Assessment and alignment of the USDA CDM solutions to the Department's Enterprise Architecture and Cybersecurity Architecture ensures cohesion of effort, streamlining of efficiencies, cost savings, and adherence to industry standards and models. USDA has partnered with DHS on their Cybersecurity Architecture Review (.govCAR) initiative which leverages the Office of the Director of National Intelligence's (ODNI) Cyber Threat Framework to discern capability gaps and prioritized needs. The contractor shall support USDA, via leveraging of industry and DHS .govCAR best practices, standards and the unique .govCAR assessment methodology, to assist in development and maturation of a USDA Cybersecurity Architecture. The architecture will also leverage the NIST Cyber Security Framework (CSF). Based on the level of work the Government expects one to two dedicated individuals would be required to meet this need. Cybersecurity Architecture support includes:
Directly support the ISCM CDM Program Manager and overall ISC.
Attend all USDA internal architecture meetings (relevant to cybersecurity) and DHS .govCAR Focus Group meetings.
Coordinate with DHS .govCAR Focus Group lead to leverage the architecture, threat data and assessment methodology at USDA.
Coordinate across USDA, as required, to gain inputs and insights to assist in development and implementation of a USDA Cybersecurity Architecture.
Post all cybersecurity architecture documentation to a shared data repository.
The contractor shall conduct an as-is assessment of the cybersecurity architecture and provide expert level recommendations for the new architecture. The as-is assessment will be completed using the .govCAR assessment methodology and as required other tools to complete the task. Results of this mapping will identify existing gaps against adversary activities and allow USDA to remediate shortcomings.
The contractor will provide the results of the assessment via formatted report to the ISCM CDM Program Manager and ISC leadership. It is expected that by using the DHS .govCAR assessment methodology tool, developed by the National Security Agency (NSA), USDA defensive capabilities against intelligence-informed threat vectors will be mapped.
The contractor will coordinate with the USDA OCIO Enterprise Architecture office on the cybersecurity architecture efforts to ensure alignment.
The contractor will also coordinate with the ASOD Engineering and Architecture Branch Chief and the OCIO ISC Cybersecurity Operations Consolidation Integrated Project Team (IPT) to ensure alignment as well as to inform more tactical levels of effort whilst developing the strategic Cybersecurity Architecture.
Coordinate with the ASOD, DHS and as needed intelligence organizations to garner specific threats to USDA information technology and capabilities. This effort will build upon the Cyber Threat Framework, from Office of the Director of National Intelligence (ODNI), used by DHS for .govCAR to discern unique and/or additional threats to the USDA and its cyber and cybersecurity architectures.
The Contractor shall assist USDA in cybersecurity architecture assessment, design, development and planning of current and future technical and functional/business systems by depicting technical, systems and functional architecture views as required.
The Contractor shall facilitate and develop plans which will enable information sharing, integration, and interoperability while considering service-oriented architecture best practices by aligning with overarching Federal and DHS architectures. Architecture support provided to USDA shall consider the full life cycle, inclusive of initial planning through systems decommissioning. The Contractor shall research and identify new and emerging technologies for potential insertion into current and future programs, and the cybersecurity architecture baseline, based on a business case analysis (e.g., cloud services, Big Data analysis). This may include, but is not limited to, analytical capabilities, infrastructure innovation, data innovation, and other strategic innovations as required by the Government.
The Contractor shall engage in practices to enable rapid fielding of capabilities developed externally including the establishment of a Continuous Integration Practice built on the Continuous Integration/Continuous Delivery methodology providing the systematic, repeatable, secure, and streamlined delivery of capabilities to production environments.
Current architectures are comprised of separate disparate client server legacy, virtual and cloud environments. The Government's intent is to migrate to an integrated hybrid architecture that provides the best mission outcomes for its customer base by improving efficiency, reliability and cost effectiveness. Services include, but are not limited to, standardizing and optimizing system and infrastructure designs and architectures; identifying and coordinating emerging IT solutions and technology integration opportunities; implementing innovative industry best practices and technologies that maximize efficiencies and cost savings; developing new systems and infrastructure capabilities to meet mission requirements and improve operational efficiency of customers; delivering system and infrastructure capabilities that scale to meet enterprise demand with the least reengineering effort possible; and facilitating and monitoring the integration, interoperability, and synchronization of enterprise-wide systems and infrastructure solutions and services.
The Contractor shall support the Government life cycle systems engineering and infrastructure engineering activities as it continues to transition to the end state hybrid architecture. The Contractor shall provide; the capability to coordinate infrastructure transition and application development efforts, translate strategic initiatives into functional IT requirements and corresponding capabilities, define capability gaps, support and/or manage as needed the technical plans for IT engineering, hardware, and enterprise architecture projects, ensure the quality tools and technologies are delivered according to government cost, schedule, and performance objectives.
The Contractor shall participate and support the development of implementation strategies and courses of action that address mission capabilities development and implementation, data migration, and capacity planning. The Contractor shall also understand the relationship of applications and databases and other capabilities that will be operating in infrastructure as a service; platform as a service; and potentially application as a service as well as all government-specific data types. Additionally, the Contractor shall provide options for interfaces between the cloud provider(s) and consumers to utilize and manage the on-demand self-service and expected elasticity with the ability to forecast accurately and take advantage of the elasticity of the cloud.