Cybersecurity Improvement Grants for Governmental Authorities and Critical Infrastructure State-Owned Enterprises (SOE) in Ukraine/ Гранти на вдосконалення кібербезпеки для державних органів влади та державних підприємств, що належать до об’єктів критичної інфраструктури України

CRDF Global is currently accepting proposals from the Governmental Authorities and Critical Infrastructure SOE in Ukraine (hereafter – potential applicants) for the Competition titled “Cybersecurity Improvement Grants for Governmental Authorities and Critical Infrastructure State-Owned Enterprises (SOE) in Ukraine (the Competition). This Competition is organized and administered by CRDF Global, utilizing funding provided by the U.S. Department of State. Funding will be provided in the form of in-kind support; a grantee is not expected to receive and manage grant funds directly.

Cybersecurity Improvement Grants (CySIG) for Governmental Authorities and Critical Infrastructure SOE in Ukraine are designated to address current and emerging challenges in the cybersecurity field.

As a result of the implementation of grants under this Request for Proposals, the following objectives will be pursued:
(1)  Increase the level of cybersecurity and the resilience of cybersecurity systems of Governmental Authorities and Critical Infrastructure SOE in Ukraine.
(2)  Contribute to the development and/or improvement of existing information and cyber infrastructure of these institutions by providing necessary resources (services, equipment, hardware, and software).

In the context of the full-scale war by Russia, Ukrainian governmental institutions and authorities of Ukraine have been confronting significant challenges, including cyber-attacks, disinformation campaign that threaten their security and operation stability. These challenges have created a pressing need for Ukraine to bolster its cybersecurity measures and resilience, counter disinformation efforts, and protect critical infrastructure, ensuring the continued functioning and security of governmental institutions and vital sectors during this time of the war.

In the context of this competition, it is important to note the significant shortage of technical equipment and software in Ukrainian governmental institutions, which significantly complicates the process of protecting these institutions from cyber threats and other cyberattacks. The absence of adequate tools and programs can compromise the resilience and effectiveness of data and infrastructure protection, thereby increasing vulnerability to modern cyber threats.
Addressing these issues requires a comprehensive and coordinated approach to ensuring the national security of Ukrainian governmental institutions and state-owned critical infrastructure enterprises. Such an approach will not only develop the technical aspects of cybersecurity but also ensure effective communication and collaboration with international experts, which is crucial for successfully protecting critical infrastructure in the current landscape of cyber threats.

Eligible Scope of Projects
For the purposes of this Competition, applicants should propose projects in the following areas:
(1) Cybersecurity and improvement of the material-technical base for its provision.
(2) Data protection and threat analysis.
(3) Assessment of the cybersecurity posture and audit of protection systems.
(4) Enhancement of professional qualifications and cybersecurity capacities of personnel.

Given the areas outlined above, project activities may include, but are not limited to:
(1) Provision of necessary resources (equipment, services, hardware, and software).
(2) Optimization and improvement of processes/systems of cybersecurity for the grantee in the aforementioned areas.
(3) Assessment of the cybersecurity posture and audit of protection systems of Governmental Authorities and Critical Infrastructure SOEs of Ukraine.

ELIGIBILITY REQUIREMENTS
All applicants and proposals must meet each of the following eligibility criteria:
(1) Applications are accepted from the Governmental Authorities and Critical Infrastructure SOEs of Ukraine, which may be vulnerable to potential cyber threats or other cyber incidents.
(2) Applicants and all proposed vendors, equipment, software, and services must be in full compliance with all applicable U.S. export control laws and regulations, including the Export Administration Regulations (EAR), 15 CFR Parts 730–774, the International Traffic in Arms Regulations (ITAR), 22 CFR Parts 120–130, to the extent that any proposed items constitute defense articles or defense services under the U.S. Munitions List, and U.S. sanctions programs administered by the Office of Foreign Assets Control (OFAC), 31 CFR Chapter V, including applicable country- and region-specific sanctions. Proposals that include items, entities, or transactions that are prohibited or restricted under these laws and regulations will be deemed ineligible without further review.
(3) Applicants have provided a clear formulation of the problem statement and justified the necessity of acquiring equipment/services/software.
(4) Applicants have presented a clear breakdown of the necessary equipment/services/software.
(5) Applicants have submitted at least one commercial offer from a potential vendor who is ready to supply the services and/or equipment as specified in your application.
(6) Applicants have submitted a list of additional potential vendors, including at least three names and relevant contact information.
(7) Applicants have submitted a complete set of required documents in English only.

NOTE: CRDF Global reserves the right to decline review and evaluation of the applications that do not meet the eligibility requirements stipulated above.

Proposal application materials submitted to CRDF Global must be prepared in English, and the proposal package should consist of the following documents:
Required:
I. Proposal Cover Letter (PDF, signed) and Proposal Application (PA) Form (Excel spreadsheet) that includes the following sheets:
(1) Institutional Data Form (IDF)
(2) A. Project Overview
(3) B. Scope of Work (SOW)
(4) C. Workplan (WP)
(5) D. Budget
(6) E. Budget Narrative
II. CV of Principal Investigator (project coordinator responsible for project implementation).
III. One Commercial Offer from a potential vendor.
IV. A list of additional potential vendors.