RFP 019-0-2026/HM - Cybersecurity Penetration & Vu...
Key Dates
Due Date
-
Posted Date
-
Agency & Value
Agency
Newport News Public Schools
Contract Value
Not provided
Codes & Classification
Solicitation Number
RFP 117106-1
NAICS
—
Classification Code
—
Additional Details
Documents3
Newport News Public Schools (NNPS), a state-level educational entity in Virginia, has issued Request for Proposal (RFP) 019-0-2026/HM, seeking qualified firms to provide comprehensive information security penetration testing and an operational framework review assessment. The primary objective of this procurement is to enhance the district’s cybersecurity posture by engaging external experts to rigorously evaluate the effectiveness of existing security controls, identify vulnerabilities, and assess the robustness of operational frameworks governing information security.
The scope of work encompasses conducting thorough penetration testing across NNPS’s digital infrastructure, simulating real-world cyber threats to uncover potential weaknesses that could be exploited by malicious actors. In addition to technical testing, the selected firm will perform an operational framework review, evaluating policies, procedures, and governance structures to ensure alignment with industry best practices and regulatory requirements. The intended outcome is to provide NNPS with actionable insights and recommendations that will inform strategic improvements, mitigate risks, and safeguard sensitive educational and administrative data.
Key requirements for this engagement include demonstrable expertise in information security assessments, a proven track record of conducting penetration tests for public sector or educational institutions, and the ability to deliver detailed, prioritized reports outlining findings and remediation strategies. Deliverables are expected to include comprehensive assessment documentation, executive summaries for leadership, and debrief sessions to discuss results and next steps.
This opportunity is managed by Newport News Public Schools, with the place of performance located within the state of Virginia. The procurement is identified under RFP 117106-1. Interested vendors should note that the solicitation was posted on January 4, 2026, with responses due by May 5, 2026, at 10:05 AM. The notice and all associated documents can be accessed via the Commonwealth of Virginia’s procurement portal at https://mvendor.cgieva.com/Vendor/public/IVDetails.jsp?PageTitle=SO%20Details&rfp_id_lot=117106&rfp_id_round=1.
While the notice does not specify set-aside requirements or special considerations, contractors should be prepared to comply with all applicable state procurement regulations and demonstrate a commitment to confidentiality and data protection throughout the engagement. This RFP represents a strategic initiative by NNPS to proactively address cybersecurity risks and ensure the resilience of its information systems over the contract lifecycle.