statement of work for dir lnfosec academy education training

DocuSign Envelope ID: D3BA97C8-8917-4AF4-AF3E-07BD19F11890

Statement of Work for DIR lnfoSec Academy Education & Training Program

February 26, 2018


DIR SOW NUMBER DIR-ECM-IAT-SOW-4006

STATEMENT OF WORK FOR

DIR INFOSEC ACADEMY EDUCATION & TRAINING PROGRAM

LEARNING TREE INTERNATIONAL USA, INC.

1. Introduction This Statement of Work (SOW) is subject to the terms of the DIR Contract No. DIR-TSO-4006 for InfoSec Academy Instructor-Led Classroom and Technology Based Security Training Services by and between Learning Tree International USA, Inc., ("Vendor") and Texas Department oflnformation Resources ("DIR").

This SOW outlines the services to be performed by Learning Tree International USA, Inc., ("Learning Tree") for the Texas Department of Information Resources ("DIR") in providing Instructor-Led and Technology Based Training Services for the InfoSec Academy.

This document captures the current understanding of the scope of services and time estimation, describes the approach, and contains details ofthe activities and responsibilities for both parties in accordance with the deliverables and associated tasks mentioned in the Statement of Worlc - InfoSec Academy Education & Training Program dated February 2, 2018 and Learning Tree's response for DIR InfoSec Academy Education and Training Program dated February 14, 2018. In the event of any conflict between the documents listed in this section, the controlling document shall be the DIR Contract, the DIR Statement of Work and Learning Tree's response.

2. Period of Performance The period of perfo1mance for this SOW is initial term through August 31, 2019, with up to three (3) one-year renewal options. Prior to expiration, DIR and Learning Tree may extend the SOW upon mutual agreement for up to three optional one-year renewal te1ms:

3. Pricing Pricing shall be as set fmth in Appendix A Pricing Sheet to this SOW. The total amount of this SOW will not exceed two million three hundred thirty-seven thousand-five hundred dollars ($2,337,500), this amount includes all renewal options available in the SOW.

4. Invoices Upon completion of a training course or requested service, Learning Tree will obtain a written acknowledgement of acceptance from the DIR Project Manager to be attached to each invoice submitted for payment. Learning Tree shall submit an invoice to DIR setting fo1th amounts due to Learning Tree in accordance with DIR Contract Number DIR-ECMIAT-SOW-4006 requirements. The invoice shall clearly state the period of the work performed and the training course or requested service and reference SOW Number DIRECM-IAT-SOW-4006. Payment shall be in accordance with Appendix A of Contract Number DIR-ECM-IAT-SOW-4006.

Page I of8



5. Equipment and Workspace Learning Tree must provide all equipment required for its staff. DIR will provide access to required documentation and systems information needed to complete the services.

6. Additional Services In the event DIR requires additional services during the term of the contract, DIR will provide written notice to Learning Tree describing the additional services required including as applicable the purpose, scope, timeline and any other unique requirements, constraints, and assumptions for the requested service. Any additional services must be directly related to the awarded scope and intent of the SOW.

If additional services are required, DIR and Learning Tree will mutually determine a timeline for Learning Tree to provide a work plan and pricing for the additional services. Any additional services shall be quoted at a firm fixed price inclusive of any and all additional fees or charges. A request for pricing does not constitute a notice to proceed. If DIR chooses to proceed, DIR will issue a written amendment to the contract for signature by DIR and Learning Tree authorizing the additional services.

7. Changes to Required Services DIR and Learning Tree will negotiate a change order process to modify or remove milestones to achieve the objectives of this SOW. All Change Orders are subject to mutual agreement and must be in writing. DIR will document any Change Order in a written instrument for signature by DIR and Learning Tree.

8. Additional Terms and Conditions DIR may require all Learning Tree personnel working on this project to sign a NonDisclosure Agreement before beginning work and/or receiving any confidential materials related to this work. Accordingly, Learning Tree shall ensure that all staff and contractors working on this project are advised ofthe contents of the NDA and their responsibilities thereunder. Under no circumstances may Learning Tree contact any third party to discuss the work under this SOW without prior written approval from DIR.

9. Point of Contact All communications for this SOW must be directed through the following Points of Contact:

Department oflnformation Resources (DIR) Lisa Llamas, Contract Manager 300 W. 15th Street, Ste 1300 Austin, Texas 78701 Office: (512) 475-0515 Email: [email protected]

Page 2 of8

mailto:[email protected]



Suzi Hilliard, Project Manager 300 W. 15th Street, Ste 1300 Austin, Texas 78701 Office: (512) 475-0222 Email: [email protected]

Learning Tree International USA, Inc. Ms. Marthe Lewis 13650 Dulles Technology Drive Suite 400 Herndon, VA 20171-6156 Phone: (703) 925-7794 Facsimile: (703) 925-7747 Email: ma1the _ [email protected]

{ remainder of page left intentionally blank}

Page 3 of8



DocuSign Envelope ID: D3BA97C8-8917-4AF4-AF3E-078D19F11890


This SOW is executed to be effective as of the date oflast signature.

Learning Tree International USA, Inc.

Authorized By-:·

\ Name: f .2,; bt,,ol A- Sp,',,-e--,

Title: Cf{O

Date: fl/;r-,/ // .,, .;20/3

The State of Texas, acting by ancl through the Department of Information Resources

Authorized By:[

Hershel Becker Name: _____________ _

chief Procurement officer Title: _____________ _

3/28/2018 I 8:56 PM CDT Date: _____________ _

Office of General Counsel

,, Authorized By\.=------

Stacey Napier Name: ---------------

Title: Executive Di rector

4/16/2018 I 1:40 PM CDT Date: -------

Page 4 of8

/Signature on File/

/Signature on File/ /Signature on File/

/Signature on File/

DocuSign Envelope ID: D3BA97CB-8917-4AF4-AF3E-07BD19F11890


APPENDIX A - PRICING SHEET TEXAS INFOSEC ACADEMY EDUCATION & TRAINING PROGRAM

(Firm-Fixed Pricing) Initial Term: Date of Award through August 31 , 2019

Table 1: Core Course Training Classes

Course Description Virtual Price per Course without Exam

Virtual Price Course with Exam

Live Instructor Price without Exam

Live Instructor Price with Exam

1 Certified Information Systems Security Professional (CISSP)

$2,195.00 $2,825.00 $1,500.00 $2,300.00

2 System Security Certified Practitioner (SSCP)

$2,095.00 $2,275.00 $1,500.00 $1,800.00

3 Certified Cloud Security Professional (CCSP)

$2,195.00 $2,825.00 $1,500.00 $2,300.00

4 Comp TIA Advanced Security Practitioner (CASP)

$1,525.00 $1,855.00 $1 ,200.00 $1,600.00

5 Certified Information Systems Auditor (CISA)

$1,525.00 $2,200.00 $1 ,200.00 $1 ,900.00

6 Certified Information Security Manager (CISM)

$ 900.00 $1,600.00 $1 ,200.00 $ 1,900.00

7 Certified-In-Risk and Information Systems Control (CRISC)

$1,525.00 $2,200.00 $1 ,200.00 $1 ,900.00

8 Comp TIA Security+ $1,150.00 $1 ,400.00 $1,200.00 $1,425.00

9 Certified Ethical Hacker (CEH) $1 ,595.00 $1 ,995.00 $1,200.00 $1,600.00

10 EC-Council's Certified Security Analyst (ECSA)

$2,595.00 $2,995.00 $1,500.00 $1,900.00

11 Licensed Penetration Tester (LPT) Not Available $1 ,200.00 Not Available Not Available

12 Certified Hacking Forensic Investigator (CHFI)

$2,595.00 $2,895.00 $1,500.00 $1 ,900.00

13 EC-Council Certified Incident Handler (ECIH)

$1,995.00 $2,150.00 $1 ,500.00 $1,750.00

14 Certified Chief Information Security Officer (CCISO)

$2,595.00 $3,200.00 $1 ,500.00 $2,200.00

TABLE 2: Policy & Assurance Services

Description of Services

Hosting P&A Computer-Based Training Course On-line Live Instructor-Led In Person P&A Training Updates for P&A Computer Based Training Course

Cost per Student $ 30.00

$ 625.00

Bulk Cost

$ 25.00

$ 330.00

Min.# Estimated for Bulk Hrs. #100 -

-TABLE 3: Program Administration & Support

Description of Services Unit of Measure Cost Program Administration & Training Support Services Management (Cost included in Course Pricing)

Per Year No Charge ($0)

Page 5 of 8


DIR SOW NUMBER DIR-ECM-IA T-SOW-4006

APPENDIX A - PRICING SHEET (continued) TEXAS INFOSEC ACADEMY EDUCATION & TRAINING PROGRAM

(Firm-Fixed Pricing) 1st Renewal Option: September 1, 2019 through August 31, 2020


Course Description

Virtual Price per Course without Exam





$2,195.00 $2,825.00 $1,500.00 $2,300.00


$2,095.00 $2,275.00 $1 ,500.00 $1,800.00


$2,195.00 $2,825.00 $1,500.00 $2,300.00


$1,525.00 $1,855.00 $1,200.00 $1 ,600.00


$1 ,525.00 $2,200.00 $1,200.00 $1,900.00


$ 900.00 $1 ,600.00 $1,200.00 $1,900.00


$1,525.00 $2,200.00 $1,200.00 $1,900.00

8 Comp TIA Security+ $1 ,150.00 $1,400.00 $1,200.00 $1,425.00

9 Certified Ethical Hacker (CEH) $1,595.00 $1 ,995.00 $1 ,200.00 $1,600.00


$2,595.00 $2,995.00 $1,500.00 $1,900.00

11 Licensed Penetration Tester (LPT) Not Available $1 ,200.00 Not Available Not Available


$2,595.00 $2,895.00 $1 ,500.00 $1 ,900.00


$1,995.00 $2,150.00 $1,500.00 $1,750.00


$2,595.00 $3,200.00 $1,500.00 $2,200.00


Description of Services Cost per Bulk Cost Min.# for Student Bulk

Hosting P&A Computer-Based Training $ 30.00 $ 25.00 #100 Course On-line Live Instructor-Led In Person P&A Training $ 625.00

Updates for P&A Computer Based Training -·Course

Cost per Hour

$ 125.00

Estimated Hrs.

TABLE 3: Program Administration & Support Description of Services Unit of Measure Cost Program Administration & Training Support Services Management (Cost included in Course Pricing)


Page 6 of 8




(Firm-Fixed Pricing) 2nd Renewal Option: September 1, 2020 through August 31 , 2021


Course Descriotion

Virtual Price per Course without Exam





$2,195.00 $2,825.00 $1 ,500.00 $2,300.00


$2,095.00 $2,275.00 $1,500.00 $1 ,800.00


$2,195.00 $2,825.00 $1,500.00 $2,300.00


$1,525.00 $1,855.00 $1,200.00 $1,600.00


$1,525.00 $2,200.00 $1,200.00 $1 ,900.00


$ 900.00 $1,600.00 $1,200.00 $1,900.00


$1 ,525.00 $2,200.00 $1 ,200.00 $1,900.00

8 Comp TIA Security+ $1 ,150.00 $1 ,400.00 $1 ,200.00 $1 ,425.00

9 Certified Ethical Hacker (CEH) $1,595.00 $1,995.00 $1,200.00 $1,600.00


$2,595.00 $2,995.00 $1,500.00 $1,900.00

11 Licensed Penetration Tester (LPT) Not Available $1,200.00 Not Available Not Available


$2,595.00 $2,895.00 $1,500.00 $1 ,900.00


$1,995.00 $2,150.00 $1 ,500.00 $1 ,750.00


$2,595.00 $3,200.00 $1 ,500.00 $2,200.00


Description of Services

Hosting P&A Computer-Based Training Course On-line Live Instructor-Led In Person P&A Trainin Updates for P&A Computer Based Trainin Course

Cost per Student $ 30.00

$ 625.00

Bulk Cost

$ 25.00

$ 330.00

Min.# for Bulk #100

#15

TABLE 3: ProAram Administration & Suooort Description of Services Unit of Measure Cost Program Administration & Training Support Services Per Year No Charge ($0) Management (Cost included in Course Pricinq)

Page 7 of 8




(Firm-Fixed Pricing) 3rd Renewal Option: September 1, 2021 through August 31, 2022

Table 1: Core Course Training Classes Course Description Virtual Price per

Course without Exam





$2,195.00 $2,825.00 $1,500.00 $2,300.00

2 System Security Certified Practitioner (SSCP) $2,095.00 $2,275.00 $1 ,500.00 $1,800.00


$2,195.00 $2,825.00 $1,500.00 $2,300.00


$1 ,525.00 $1,855.00 $1,200.00 $1 ,600.00

5 Certified Information Systems Aud itor (CISA)

$1,525.00 $2,200.00 $1 ,200.00 $1,900.00


$ 900.00 $1,600.00 $1,200.00 $1,900.00


$1,525.00 $2,200.00 $1,200.00 $1,900.00

8 CompTIA Security+ $1,150.00 $1,400.00 $1,200.00 $1,425.00

9 Certified Ethical Hacker (CEH) $1,595.00 $1 ,995.00 $1,200.00 $1,600.00

10 EC-Council 's Certified Security Analyst (ECSA) $2,595.00 $2 ,995.00 $ 1,500.00 $1,900.00

11 Licensed Penetration Tester (LPT) Not Available $1,200.00 Not Available Not Available 12 Certified Hacking Forensic

Investigator (CHFI) $2,595.00 $2,895.00 $1,500.00 $1,900.00

13 EC-Council Certified Incident Handler (ECIH) $1,995.00 $2,150.00 $1,500.00 $1,750.00


$2,595.00 $3,200.00 $1,500.00 $2,200.00


Description of Services Bulk Cost Min.# for ost per s ,mated Hrs.Cost per Bulk HourStudent

$ 25.00 #100 Course On-line Live Instructor-Led In Person P&A Training

Hosting P&A Computer-Based Training $ 30.00

625.00

Updates for P&A Computer Based Training -- 25.00 Course

TABLE 3: Program Administration & Suooort Description of Services Unit of Measure Cost Program Administration & Training Support Services Management (Cost included in Course Pricinq)


Page 8 of8

statement of work for dir lnfosec academy education training

Documents