Main Content

Connect

Seeking Subject Matter Expert (SMEs) with Experience Developing and Delivering Instruction and Training on How Iranian State and Non-State Actors Utilize Cyber Enabled Tactics

Summary:

CRDF Global is Seeking Subject Matter Expert (SMEs) with Experience Developing and Delivering Instruction and Training on How Iranian State and Non-State Actors Utilize Cyber Enabled Tactics, Techniques, and Procedures to acquire proliferation-sensitive research and design-data through unauthorized access to computer systems in academic institutions.

Scope:

Iran continues to conduct cyber operations to acquire proliferation-sensitive technologies in violation of U.S. and UN sanctions. According to the U.S. Department of Justice, an Iranian government contracted hacking ring known as the Mabna Institute attacked 176 universities in 21 countries, in an effort to access the content of sensitive research in the fields of science and technology, engineering, social sciences, medical, and other professional fields. This ISN-CTR funded project will help university administrators, information technology (IT) employees, cyber-security professionals, and additional stakeholders within academia from relevant institution to become familiar with the risks so that they may identify and institutionalize best practices to secure their networks. 

As part of the ISN-CTR program on Iran, CRDF Global is looking to implement up to three, two-day workshops and up to 3 webinars to train information technology (IT) employees, cyber-security professionals, and additional stakeholders within academia in Singapore, Armenia, Azerbaijan, Georgia, Belarus, Turkey, Ukraine, and Bulgaria. These trainings are to utilize a combination of presentations and case studies to develop a familiarity with the specific social engineering techniques utilized by hackers and criminals such as Iran to gain trust and penetrate cyber networks, specifically with the intent to acquire academic data and intellectual property.

[These Tasks and their Deliverables will apply to each of the three workshops]

Each training will engage no fewer than 30 university information technology (IT) employees, cyber-security professionals, and additional stakeholders within academia from relevant institutions. The training will enable and mobilize participants to identify and institutionalize the detection of specific Tactics, Techniques, and Procedures (TTPs) used by Iranian threat actors to engage in espionage with a focus on insider threats and supply chain vulnerabilities. The training will utilize a combination of presentations and case studies to contribute to developing a familiarity with the specific social engineering techniques utilized by hackers and criminals such as Iran to gain trust and penetrate cyber networks, specifically with the intent to acquire academic data and intellectual property

Proposal Requirements:

Each proposal must include:

  • Statement of Interest and Technical Capabilities
  • Cost proposal
  • CV(s)
  • List of recent experience in cybersecurity consultation
  • List of applicable refrences
  • (If applicable) Any Small or Disadvantaged Business Designations (Veteran Owned, HUB Zone, Women Owned, Disadvantaged Businesses)
  • NAICS Codes For this engagement:
    • 541620 Environmental Consulting Services - Small Business Threshold $15 million
    • 541690 Other Scientific and Technical Consulting Services – $15 million

Download the RFP

Download the Cost Proposal Template