How It WorksFeaturesPricingPortalsEnterprise
Compare
vs GovWin IQ$7K–$45K/yrvs BidSync$1.2K–$3.6K/yrvs EZGovOpps$4.7K–$6K/yrvs BidNet$2K–$4K/yrvs MERXCAD onlyAll comparisons →
Get Started Free →Sign In
14-day free trial · No card required
HomeAgenciesCISA
Federal Agencylaw-enforcement

Cybersecurity and Infrastructure Security Agency

CISA

CISA leads the national effort to understand, manage, and reduce risk to cyber and physical infrastructure. As a relatively new agency (2018), it spends $2B+ annually on cybersecurity technology, IT systems, and professional services.

$2B+
Annual Contract Spend
$2.9B+
Annual Budget
35%
Small Business %
Get CISA Contract Alerts →Browse Live Tenders

Set-Aside & Small Business History

Cybersecurity and Infrastructure Security Agency historically awards the following percentages of eligible contract dollars to small and disadvantaged businesses. These figures reflect agency performance against statutory goals and represent real contract opportunities for certified firms.

35%
Small Business
5%
SDVOSB
5%
WOSB
3%
HUBZone
7%
8(a)

What CISA Buys

Cybersecurity and Infrastructure Security Agency is an active buyer in the following categories. These represent the highest-volume procurement areas based on historical award data.

Cybersecurity tools and services
IT infrastructure
Threat intelligence
Professional services
Training
Communications security

How to Get on CISA's Radar

The contractors who win CISA contracts consistently aren't just responding to solicitations — they're known quantities before the solicitation is published. Here's how to build that position.

1

Register with CISA's acquisition office at cisa.gov/resources-tools/resources/doing-business-with-cisa

2

Target CISA's Continuous Diagnostics and Mitigation (CDM) program — the largest CISA procurement vehicle

3

Attend CISA industry days for cybersecurity program briefings

4

Pursue CDM DEFEND task order opportunities through approved CDM vendors

Contact the CISA Small Business Program for outreach and matchmaking

Key Programs & Contract Vehicles

01Continuous Diagnostics and Mitigation (CDM)
02National Cybersecurity Protection System (NCPS)
03Emergency Communications programs
04Critical Infrastructure Security Assessment
05Cyber Threat Intelligence programs

Top NAICS Codes at CISA

These NAICS codes represent the highest-volume procurement categories at Cybersecurity and Infrastructure Security Agency. Register these codes in your SAM.gov profile to appear in agency vendor searches.

541512Computer Systems Design Services
$1.8M avg →
541511Custom Computer Programming Services
$900K avg →
518210Data Processing and Hosting Services
$2.1M avg →
541690Scientific and Technical Consulting Services
$1.4M avg →
541611Management Consulting Services
$1.4M avg →

Frequently Asked Questions

How do I register as a vendor with CISA?

SAM.gov + CISA acquisition office. Ensure your SAM.gov registration is active and includes the NAICS codes that match Cybersecurity and Infrastructure Security Agency's primary procurement categories before reaching out directly.

What certifications help with CISA contracts?

Cybersecurity and Infrastructure Security Agency awards 35% of eligible contract dollars to small businesses. SDVOSB firms receive approximately 5% of awards. 8(a)-certified firms receive approximately 7%. All applicable SBA certifications are recognized.

What does CISA spend on contracts annually?

Cybersecurity and Infrastructure Security Agency spends approximately $2B+ annually on contracts. The total agency budget is $2.9B+, with procurement representing the contract-deliverable portion of that spending.

How do I find active CISA solicitations?

Monitor SAM.gov and filter by Cybersecurity and Infrastructure Security Agency as the contracting agency. Set up email notifications for your NAICS codes from this agency. BidEdgeHQ monitors SAM.gov and state portals in real time, scoring every CISA solicitation against your ICP profile and delivering WhatsApp alerts for high-match opportunities.