Highly Adaptive Cybersecurity Services

Features and benefits

Highly Adaptive Cybersecurity Services, known as HACS, can help your agency:

• Quickly order and implement services from technically-evaluated vendors.
• Rapidly address potential vulnerabilities.
• Stop adversaries before they impact networks.
• Test high-priority IT systems.

Scope

HACS includes proactive and reactive cybersecurity services and supports governmentwide priorities like Application Security Testing and Zero Trust Architecture.

Use cases

View our HACS Use Case video on YouTube.

News, events, and training

Join our IT security Interact community for news and updates for agencies and industry.

Buy through MAS

State, local, territorial, and tribal governments may be able to purchase through Cooperative Purchasing and Disaster Purchasing programs.

Eligible agencies can issue an RFQ to vendors through eBuy and GSA Advantage. You can also issue an RFI for market research using the Market Research as a Service tool.

You can establish a blanket purchase agreement with MAS contractors using the authority and instructions under FAR 8.405-3.

• Read the HACS buying guide [PDF - 196 KB]
• Get guidance and tools for MAS buyers
• Contact ITSecurityCM@gsa.gov for a free scope review against SIN 54151HACS.

HACS templates

These example templates provide typical language and can be copied and pasted directly into sections 3.0 and 4.0 of the RFQ template:

Vendors

HACS vendors are categorized under six subgroups for market research purposes:

You can specify a subgroup or subgroups by inserting this language into your RFQ: “This Request for Quotation seeks contractors holding the Highly Adaptive Cybersecurity Services Special Item Number and the contractor must be categorized in the following HACS subgroup (or subgroups) [insert subgroup or subgroups].”

Use eLibrary’s HACS contractor page to filter vendors by set-aside; select your specified socio-economic designation (such as SBA Certified 8(a) Firm) and search. Specify set-asides and any other qualified requirements (like scope and mandatory knowledge) in the solicitation. Always check a contractor’s GSA price list to verify and confirm availability of awarded products and services; offerors are responsible for keeping their awarded subgroups up to date in eLibrary.

Sell through MAS

Current contract holders can submit a modification to add a SIN in the eOffer/eMod portal.

If you’re new to MAS, follow the MAS Roadmap guidance for preparing and sending an offer.

All vendors must pass an oral-technical evaluation before they can be awarded the HACS SIN:

• Evaluation questions are not provided before the evaluation. We recommend that you (the offeror) review the MAS Solicitation IT Category Attachment for details on the HACS oral-technical evaluation
• When submitting your offer or mod, you’ll need to name up to five key personnel (and their roles in your company) to field questions during your evaluation. Consultants are not allowed to participate.
• A GSA MAS Contracting Officer must request the oral-technical evaluations for SIN 54151HACS from the HACS Program Management Office. The HACS PMO will contact you to coordinate a date for the oral-technical evaluation once the request is received. GSA reserves the right to reschedule this date at the convenience of the Government; the offeror may also reschedule with reasonable notice.
• You’ll be evaluated by our Technical Evaluation Board of GSA IT Specialists. Within two business days after the evaluation, the board will send their results to the GSA CO, and the CO will send results to the offeror within one week.

Need help? Contact the Vendor Support Center.

Resources

Contact us