Welcome to the CBIZ Risk & Advisory Services, LLC (CBIZ) State of Texas Department of Information Resources (DIR) Cooperative Contracts site. Our services are now available to Texas DIR customers directly through the Cooperative Contracts program through the DIR Cybersecurity Products and Services Contract (contract no. DIR-CPO-4888), without the hassle of completing the work. Use of this site is for DIR customers only. DIR customers include state of Texas agencies, public institutions of higher education, and local governments, including school districts. To view eligibility requirements, or for additional information about the DIR Cooperative Contracts program, visit the Cooperative Contracts Program.
About CBIZ Risk & Advisory Services
CBIZ Risk & Advisory Services has over 20 plus years of experience providing risk advisory solutions including internal audit and compliance, IT security and compliance, board and audit committee advisory, and cost savings services. We have offices located throughout the United States, and practitioners with experience serving state agencies and federal agencies such as CMS, as well as Texas government agencies.
Backed by a nationwide network of resources, expertise, and financial strength, the Austin, Texas office offers close personal attention along with the resources to assure personnel continuity on all engagements, and ultimately, relationships that go beyond the numbers. Whatever your needs are for information technology security assessments, reviews, or consulting, we can help.
Our Austin office has a professional staff with many years of experience in the government sector and the qualifications to meet almost any need. The Austin office professional staff includes staff dedicated to performing information technology security services, such as information technology controls assessments, security assessments and reviews, vulnerability assessments, and penetration testing.
Our national IT and Cybersecurity Services team is comprised of dedicated and experienced security and IT audit professionals armed with the relevant major technical certifications including:
- Certified Ethical Hacker (CEH).
- Certified Information Systems Auditor (CISA).
- Certified Information Systems Security Professional (CISSP).
- Certified Public Accountant (CPA).
- Certified in Risk and Information Systems Control (CRISC).
- Systems Security Certified Practitioner (SSCP).
- HealthCare Information Security and Privacy Practitioner (HCISPP)
- Certified Fraud Examiner (CFE).
- Certified Internal Auditor (CIA).
- Certified Internal Controls Auditor (CICA).
We have also been trained and certified in the use of Nessus® Scanner and other automated testing tools for vulnerability assessment, wireless security testing, and penetration testing.
DIR Cybersecurity Products and Services Contract (DIR-CPO-4888)
Purchases made directly by DIR customers to CBIZ for Cybersecurity Products and Services through the DIR Cooperative Contracts program (for an overview of the DIR Cooperative Contracts program go here) are governed by the terms and conditions of contract number DIR-CPO-4888. Customers will obtain services pricing and assistance, or any other related services from CBIZ, and submit purchase orders directly to CBIZ for all orders of Cybersecurity Products and Services.
Cybersecurity Products and Services Offered
CBIZ provides cybersecurity services through this contract, specifically: Security Services. Note that this contract is for services only. Please contact the Vendor for the latest information.
Below is a listing of the functional scope categories and services available and defined by the DIR Cybersecurity Products and Services RFO under CBIZ Risk & Advisory Services contract.
Endpoint, Network and Cloud Security
This category includes, but is not limited to:
- Penetration testing to identify possible exploitable pathways and validate strength of defenses
- Cloud compliance with cybersecurity framework standards (ISO, NIST, etc.)
Authentication and Authorization
This category includes, but is not limited to:
Training and Awareness
This category includes, but is not limited to:
- Contingency planning and training
- Response planning and communications
- Cybersecurity risk assessment and management
- Cybersecurity improvement
- Governance development, including policy, processes, and procedures
- System maintenance policy and procedures
- Cybersecurity risk assessment and management
- Cybersecurity program evaluation
- Provide cybersecurity awareness training to prevent phishing and other attacks
Threat Detection and Security Monitoring
This category includes, but is not limited to:
- Vulnerability scanning and management
Additional details regarding the specific services provided and details related to each of these scoping categories and services listed, please go here.
Pricing and Discounts
CBIZ offers a DIR Customer Discount of 24% off MSRP for services procured through the DIR Cybersecurity Products and Services contract (contract no. DIR-CPO-4888). Pricing information can be found here: Appendix C – Pricing Index
Contact Information
To obtain additional information about the services that we can provide or DIR contract pricing for CBIZ’s Security Services under the DIR Cybersecurity Products and Services Contract (DIR-CPO-4888), please contact:
Tiffany Garcia
CBIZ Risk & Advisory Services, LLC
10431 Morado Circle, Suite 100
Austin, TX 78759
Phone: 512-340-7423
Fax: 512-342-0820
[email protected]
CBIZ is available to assist with all service information and has experienced information technology security consultants (with a broad range of applicable technical certifications) available on staff to assist with structuring the scope of security services needed to support an overall solution to meet your needs.
How to Order
- For services and pricing information, visit the CBIZ Risk & Advisory Services, LLC website or contact Tiffany Garcia at (512) 340-7423
- Generate a purchase order made payable to CBIZ Risk & Advisory Services, LLC and you must reference the DIR Contract Number DIR-CPO-4888 on your purchase order.
- E-mail or fax your purchase order and quote form to your designated vendor sales representative.
For more detailed information on how to place an order through the DIR Cooperative Contracts program and contracts, follow this link to DIR’s web page on How To Order.
Purchase Order
Once the project details are finalized, the Statement of Work will be signed by both organizations, and you can request a PO from your purchasing department to be submitted to CBIZ. Make the Purchase Order (PO) payable to CBIZ Risk & Advisory Services, LLC, referencing the DIR-CBIZ agreement number of DIR-CPO-4888.
As soon as we receive the PO, we will begin work on your project.
Note that POs can be sent to:
CBIZ Risk & Advisory Services
ATTN: Tiffany Garcia
10431 Morado Circle, Suite 100
Austin, TX 78759
[email protected]
Contract Information
A copy of the full CBIZ DIR Cybersecurity Products and Services Contract is available on the DIR website through the links listed below.
CBIZ Risk & Advisory Services, LLC
Vendor ID: 17527607273
Contract Documents:
DIR-CPO-4888 Contract PDF
DIR-CPO-4888 Appendix A Terms and Conditions PDF
DIR-CPO-4888 Appendix B HUB Subcontracting Plan PDF
DIR-CPO-4888 Appendix C Pricing Index.PDF
DIR-CPO-4888 Appendix D Service Agreement.PDF
RFO DIR-CPO-TMP-550 for DIR-CPO-4888 PDF
Please note that these documents are in .pdf format and require Adobe Acrobat Reader to view.
Warranty and Returns
CBIZ warrants to use due professional care consistent with relevant industry best practices for similar services in providing services under contract no. DIR-CPO-4888. In order to ensure that we meet our commitment to provide quality service, CBIZ has specific procedures with respect to the quality of our work. Our quality control review (QCR) processes begin at project startup and continue through completion of final project reporting and delivery of all required results. These procedures meet relevant consulting standards for quality control. Because we do not provide hardware or software under this contract, a returns policy is not directly relevant.