Number

2025-BUS-7250

Product/Service

Cyber Security Pre-Qualified Vendor

Contact Name

IT Contracts

Contact Email

ITContracts@dom.iowa.gov

Contact Phone Number

(515) 672-4569

Description

Cyber Security Pre-Qualified Vendor - Future Statements of Work issued by Purchasing Entities and other specifics associated with such future Statements of Work (SOW) will be established consistent with the Purchasing Entity's procurement obligations. In most cases, this will involve some form of competitive bidding among pre-qualified ITQ vendors, with appropriate exceptions available in emergency or sole source scenarios. A Vendor's inclusion in one of the ITQ categories of services in no way guarantees an award of any future SOW by the Purchasing Entity. A list of all pre-qualified vendors is in the Attachments section. Vendor Qualified Categories: 4.1.1 Cybersecurity Risk Assessments 4.1.2 Breach Notification Assistance 4.1.3 Incident Response Planning and Execution 4.1.4 Vulnerability Assessment and Penetration Testing 4.1.5 Security Awareness Training 4.1.6 Security Monitoring and Threat Detection 4.1.7 Security Policy and Procedure Development 4.1.8 Compliance and Regulatory Support 4.1.9 Security Architecture Design and Review 4 .1.10 Forensic Analysis, Investigation & Litigation Support All purchase or delivery orders issued by purchasing entities within the jurisdiction of this Agreement must include State of Iowa 2025-BUS-7250. Vendor Contact: Joel Anderson joel.anderson@rsmus.com State of Iowa Executive Branch Agencies: State agencies must use a Delivery Order (DO) in Iowa Advantage to pay vendor invoices. State of Iowa executive branch agencies must purchase according to applicable system standards and seek approval from the Department of Management, Division of IT (DOM DoIT) using the IT Procurement Request form located here: DOM DoIT Approval Process This approval is required when one or more of the following factors are present: Costs of $25,000 or more; 750 agency staff hours or more; Involves substantial information-security concerns, including but not limited to the sensitivity or confidentiality of the data involved; the location of the system, data to be stored therein, or both; or the data involved is subject to state or federal regulatory requirements governing data security, confidentiality, or integrity; or Involves significant compatibility, interoperability, or connectivity concerns.

Other Governmental Entities

All State Agencies

Vendor Name

RSM US LLP

Vendor Alias DBA

Vendor Address 1

400 E. Locust St.

Vendor Address 2

Ste. 640

City/State/Zip

Des Moines, IA 50309

Vendor Contact Name

Joel Anderson

Vendor Contact Email

Joel.Anderson@rsmus.com

Vendor Contact Phone Number

(515) 720-1209

Vendor Contact Phone Extension

Vendor Contact Other Number

Vendor Contact Fax Number

RSM Master Agreement

6/1/2026 2:26:54 PM

List of Pre-Qualifies Cybersecurity Vendors

6/1/2026 2:26:33 PM

Payment Term

Net 60

Free On Board

FOB Dest, Freight Prepaid