecurity Framework (CSF).

KEY REQUIREMENTS

Must submit an intent to bid before questions and submissions can be accepted
Must align cybersecurity program maturity assessment with the NIST Cybersecurity Framework (CSF)
Must agree to standard University terms and conditions
Must meet WCAG 2.1 Level AA and Section 508 accessibility standards
Must provide proof of cybersecurity program and documentation
Must provide a project organization chart and resumes for key personnel
Must provide a cost proposal including hours and rates by role
Must provide three references from similar sized higher education or healthcare clients

BUDGET

Estimate

$150,000 – $300,000

CONTRACT DURATION

36 months

TIMELINE

Released: May 1st, 2026

Open: May 1st, 2026

Close: June 8th, 2026

Issuing Agency

University Of Michigan

Organization overview and procurement intelligence available on paid plans.

See Issuer Research

DESCRIPTION

A government authority in Michigan is seeking a vendor to provide cybersecurity capability maturity program assessment services. The selected supplier will be responsible for conducting a series of interviews, information gathering sessions, and assessment activities.

Based on the findings from these engagements, the vendor will assess the maturity of the organization's cybersecurity program in alignment with the Cybersecurity Framework (CSF). The outcome will assist the agency in understanding its current cybersecurity posture and areas for improvement.

Source attribution

This Settle analysis is based on the issuing organization’s public RFP listing.