01 May 2017

Cyber Security (CS)/Information Management (IM) IA-IM0001 PWS Special Notice

Type of document: Contract Notice
Country: United States

Cyber Security (CS)/Information Management (IM) IA-IM0001 PWS Special Notice

Agency:
Department of the Army

Official Address:
5300 Martin Rd Redstone Arsenal AL 35898-0000

Zip Code:
35898-0000

Contact:
Tarshalyn M. Sanders, Contracting Officer, Phone 2569555949, Fax 256-955-6685, Email tarshalyn.m.sanders.civ@mail.mil

Link:

Date Posted:
28/04/2017

Classification:
D

Contract Description:
DRAFT           DRAFT          DRAFT     DRAFT

PERFORMANCE WORK STATEMENT (PWS)  FOR CYBER SECURITY (CS)/
INFORMATION MANAGEMENT (IM) SUPPORT SERVICES

 PREPARED BY

U.S. ARMY AVIATION AND MISSILE LIFE CYCLE MANAGEMENT COMMAND

DRAFT AS OF 3 April 2017

TABLE OF CONTENTS

1.0 SCOPE 4
1.1 GOAL 5
2.0 APPLICABLE DOCUMENTS 5
3.0 CYBER SECURITY PERFORMANCE REQUIREMENTS 5
3.1 Cyber Security Requirements Overview 5
3.2 Cyber Security General Information 5
3.3 Risk Management Framework Assess And Authorize Support 7
3.4 Technical Vulnerability Assessment And Validation Support 8
3.5 Cyber Security Program Status, Tracking, And Reporting Support 9
3.6 Information Assurance Vulnerability Management/Cyber Security Program Support 10
3.7 Cyber Security Program Awareness Support 11
3.8 Cyber Security Project/Planning Support 11
3.9 Security Assessment Support 12
3.10 Senior Cyber Security Subject Matter Expert Support 13
4.0 INFORMATION MANAGEMENT PERFORMANCE REQUIREMENTS 14
4.1 Information Management Requirements Overview 14
4.2 Information Management General Information 14
4.3 Business Process Management And Re-Engineering Support 15
4.4 Business Analysis Support 16
4.5 Information Technology Strategic, Capital, And Policy/Guidance Planning Support 17
4.6 Portfolio Management Support 18
4.7 Engineering Data Acceptance Support 19
4.8 Technical Data Package Operations Support 20
4.9 Data Analysis, Integrity, And Review Support 21
4.10 Information Technology Asset Management Support 22
4.11 Office Automation, Presentation/Exhibit Development, Data Entry, And Content Management Support 23
4.12 Technical Writing/Editing Support 26
4.13 Information Management Project/Planning Support 27
4.14 Senior Information Management Subject Matter Expert Support 27
5.0 DELIVERABLES 28
6.0 MANAGEMENT 29
7.0 OTHER DIRECT COSTS 30
8.0 DEGREE OF KNOWLEDGE AND EXPERIENCE 30
9.0 PLACE OF PERFROMANCE 30
10.0 SECURITY 30
11.0 TRAINING 32
12.0 ANTITERRORISM/OPERATIONS SECURITY 33
13.0 TRAVEL 35
14.0 GOVERNMENT FURNISHED FACILITIES, EQUIPMENT, AND INFORMATION 36
15.0 PRIVACY ACT 37
16.0 HOURS OF OPERATIONS 37
16.1 Normal Business Hours 37
16.2 Operational Business Hours 37
16.3 Overtime 37
16.4 On-Call Support 37
16.5 Critical Support 37
16.6 Continuity Of Operations/Disaster Recovery 38
16.7 Mission/Key Essential 38
17.0 HAZARDOUS MATERIAL 38
18.0 COMPLIANCE WITH ENVIRONMENTAL LAWS AND REGULATIONS 38
19.0 PHASE-IN, PHASE-OUT, AND CLOSE-OUT 38
19.1 Phase-In Effort 38
19.2 Phase-Out And Close-Out Effort 39
20.0 CONTRACT ADMINISTRATION 39
21.0 MEETINGS 40
21.1 Kick-Off Meeting 40
21.2 Other Meetings 40
22.0 PERFORMANCE OBJECTIVES METRICS 40
23.0 CONTRACT MANPOWER REPORTING 41

APPENDICES

Appendix A Customers and Locations
Appendix B Current Software/Application/Hardware List
Appendix C Acronyms
Appendix D Document Summary List (DSL)
Appendix E Performance Requirements Summary Matrix
Exhibit A Contract Data Requirements Lists (CDRLS)
Exhibit B CDRL Matrix

1.0 SCOPE. This Performance Work Statement (PWS) defines the Cyber Security (CS) and the Information Management (IM) Support Services requirements.

Cyber Security (CS) Support Services
A full range of CS services is necessary to satisfy enterprise missions, goals and objectives in the areas of Risk Management Framework (RMF) Assess and Authorize (A&A); Technical Vulnerability Assessment and Validation; CS Project Planning; Information Assurance Vulnerability Management (IAVM) and CS Programs; Security Assessment; and variety of CS programs. These integrated services require expertise in a wide range of knowledge and disciplines in order to analyze, evaluate, report, coordinate, plan and implement approved strategies and policies in support of the CS programs, and to provide advice and recommendations on CS program goals and initiatives, organizational responsibilities, program synchronization, and CS strategic planning.

The purpose of this effort is to provide the U.S. Army Aviation and Missile Life Cycle Management Command (AMCOM LCMC) Communities/Project Managers/Program Executive Offices (PM/PEO) and Redstone Arsenal tenant activities with CS expertise. These CS support services provide Weapon System Management, Industrial Base Operations, and System Information Technology (IT) life cycle support and solutions from concept development through sustainment. CS requirements include expertise in advanced state-of-the-art IT and providing system security services that will continue to expand due to new missions, IT enterprise initiatives, Base Realignment and Closure (BRAC) rulings, and changing customer requirements.

Information Management (IM) Support Services
A full range of IM support services is necessary to satisfy enterprise missions, goals and objectives in the areas of IT Strategic and Capital Planning; Business Process Management and Re-engineering; Business Analysis; Portfolio Management; Data Analysis, Integrity and Review; Engineering Data Acceptance; Technical Data Package (TDP) Operation; Development of Service Level Agreements; Technical Writing/Editing; IT Asset Management; IM Project/Planning; Office Automation, Presentation/Exhibit Development, and Content Management Support; and scanning support. Furthermore, these integrated services require expertise in a wide range of disciplines including IT strategy and planning, business processes analysis and management, system analysis, information and data analysis and management, presentation/exhibit development, configuration management (CM), IM operations and communications.

The purpose of this effort is to provide the U.S. AMCOM LCMC Communities which includes the PMs/PEOs, and Redstone Arsenal tenant activities with IM support services to enable Weapon System Management, Industrial Base Operations, and System IT life cycle support and solutions from concept development through sustainment. IM support services include advanced business processes and state-of the art IM support services that will continue to expand due to new missions, IT enterprise initiatives, BRAC rulings, and changing customer requirements.

1.1 GOAL.

The goal is to provide the customer base with efficient and effective CS support services that will result in cost effective management of IT, information systems, and network security services tailored to the customers’ missions and provide the customer base with efficient and effective IM support services that will result in the cost effective management of IT services, data and information services, and continuous business process improvement which support the customers’ missions.

2.0 APPLICABLE DOCUMENTS. Applicable top level documents are contained in Appendix D to the Contract, Document Summary List (DSL), by number, title, and date. The document versions specified on the DSL take precedence over the generic references (without revision letters) cited in the PWS.

3.0 CYBER SECURITY (CS) PERFORMANCE REQUIREMENTS.

3.1 REQUIREMENTS OVERVIEW. The Contractor shall perform CS support services and provide expertise for Weapon System management, Industrial Base Operations, and System IT Life Cycle support/solutions in accordance with the PWS. Current CS support services are being performed to the organizations and locations listed in Appendix A. The Government reserves the right to amend the list of supported organizations and locations over the life of this contract. The contract scope shall not be limited to currently identified IT and CS disciplines but also includes new innovations and advances in related technology, processes and procedures. Appendix B contains a sample of the current hardware and software supported by this PWS. The Contractor shall be knowledgeable of the functional, technical, business, and network environments of the customers supported and shall be responsible for responding and adapting to technology changes. The Contractor shall be knowledgeable of customer environments to include customer mission related acquisition, logistics, technology, information systems, network security programs, cyber space operations, Department of Defense (DoD) network operations, Defensive cyber operations, and life cycle support and solutions from concept development through sustainment. All services provided hereunder shall comply with Section 508 of the Rehabilitation Act of 1973, as amended (29 U.S.C. 794d), and shall meet the accessibility standards at 36 CFR Part 1194.

3.2 GENERAL. The Contractor shall have knowledge of the DoD core competencies and provide CS services for a wide-range of activities to include: RMF A&A; assessments; analyzing, evaluating, reporting, coordinating, planning, and implementing strategies and policies in support of the CS Program; ensuring compliance with DoD and Army CS policies for all information systems and environments; and intrusion detection to include use of tools such as “Guardian” Intrusion Detection System (IDS). The Contractor shall provide advice and recommendations on CS program goals and initiatives, organizational responsibilities, program synchronization, and CS strategic planning. The Contractor shall provide and maintain knowledge of National, DoD, and Army regulatory policies related to CS, Industrial Control System (ICS) and Supervisory Control and Data Acquisition (SCADA), Public Key Infrastructure (PKI), DoD IT A&A processes, RMF, Tenant Security Plan (TSP), Enterprise Mission Assurance Support Service (eMASS), and IAVM.

All services provided hereunder shall comply with Section 508 of the Rehabilitation Act of 1973, as amended (29 U.S.C. 794d), and shall meet the applicable accessibility standards at 36 CFR Part 1194. In performance of this contract, the Contractor shall follow and comply with Government regulations, directives, and policies including CS and Information Assurance (IA) regulations and security policies. This includes: DoD Instruction (DODI) 8500.01, Cybersecurity; DODI 8510.01 Risk Management Framework; DODI 8580.1, IA In the Defense Acquisition System; DoD Directive (DODD) 5000.01, The Defense Acquisition System; DODI 5000.02, Operation of the Defense Acquisition System; Federal Information System Management Act (FISMA) security requirements; Office of Management and Budget (OMB) Circular A-130, Managing Information as a Strategic Resource; Federal Information Processing Standards (FIPS) 199, Standards for Security Categorization of Federal Information and Information Systems; FIPS 200, Minimum Security Requirements for Federal Information and Information Systems; National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53A, Federal Information Systems and Organizations: Building Effective Assessment Plans; NIST SP 800-37, Guide for Applying the Risk management Framework to Federal Information System: A Security Life Cycle Approach; NIST SP 800-70, National Checklist Program for IT Products: Guidelines for Checklist Users and Developers; NIST SP 800-60, Guide for Mapping Types of Information and Information Systems to Security Categories; Best Business Processes (BBPs); and lessons learned.

3.2.1 The Contractor shall provide information, knowledge, and services for CS and IT-related business areas; maintain awareness of and provide expertise on emerging technologies and the key dimensions of business requirements that drive technology change. The Contractor shall identify and leverage opportunities for potential new solutions to ensure CS, IA, IT, and business strategic alignment. The Contractor shall provide information, knowledge, and support services for risk analysis, trending analysis, posture analysis, and events/incident analysis. The Contractor shall develop, schedule, and coordinate project plans as they relate to CS services. The Contractor shall use written documentation and verbal presentations to convey technical solutions, problem analysis, and project planning.

3.2.1.1 The Contractor shall prepare Presentation Material as specified within individual Technical Direction Orders (TDOs) In Accordance With (IAW) DI-ADMN-81373, CDRL A008.
3.2.1.2 The Contractor shall prepare a Management Plan as specified within individual TDOs IAW DI-MGMT-80004, CDRL A011.
3.2.1.3 The Contractor shall prepare a Contractor’s Risk Management Plan as specified within individual TDOs IAW DI-MGMT-81808, CDRL A013.
3.2.1.4 The Contractor shall prepare a Risk Management Status Report as specified within individual TDOs IAW DI-MGMT-81809, CDRL A014.
3.2.1.5 The Contractor shall prepare Project Plans as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.
3.2.1.6 The Contractor shall prepare a Technical Solutions and Problem Analysis Report as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

3.3 RISK MANAGEMENT FRAMEWORK (RMF) ASSESS AND AUTHORIZE (A&A) SUPPORT. The Contractor shall provide knowledge of and assist with the establishment of RMF A&A processes, documentation, and assessments required to manage the implementation of CS capabilities and services, and provide visibility of authorization decisions regarding the operation of DoD Information Systems (IS), including Core Enterprise services-based and Web services-based software applications and systems, in compliance with DoD regulations and BBPs. Functions that the Contractor shall perform under individual TDOs include:

3.3.1 Implement, support, and manage the RMF for Automated Information Systems (AIS) and networks; implement, support and manage applicable TSPs that support designated network enterprise centers or other processing centers. The Contractor shall use the standard RMF/TSP business process, document templates and applications as specified within individual TDOs.

3.3.2 Ensure that all A&A documentation is in compliance with regulations, policies, and guidance.
3.3.3 Develop plans to facilitate RMF requirements and monitor RMF status, so that System Owners are able to maintain required RMF documentation, including the, Authority to Operate (ATO), Authority to Connect (ATC), Certificate of Networthiness (CON), and the System Security Plan (SSP).
3.3.4.1 The Contractor shall prepare a Contractor’s Risk Management Plan as specified within individual TDOs IAW DI-MGMT-81808, CDRL A013.
3.3.4.2 The Contractor shall prepare plans to facilitate RMF requirements as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.
3.3.4 Plan, coordinate, conduct, and document RMF validations of AIS in accordance with the standard RMF document templates, business processes, and the applicable regulations, policies, and guidance. The Contractor shall apply a baseline set of CS controls for all AIS in accordance with regulations, policies, and guidance. The Contractor shall make recommendations to the System Owners for the completion of CS documentation and implementation of prescribed CS controls. The Contractor shall monitor, measure, and report the on-going status of CS controls over the lifecycle of the AIS. The Contractor shall develop RMF and CS documentation/artifacts in accordance with DoD/Army regulations and guidance for each assigned Government AIS and network.

3.3.5.1 The Contractor shall prepare Information Systems Accreditation Documentation as specified within individual TDOs IAW DI-ADMN-80239, CDRL A007.
3.3.5.2 The Contractor shall prepare a Risk Management Status Report as specified within individual TDOs IAW DI-MGMT-81809, CDRL A014.
3.3.5.3 The Contractor shall prepare RMF validations of AIS as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.
3.3.5.4 The Contractor shall prepare a report on the status of CS controls over the lifecycle of the AIS as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.
3.3.5.5 The Contractor shall prepare RMF and CS documentation as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

3.3.6 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDO.

3.3.6.1 The Contractor shall prepare RMF and A&A reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

3.4 TECHNICAL VULNERABILITY ASSESSMENT AND VALIDATION SUPPORT. The Contractor shall implement and support the standard CS Business Process to perform CS assessments and validations of the AIS in support of A&A requirements and in compliance with DoD regulation s and BBPs. The Contractor shall perform vulnerability assessments, system configuration reviews, and other activities to identify potential vulnerabilities, both internal and external. Functions that the Contractor shall perform under individual TDOs include:
3.4.1 Verify that sufficient CS controls and security requirements are applied to AIS, based on the applicable information types, in accordance with DoD/Army regulations and guidance. Implement new and emerging solutions for CS controls that meet DOD/DA requirements for CS Accreditation of AIS. Provide guidance and assistance to System Owners in matters related to A&A of AIS. Provide recommendations that result in AIS with non-compliant CS solutions becoming compliant with DoD/Army regulations and guidance and BBPs.
3.4.2 Conduct vulnerability assessments utilizing most current DOD/Department of the Army (DA) approved tools, and report the findings along with recommendations for mitigation. The Contractor shall also conduct software testing and secure code reviews to identify vulnerabilities.
3.4.2.1 The Contractor shall prepare Information Systems Accreditation Documentation as specified within individual TDOs IAW DI-ADMN-80239, CDRL A007.
3.4.2.2 The Contractor shall prepare a report on vulnerability assessment findings and provide recommendations as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.
3.4.3 Develop and review system security architectural designs to ensure compliance with CS and information regulatory guidance, and make change recommendations in cases where compliance is not being met.
3.4.4 Participate in incident and spillage handling actions; monitor and track responses; and prepare incident and spillage handling reports.
3.4.4.1 The Contractor shall prepare incident and spillage handling reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.
3.4.5 Perform site assisted visit to remote locations in support of various inspections.
3.4.6 Participate and support cyberspace operations to include providing recommendations for DoD Information Network Operations and defensive cyber operations.

3.4.7 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDO.

3.4.7.1 The Contractor shall prepare Technical Vulnerability and Validation reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

3.5 CYBER SECURITY PROGRAM STATUS, TRACKING, AND REPORTING SUPPORT. The Contractor shall track and report the status of Organization/Command CS Management Programs, including IAVM, FISMA requirements, training, computer security incident reporting, planning, execution, and other applicable metrics reporting. Functions that the Contractor shall perform under individual TDOs include:
3.5.1 Provide assistance to the Government CS manager in the planning, execution, tracking, and periodic reporting of all aspects of the organization/command CS Program.
3.5.1.1 The Contractor shall prepare a Management Plan as specified within individual TDOs IAW DI-MGMT-80004, CDRL A011.
3.5.2 Prepare briefings on a wide range of CS-related subjects.
3.5.2.1 The Contractor shall prepare Briefing Material as specified within individual TDOs IAW DI-MGMT-81605, CDRL A012.
3.5.3 Perform document and policy review; formulate and draft responses on a wide range of CS-related topics.
3.5.3.1 The Contractor shall prepare responses to document and policy reviews as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.
3.5.4 Gather, collate information, and prepare reports on new viruses and Trojans, external threats, new vulnerabilities, and on exploits and general network/AIS security issues.
3.5.4.1 The Contractor shall prepare Information Systems Accreditation Documentation as specified within individual TDOs IAW DI-ADMN-80239, CDRL A007.
3.5.4.2 The Contractor shall prepare vulnerability and threat reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.
3.5.5 Manage all aspects of computer security incident reporting. This shall include oversight, report and issuing correspondence on computer security incidents, and providing briefings/status reports on incidents.
3.5.5.1 The Contractor shall prepare Information Systems Accreditation Documentation as specified within individual TDOs IAW DI-ADMN-80239, CDRL A007.
3.5.5.2 The Contractor shall prepare Briefing Material as specified within individual TDOs IAW DI-MGMT-81605, CDRL A012.
3.5.6 Provide assistance to the Government CS manager in the planning, execution, tracking, and management of the FISMA program.

3.5.6.1 The Contractor shall prepare a Management Plan as specified within individual TDOs IAW DI-MGMT-80004, CDRL A011.

3.5.7 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDO.

3.5.7.1 The Contractor shall prepare CS Program Status and Tracking reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

3.6 INFORMATION ASSURANCE VULNERABILITY MANAGEMENT (IAVM)/CYBER SECURITY (CS) PROGRAM SUPPORT. The Contractor shall provide knowledge of and assist with all aspects of the Organization/Command’s IAVM and CS Program to enable compliance with regulations, policies, and guidance. Functions that the Contractor shall perform under individual TDOs include:
3.6.1 Provide recommended guidance to implement actions required by new CS vulnerability messages.
3.6.2 Facilitate coordination efforts between the organization, the Army Cyber Command (ARCYBER), and the Regional Continental United States CERT (RCERT) on IAVM/CS Program matters.
3.6.3 Monitor the IAVM reporting process, track organizations IAVM reports and reports status, and provide IAVM metrics on an as-needed basis.
3.6.3.1 The Contractor shall prepare IAVM reports and metrics as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.
3.6.4 Provide technical support on Vulnerability Assessments, perform vulnerability scans of selected systems, and provide technical support to organizations on the use of Army-approved vulnerability scanning software packages.
3.6.5 Provide recommended guidance to implement network security and defensives cyber operations in support of Joint Worldwide Intelligence Communications System (JWICS), Non-Secure Internet Protocol Router (NIPR), Secure Internet Protocol Router (SIPR), Defense Research and Engineering Network (DREN) and Secret Defense Research and Engineering Network (SDREN).

3.6.6 All Contractor actions, findings and recommendation s shall be reported in the required documentation as directed in the applicable TDO.

3.6.6.1 The Contractor shall prepare IAVM and CS Program reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

3.7 CYBER SECURITY PROGRAM AWARENESS SUPPORT. The Contractor shall assist the Government CS manager with the development and the execution of organization-wide CS awareness programs. The Contractor shall be responsible for identifying target audiences, disseminating CS-related information, and using a variety of media to reinforce critical themes of the CS program. Functions that the Contractor shall perform under individual TDOs include:
3.7.1 Perform requirements analysis for organization-wide CS educational, training, and awareness requirements and needs.
3.7.2 Coordinate with target organizations to identify CS requirements and needs; and develop the subject areas for organization-wide CS education, training, and awareness events based on these identified requirements and needs.
3.7.3 Coordinate, prepare and provide required CS educational materials to compliment periodic education, training, and awareness events.
3.7.3.1 The Contractor shall prepare Training Materials as specified within individual TDOs IAW DI-ILSS-80872, CDRL A010.
3.7.4 Participate in the delivery of CS subject areas during the periodic education, training, and awareness events.
3.7.5 Track and manage the current level of CS education and training for personnel within target organizations utilizing the appropriate tracking tools.

3.7.6 All Contractor actions, findings, and recommendations shall be reported in the required documentation as directed in the applicable TDO.

3.7.6.1 The Contractor shall prepare CS Program Awareness reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

3.8 CYBER SECURITY PROJECT/PLANNING SUPPORT. The Contractor shall be knowledgeable of the CS governing regulations and provide CS Project/Planning support using Government BBPs. The support shall include analyzing, evaluating, reporting, coordinating, planning, and implementing approved strategies and policies. Functions that the Contractor shall perform under individual TDOs include:
3.8.1 Review and apply new CS regulatory guidance and BBPs; and prepare/present briefs on updated requirements to the Government CS manager and staff.
3.8.1.1 The Contractor shall prepare Briefing Material as specified within individual TDOs IAW DI-MGMT-81605, CDRL A012.
3.8.2 Evaluate current processes and identify shortfalls in CS guidance. Develop and provide recommended solutions and present findings/recommendations for improvement to the Government CS manager.
3.8.2.1 The Contractor shall prepare CS recommended solutions and recommendations for improvement as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.
3.8.3 All Contractor actions, findings, and recommendations shall be reported in the required documentation as directed in the applicable TDO.
3.8.3.1 The Contractor shall prepare CS Project/Planning reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.
3.9 SECURITY ASSESSMENT SUPPORT. The Contractor shall perform and assist with security assessments, also known as security audits or security reviews, to ensure that necessary security controls are integrated into the design and implementation of any IT project. The Contractor shall provide findings and documentation outlining any security gaps between a project design and applicable security policies, regulations, and guidelines. Functions that the Contractor shall perform under individual TDOs include:

3.9.1 Conduct security assessments of organizations which shall include:
• Security policy and operational procedure development
• Security engineering and architecture design
• Operational security management
• Network security testing and evaluation
• Computer security incident response
• Vulnerability analysis
• Malicious code analysis
• Security risk assessment
• Security certification and accreditation
• Assess and Authorize
• Site assisted visits for Defense Information System Agency (DISA) Command Cyber Readiness Inspection (CCRI) inspections at remote locations
• Risk analysis
• Trending analysis
• Event/Incidents analysis

3.9.2 Provide documentation of an organization’s current security state, identify security vulnerabilities, and deliver recommendations for mitigating identified risks.

3.9.2.1 The Contractor shall prepare Information Systems Accreditation Documentation as specified within individual TDOs IAW DI-ADMN-80239, CDRL A007.
3.9.2.2 The Contractor shall prepare a Contractor’s Risk Management Plan as specified within individual TDOs IAW DI-MGMT-81808, CDRL A013.
3.9.2.3 The Contractor shall prepare a Risk Management Status Report as specified within individual TDOs IAW DI-MGMT-81809, CDRL A014.

3.9.3 All Contractor actions, findings, and recommendations shall be reported in the required documentation as directed in the applicable TDO.

3.9.3.1 The Contractor shall prepare Security Assessment reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

3.10 SENIOR CYBER SECURITY SUBJECT MATTER EXPERT (SME) SUPPORT. The Contractor shall provide Senior (Sr.) CS SME support to review, analyze, and recommend strategic and tactical options for improved management and performance of the CS architecture, AIS, and networks, which support the Enterprise and organizational mission requirements. Studies, analyses, options, and recommendations shall be documented in a technical report. Functions that the Contractor shall perform under individual TDOs include:

3.10.1 Provide Sr. CS SME in support of Government IT Processes, Enterprise IT/CS Solutions, and Enterprise IT Service Delivery.

3.10.2 The Sr. CS SME support personnel shall be qualified to perform their assigned duties and have applicable experience and education, including management experience, in the disciplines of CS, IM, and project management.

3.10.3 The Sr. CS SME support personnel shall have knowledge and expertise to perform analysis and provide solutions in areas of:

• CS Regulatory Guidance
• CS Program Management
• Emerging CS Technologies
• CS Best Business Practices
• CS Risk Management
• IT Security
• IT Contingency Plan I Continuity of Operations (COOP)
• Cyber Space Operations for DoD Information Network Operations

3.10.4 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDO.

3.10.4.1 The Contractor shall prepare SME reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.0 INFORMATION MANAGEMENT (IM) PERFORMANCE REQUIREMENTS.

4.1 REQUIREMENTS OVERVIEW. The Contractor shall perform IM support services and provide technical resources to enable Weapon System management, Industrial Base Operations, and System IT Life Cycle support/solutions in accordance with the PWS. Current IM support services are being performed to the organizations and locations listed in Appendix A. The Government reserves the right to change this over the life of the contract if required. The contract scope shall not be limited to currently identified services but shall encompass all IM and IT disciplines to include new innovations and advances in technology, processes and procedures. A sample of current hardware and software is identified in Appendix B. The Contractor shall be knowledgeable of the functional, technical and business process environments of the customers supported and shall be responsible for responding and adapting to technology and business process changes. The Contractor shall be knowledgeable of the customers’ mission related acquisition, logistics, technology, business programs, and life cycle support and solutions from concept development through sustainment. All services provided hereunder shall comply with Section 508 of the Rehabilitation Act of 1973, as amended (29 U.S.C. 794d), and shall meet the applicable accessibility standards at 36 CFR Part 1194.

4.2 GENERAL. The Contractor shall provide a wide variety of Information, Knowledge, and Data Management services by applying industry best business practices in the management of information and data throughout the information lifecycle regardless of source or format.

4.2.1 The Contractor shall provide information, knowledge and data services for IM and IT- related business areas; maintain awareness of emerging technologies and the key dimensions of business requirements that drive technology change in order to assist with IM tasks. The Contractor shall identify and leverage opportunities for new solutions and ensure IM, IT, and business strategic alignment.

4.2.2 The Contractor shall develop, schedule, and coordinate project plans as they relate to IM services.

4.2.2.1 The Contractor shall prepare a Management Plan as specified within individual TDOs IAW DI-MGMT-80004, CDRL A011.

4.2.3 The Contractor shall use effective written documentation and verbal presentations to convey technical solutions, business process and re-engineering solutions, information and data analysis, problem analysis, and project planning.

4.2.3.1 The Contractor shall prepare Presentation Material as specified within individual TDOs IAW DI-ADMN-81373, CDRL A008.
4.2.3.2 The Contractor shall prepare a Management Plan as specified within individual TDOs IAW DI-MGMT-80004, CDRL A011.

4.3 BUSINESS PROCESS MANAGEMENT (BPM) AND RE-ENGINEERING SUPPORT. The Contractor shall use BPM methodologies, such as Lean Six Sigma, Capability Maturity Model Integration (CMMI), Information Technology Infrastructure Library (ITIL), best business practices, and emerging methodologies that promote business effectiveness, efficiency, process optimization, innovation, flexibility, and integration with technology. The Contractor shall:

• Define – baseline the process or the process improvement;
• Model – simulate the change to the process;
• Analyze – compare the various simulations to determine an optimal improvement;
• Improve – deploy the Government selected improvement as directed;
• Control – upon deployment of the improvement , monitor the improvement in real time, and feed the performance information back into the simulation model in preparation for the next improvement iteration; and
• Measure – determine the capability of the process by measuring before and after implementation.

Functions that the Contractor shall perform under individual TDOs include:

4.3.1 Continually streamline and optimize the end-to-end business processes to ensure compliance with customer’s needs.

4.3.2 Analyze and design workflows and processes within an organization which will result in a defined business outcome/process.

4.3.2.1 The Contractor shall prepare workflows and processes as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.3.3 Perform functional decomposition in order to break up a large or complex business operation/function into smaller and more manageable chunks facilitating a better understanding of the business operation/function.

4.3.4 Identify, analyze and evaluate business process and functional requirements for sustained logistics, acquisition, and product life cycle management.

4.3.5 Use Business Information, or Data Workflow Analysis as a tool to streamline, automate, document, and improve the efficiency of business procedures and processes, and establish future goals or long term objectives.

4.3.5.1 The Contractor shall prepare business procedures and processes efficiency documentation as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.3.6 Provide Software/Systems Process Engineering improvement support which shall include a tool kit of available skills used for causal analysis, problem solving, and continuous improvement.

4.3.7 Participate in continuous process improvement activities such as development, implementation, and monitoring of the software/systems engineering processes.

4.3.8 Participate in and serve as a SME for Lean Six Sigma, CMMI, and ITIL practices or any other emerging process improvement methodology regarding process efficiencies and improvements.

4.3.9 Provide CMMI-Development, CMMI-Services Gap Analysis, and Standard CMMI Assessment Method for Process Improvement (SCAMPI) A, B, and C Appraisals to ascertain compliancy with the continuous or staged representation of the CMMI Model. This task includes appraisal planning and preparation of the Practice Implementation Indicator Document (PIID). In addition, the Contractor shall perform analysis of the appraisal results and provide recommendations for improvement and compliance. The Contractor shall also perform ITIL compliancy with processes and Gap Analysis.

4.3.10 Provide data analysis to include key performance metrics using Mini Tab or other Government identified performance measurement tools, analyzing trends, variations and upper/lower control specifications.

4.3.10.1 The Contractor shall prepare performance metrics as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.3.11 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDO.

4.3.11.1 The Contractor shall prepare BPM and Re-engineering reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.4 BUSINESS ANALYSIS (BA) SUPPORT. The Contractor shall provide BA support including Business Case Analysis (BCA), Economic Analysis (EA), Analysis of Alternatives (AoA) and other special studies that provide a best-value analysis considering not only cost, but other quantifiable and non-quantifiable factors supporting an investment decision. This includes performance, producibility, reliability, maintainability, and supportability enhancements. Functions that the Contractor shall perform under individual TDOs include:

4.4.1 Generate an expanded cost/benefit analysis with the intent of determining a best-value solution. For example, the relative cost versus benefits of different support strategies.

4.4.1.1 The Contractor shall prepare a cost/benefit analysis report as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.4.2 Document how each alternative fulfills the strategic objectives of the program; how it complies with product support performance measures; and the resulting impact on stakeholders.

4.4.2.1 The Contractor shall prepare an alternative fulfillment report as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.4.3 Identify and recommend which alternative support options provide optimum mission performance given cost and other constraints, including qualitative or subjective factors.

4.4.3.1 The Contractor shall prepare an alternative support recommendation report as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.4.4 Identify the sensitivity of the data to change; and perform the analysis and classification of risks.

4.4.4.1 The Contractor shall prepare a classification of risks report as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.4.5 Prepare formal EA taking into account the opportunity costs of resources employed and the costs and benefits of the project to the organization(s).

4.4.5.1 The Contractor shall prepare an EA report as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.4.6 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDOs.

4.4.6.1 The Contractor shall prepare Business Analysis reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.5 INFORMATION TECHNOLOGY (IT) STRATEGIC, CAPITAL, AND POLICY/GUIDANCE PLANNING SUPPORT. The Contractor shall assist in developing Strategic Plans, Policies, and Guidance, and outline enforcement procedures that align with the organizational mission, goals, and objectives. The Contractor shall provide a basis for aligning organizational and budget structure with the strategic plans. The Contractor shall be responsible for staying abreast on changing laws, policies, and directives that could impact the planning. Functions that the Contractor shall perform under individual TDOs include:

4.5.1 Develop short and long-term IT strategies through evaluation of current and future needs of the organization in relation to higher headquarter policies, directives, and strategic direction.

4.5.1.1 The Contractor shall prepare an IT strategies report as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.5.2 Develop optimal solutions to identified problems that can be implemented in the shortest period, with lowest total implementation costs. This combination will drive the new policies/guidance and strategic planning for years to come.

4.5.3 Identify IT strategies and alternative solutions to support agency goals and objectives.

4.5.4 Develop/monitor performance/metrics of IT Strategies, Capital Planning, policies and guidance.

4.5.4.1 The Contractor shall prepare a performance/metrics of IT Strategies, Capital Planning, policies and guidance report as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.5.5 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDOs.

4.5.5.1 The Contractor shall prepare IT Strategic, Capital, and Policy/Guidance reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.6 PORTFOLIO MANAGEMENT (PfM) SUPPORT. The Contractor shall provide assistance and recommendations to the Government in the management of IT resources and investments using PfM strategies. The Contractor shall be responsible for staying abreast of changing laws, policies, and directives that could impact PfM. Functions that the Contractor shall perform under individual TDOs include:

4.6.1 Establish and track enterprise-level performance measures as a component of the transformation strategy, aligned with mission, vision, goals, and objectives.

4.6.1.1 The Contractor shall prepare enterprise-level performance measures report as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.6.2 Ensure registration of all IT investment items, to include all assigned networks, in the Army Portfolio Management Solution -Army IT Registry (APMS-AITR) module.

4.6.3 Provide system owners with regulatory guidance and recommendations on data calls and maintenance of accurate system records.

4.6.4 Ensure that IT expenditures meeting APMS entry criteria are vetted and approved by the appropriate Domain lead.

4.6.5 Provide assistance to the Government in the planning, execution, tracking, and periodic reporting of all IT investments and ensure appropriate business system certifications are obtained.

4.6.5.1 The Contractor shall prepare a Management Plan as specified within individual TDOs IAW DI-MGMT-80004, CDRL A011.

4.6.6 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDOs.

4.6.6.1 The Contractor shall prepare PfM reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.7 ENGINEERING DATA ACCEPTANCE SUPPORT. The Contractor shall maintain manual and electronic files to provide reference services for drawings, specifications, standards, and related documents to include Engineering Change Packages (ECPs), Notice of Revisions (NORs), and stable-base drawings. Functions that the Contractor shall perform under individual TDOs:

4.7.1 Locate and retrieve all necessary technical data sheets and documentation to process NORs and ECPs; and scan NOR and ECP documents into a data repository.

4.7.2 Receive and process requests for engineering documents. The Contractor shall maintain manual and automated files for engineering documents and distribute hard copies, aperture cards, Compact Disks (CDs), and other media to fulfill Government requests for information.

4.7.2.1 The Contractor shall prepare Presentation Material as specified within individual TDOs IAW DI-ADMN-81373, CDRL A008.
4.7.2.2 The Contractor shall prepare Digital Imaging as specified within individual TDOs IAW DI-MISC-81579, CDRL A016.

4.7.3 Receive, sort, and file various types of engineering documents as directed by the Government to maintain an up-to-date file repository. The Contractor shall ensure that the drawing index data is correct by verifying against original source documentation.

4.7.4 Update and maintain data repositories comprised of Stable Base Mylar documents, engineering and technical digital and aperture card documents, ECPs, and NORs.

4.7.5 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDOs.

4.7.5.1 The Contractor shall prepare Engineering Data Acceptance reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.8 TECHNICAL DATA PACKAGE (TDP) OPERATIONS SUPPORT. The Contractor shall ensure TDP completion and track TDP deficiencies, as well as process TDP packages through the technical loop by utilizing programs, such as Interactive Configuration Management and Procurement Program (ICAPP), Engineering Data Information System (EDIS), and related or follow-on systems to verify the completeness and accuracy of the TDP before release. Functions that the Contractor shall perform under individual TDOs include:

4.8.1 Develop, coordinate, and maintain the status accounting records in order to support the acquisition of spare and repair parts.

4.8.1.1 The Contractor shall prepare status accounting records as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.8.2 Produce CDs utilizing defined processes and ensuring compliance with the DoD, Army, and customer organizations standards, policies, directives, and procedures.

4.8.2.1 The Contractor shall prepare Digital Imaging as specified within individual TDOs IAW DI-MISC-81579, CDRL A016.

4.8.3 Receive, track and process TDPs.

4.8.4 Fulfill requests for engineering data under the Freedom of Information Act (FOIA) by providing product data on various media types as directed by the Government.

4.8.4.1 The Contractor shall prepare Digital Imaging as specified within individual TDOs IAW DI-MISC-81579, CDRL A016.

4.8.5 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDOs.

4.8.5.1 The Contractor shall prepare TDP reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.9 DATA ANALYSIS, INTEGRITY, AND REVIEW SUPPORT. The Contractor shall provide comprehensive data lifecycle management to enhance operations and functions across the Army Logistics Business Enterprise ensuring compliance with Army governance, policies and appropriate business practices. The Contractor shall contribute to the development and sustainment of data management strategies and practices that facilitate research and analytics to promote best practices in resolving data issues, concerns, and anomalies. The Contractor shall provide data quality support to all logistics business systems to include Enterprise Resource Planning (ERP) and non-ERP solutions. The Contractor shall interact with stakeholders from across the logistics business community to ensure a full understanding of information needs of the enterprise and its stakeholders while maximizing the effective use and value of data and information assets. The Logistics Business Enterprise currently consists of Logistics Modernization Program (LMP), Global Combat Support System-Army (GCSS-Army) and General Fund Enterprise Business System (GFEBS) and other non-ERP information systems and technical enablers. In addition to the business management systems, the Army Enterprise Systems Integration Program (AESIP) provides master data management, business intelligence, and hub services capabilities to the Enterprise. The Contractor shall exhibit a thorough knowledge of managing data within this environment. Functions that the Contractor shall perform under individual TDOs include:

4.9.1 Provide data management expertise while attending business process meetings, workshops, planning sessions or After Action Reviews.

4.9.2 Review and analyze current logistics business systems (to include LMP, GCSS-Army, GFEBS, AESIP and other non-ERP information systems and technical enablers), evaluate data posture, perform validations, determine deficiencies and recommend corrective actions to ensure compliance with governance, suitability to purpose, or actual picture of physical state.

4.9.2.1 The Contractor shall prepare logistics business systems deficiencies and corrective actions report as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.9.3 Maximize the capabilities of Government provided automation to execute research, profile, analyze and report findings in support of logistics business enterprise data integrity and quality.

4.9.4 Exploit best business practice and Government provided automated tools in conjunction with regulatory guidance to query and extract data from various automated business systems and produce output reports for use by local and world-wide customers.

4.9.5 Sustain, enhance and populate a collaborative glossary that aligns the Business Processes, Vocabulary, Metadata, Governance, and applicable Business Rules in accordance with current and future standards, processes, and automation capabilities to enable stakeholder community understanding of context and meaning across the Business Enterprise. Reduce time involved in research and profiling associated with data evaluation and management processes.

4.9.6 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDOs.

4.9.6.1 The Contractor shall prepare Data Analysis and Integrity reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.10 INFORMATION TECHNOLOGY (IT) ASSET MANAGEMENT SUPPORT. The Contractor shall provide IT Asset Management to include receipt of asset, staging, barcoding, distribution/pick up, storage, inventory management, maintenance of hardware, software license, and input data into Government approved automated tracking systems. The Contractor shall use the organizational designated automated property book, the Property Book Unit Supply Enhanced (PBUSE) or any future directed processes and system. The Contractor shall comply with all Government and Army Property Management laws, directives, policies, and regulations. Functions that the Contractor shall perform under individual TDOs include:

4.10.1 Maintain and track software licenses.

4.10.1.1 The Contractor shall prepare a software licenses report as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.10.2 Maintain accurate automated property records; review supply and equipment requests for proper approval; maintain and help manage hand receipts and the hand receipt process for nonexpendable accountable supplies and equipment; review registers of expendable and nonexpendable supplies and equipment to ensure compliance; and ensure that incoming IT equipment is placed on the automated property books.

4.10.2.1 The Contractor shall prepare a property report as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.10.3 Ensure that all accountable equipment is documented, labeled, bar coded, inventoried, and sub hand receipted to the end-user.

4.10.4 Reconcile discrepancies and make recommendations of the procedures to improve property accountability and the automated system.

4.10.5 Provide assistance in item identification; obtain guidance and operating instructions; and participate in equipment inspections.

4.10.6 Comply with internal Government property management control systems.

4.10.7 Ensure proper coordination with appropriate property offices.

4.10.8 Ensure turn-in and disposal of equipment IAW the Army regulations and policies.

4.10.9 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDOs.

4.10.9.1 The Contractor shall prepare IT Asset Management reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.11 OFFICE AUTOMATION, PRESENTATION/EXHIBIT DEVELOPMENT, DATA ENTRY, AND CONTENT MANAGEMENT SUPPORT. The Contractor shall provide office automation, data entry, and content management support. The Contractor shall provide presentation/exhibit development support, including development of charts, exhibits, marketing materials, training materials, graphs, briefings, slide presentations, video slide show presentations, and electronic media presentations. Functions that the Contractor shall perform under individual TDOs include:

4.11.1 Establish and maintain an electronic logging system of all charts, graphic images, presentations and/or electronic briefings, and perform proper storage.

4.11.1.1 The Contractor shall prepare an electronic logging system as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.11.2 Develop project schedules, presentations, briefings, and other documents using tools such as Microsoft (MS) Project, Visio, MS Word, MS Excel, Power Point, Photo Shop and other emerging technologies.

4.11.2.1 The Contractor shall prepare Presentation Material as specified within individual TDOs IAW DI-ADMN-81373, CDRL A008.
4.11.2.2 The Contractor shall prepare Briefing Material as specified within individual TDOs IAW DI-MGMT-81605, CDRL A012.

4.11.3 Provide data entry support in order to input/update data in a variety of Commercial-Off-the-Shelf (COTS) or Government-Off-the-Shelf (GOTS) software packages.

4.11.4 Post a broad range of content including data, articles, pictures, and documents to web portals, web sites, SharePoint, and other locations in accordance with the Government and Army Security/Information Assurance regulations, policy and directives.

4.11.5 Provide support for maintenance of Electronic Technical Manual repository libraries to include placing updated/revised files in the repository, and ensuring accuracy and access to repository files over the worldwide web.

4.11.6 Create and prepare presentations, marketing materials, training materials, brochures, displays, posters and exhibits for both internal and external use/display/distribution.

4.11.6.1 The Contractor shall prepare Presentation Material as specified within individual TDOs IAW DI-ADMN-81373, CDRL A008.
4.11.6.2 The Contractor shall prepare Training Materials as specified within individual TDOs IAW DI-ILSS-80872, CDRL A010.

4.11.7 Create and set up exhibits featuring lighting and movement.

4.11.7.1 The Contractor shall prepare Presentation Material as specified within individual TDOs IAW DI-ADMN-81373, CDRL A008.
4.11.7.2 The Contractor shall prepare Digital Imaging as specified within individual TDOs IAW DI-MISC-81579, CDRL A016.

4.11.8 Perform video editing utilizing video digitizing hardware and software for output to screen, videotape, and multimedia presentations.

4.11.8.1 The Contractor shall prepare Presentation Material as specified within individual TDOs IAW DI-ADMN-81373, CDRL A008.
4.11.8.2 The Contractor shall prepare Digital Imaging as specified within individual TDOs IAW DI-MISC-81579, CDRL A016.

4.11.9 Perform visual expertise to acquire still imagery at a variety of assignments. Visual assignments include event documentation, studio and location photography, portrait photography, group photography, passport, and other forms of identification photographs.

4.11.9.1 The Contractor shall prepare Digital Imaging as specified within individual TDOs IAW DI-MISC-81579, CDRL A016.

4.11.10 Utilize industry-standard photographic software to artistically edit, sort, and color correct images to prepare them for distribution and publication.

4.11.10.1 The Contractor shall prepare Digital Imaging as specified within individual TDOs IAW DI-MISC-81579, CDRL A016.

4.11.11 Prepare and store digital images in Government repositories in accordance with applicable regulations, procedures, and guidance.

4.11.11.1 The Contractor shall prepare Digital Imaging as specified within individual TDOs IAW DI-MISC-81579, CDRL A016.

4.11.12 Burn digital images to CD/Digital Video Disk (DVD) or any other designated media source.

4.11.12.1 The Contractor shall prepare Digital Imaging as specified within individual TDOs IAW DI-MISC-81579, CDRL A016.

4.11.13 Ensure that digital images are properly marked with security classifications according to applicable regulations, procedures, and guidance.

4.11.14 Perform all actions necessary to convert paper documents to electronic format ensuring that all content visible on the paper page is captured.

4.11.14.1 The Contractor shall prepare Digital Imaging as specified within individual TDOs IAW DI-MISC-81579, CDRL A016.

4.11.15 Assist the Government in developing and enforcing records management plans, procedures, and training. The Contractor shall provide support for functional management of the records management programs in compliance with the applicable Government and Army regulations and policies including Army Regulation (AR) 25-1 Army Knowledge Management and Information Technology, AR 25-400-2 Army Records Information Management System, DA Memo 25-51 Information Management Records Management Program, and Policy and Administration DA Policy and Administration (PAM) 25-403 Guide to Recordkeeping in the Army.

4.11.15.1 The Contractor shall prepare Training Materials as specified within individual TDOs IAW DI-ILSS-80872, CDRL A010.

4.11.16 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDOs.

4.11.16.1 The Contractor shall prepare Office Automation, Data Entry, and Content Management reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.12 TECHNICAL WRITING/EDITING SUPPORT. The Contractor shall write/edit technical materials, such as reports of IT or IM findings. The Contractor shall draw on a substantial knowledge of customer programs and activities to develop informational materials and to select and present information in a form and at a level suitable for the intended audience. These information materials may be for internal or external dissemination, and shall include internal reports and publications; research/analysis protocols; summaries of research/analysis, reports of research/analysis findings, and news articles. The Contractor shall possess a broad range of sources of pertinent information; skills to analyze and present the information gathered; and knowledge of publishing practices, standards, and technologies for the media used. Functions that the Contractor shall perform under individual TDOs include:

4.12.1 Be responsible for preparing or updating pamphlets, policies, procedures, guides, and regulations by gathering information, evaluating related documentation/policy, and consulting with SMEs.

4.12.1.1 The Contractor shall prepare pamphlets, policies, procedures, guides, and regulations as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.12.2 Develop on-line help, tutorials, and process guidance which could include multimedia content, online demos, and tutorials.

4.12.2.1 The Contractor shall prepare on-line help, tutorials, and process guidance as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.12.3 Ensure that documentation is clear, concise, usable, and conforms to established policies and standards. The Contractor shall utilize and ensure compliance of publications/documents with DoD, Army, and other required specifications/regulations.

4.12.4 Collect information and metrics to generate Service Level Agreements (SLAs)/Memoranda of Agreements (MOAs). The SLAs/MOAs shall designate/delegate responsibility between parties.

4.12.4.1 The Contractor shall prepare SLAs/MOAs as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.12.5 Collect functional and physical configurations of system interfaces to generate System Interface Agreements.

4.12.6 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDOs.

4.12.6.1 The Contractor shall prepare Technical Writing/Editing reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.13 INFORMATION MANAGEMENT (IM) PROJECT/PLANNING SUPPORT. The Contractor shall provide IM Project/Planning support using appropriate industry best business practices. The support shall include identifying, analyzing, evaluating, reporting, coordinating, planning, and implementing approved strategies and policies. The Contractor shall execute approved IM support services within the specified cost, schedule and performance parameters of the individual IM projects/programs and applicable work directive. The Contractor shall provide a variety of project planning activities such as: Project Planning; Project Scheduling, Work Breakdown Structure, Task break down, and Project Maintenance/Sustainment; Project Cost Estimating; Cost and Resource Management; Change and/or Version Control; Project Change Control; Project Issue Tracking; Problem Tracking; and Risk/Issue Assessment, Risk Management and Risk tracking. All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDOs. Functions that the Contractor shall perform will be identified under individual TDOs.

4.13.1 The Contractor shall prepare a Management Plan as specified within individual TDOs IAW DI-MGMT-80004, CDRL A011.
4.13.2 The Contractor shall prepare a Contractor’s Risk Management Plan as specified within individual TDOs IAW DI-MGMT-81808, CDRL A013.
4.13.3 The Contractor shall prepare a Risk Management Status Report as specified within individual TDOs IAW DI-MGMT-81809, CDRL A014.
4.13.4 The Contractor shall prepare IM Project/Planning reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

4.14 SENIOR IM/SUBJECT MATTER EXPERT (SME) SUPPORT. The Contractor shall provide Sr. IM/SME support to review, analyze, and recommend strategic and tactical options for improved management and performance of the organizational mission and its enterprise requirements. Functions that the Contractor shall perform under individual TDOs include:

4.14.1 Provide Sr. IM/SME support services in support of Government IT Processes, Enablement of Command Mission with Enterprise IT/IM Solutions, and enablement of Enterprise IT Service Delivery.

4.14.2 The Sr. IM/SME support personnel shall have appropriate experience and education for tasks assigned, including management experience in disciplines such as: business process management, systems analysis, information technology/management, strategic direction, capital planning, and project management.

4.14.3 The Sr. IM/SME support personnel shall have appropriate knowledge and expertise for the subject area they are assigned, so that they can perform analysis and provide solutions in areas such as:

• Information/Knowledge/Data Management
• IM Program Management – review and assess: program/project documentation, and project implementation methodology, reporting and communications.
• Emerging IM Technologies
• Business Process Management
• IM BBPs
• Systems/Software Process Engineering
• Strategic and Capital Planning – guidance, review, and assessment
• Risk Management
• Business Analysis
• Workflow Analysis – data, information, and business
• DoD Architecture Framework (DoDAF) – guidance, review, and document formulation

4.14.4 All Contractor actions, findings and recommendations shall be reported in the required documentation as directed in the applicable TDOs.

4.14.4.1 The Contractor shall prepare SME reports as specified within individual TDOs IAW DI-MISC-80508, CDRL A015.

5.0 DELIVERABLES. TDO functions shall be performed by the Contractor in accordance with AR 25-1 Army Information Technology, and AR 25-2 Army Information Assurance Regulations, publications and policies are applicable as shown elsewhere in the scope of work, work directives, TDOs and in the contract PWS. Documentation of deliverables shall be submitted through the Government identified solution for approval. All deliverables shall be provided through the Government lead/monitor to the Government Contracting Officer Representatives (COR) for review and acceptance. The specific deliverables and schedule for delivery shall be documented in individual TDOs. The Contractor shall provide deliverables in media and file formats required by the Government.

5.1 Local supplements to publications are applicable as identified in the individual TDOs. The TDO may set a higher standard of performance than an applicable regulation. Most publications can be accessed from the Internet at The Government will provide those publications not available on a web site.

5.2 The documents included in the Document Summary List, Appendix D, and/or referenced herein are provided in support of this PWS.

5.3 In addition to DI-MGMT-80227, CDRL A001 in paragraph 20.2; DI-MGMT-81117, CDRL A002 in paragraph 20.1; DI-MISC-80508, CDRL A004 in paragraph 19.2.b; DI-MISC-80508, CDRL A005 in paragraph 19.2.c; DI-MISC-80508, CDRL A006 in paragraph 20.3; and deliverables that shall be required under individual TDOs are identified in Exhibit B, CDRL Matrix.

5.4 Instructions for Deliverables: All Contractor actions, findings and recommendations shall be reported in reports, studies, and analysis as defined by the requirements of the individual TDOs. The Government will identify all applicable CDRLs and Data Item Descriptions (DIDs) for reports, studies and analysis, within each specific TDO. The Contractor shall reference Appendix D and Exhibit A of this PWS and individual TDOs for information on the applicable CDRLs and DIDs. The Contractor may use its own format or modify the DoD format, with the Contracting Officer (KO) or CORs approval.

5.5 Other Reports, Documentation and Analysis: Other reports, documentation and analysis shall be prepared and delivered by the Contractor in accordance with the project/program requirement, the TDO or the project COR.

5.6 Reporting Compatibility. The Contractor shall use computer software which is compatible with the hardware/software utilized by customer organizations.

5.7 Automated Contract Reporting System. The Contractor shall submit all deliverable reports via an automated contract reporting system as specified in each individual TDO.

6.0 MANAGEMENT. For Contractor’s management and administrative needs, the Contractor shall provide necessary labor, materials, supplies, services, facilities, and equipment to perform the specific work and services required to support contract performance. The Contractor shall provide only fully trained, experienced, qualified, and technically proficient personnel.

6.1 All work under this contract shall be performed by the Contractor only to the extent authorized by discrete TDOs which have been approved by the Contracting Officer.

6.2 The Contractor shall have access to Government data and information for the accomplishment of work under this PWS. The effort required to perform the tasks awarded under this PWS shall in no case constitute personal services.

6.3 The Contractor shall manage and control the resources necessary to ensure timely achievement of all contract requirements in the most economical manner possible. Frequent coordination by the Contractor shall be required with the customer base.

6.4 The Contractor shall support various Government offices requiring CS and/or IM support services as coordinated through the COR or as designated by the Contracting Officer. Contractor staff shall be required to be co-located with various customers to support mission needs as required by the COR for the duration of this contract.

6.5 The Contractor shall employ a management system that emphasizes the DoD Management Philosophy of continuous process improvement in providing required services, information and products.

6.6 The Contractor shall remain knowledgeable in the customer mission areas, business process areas, data management and information assurance areas, network properties and security, Government policy and standards, and emerging technology and hardware/software products in compliance with the Army’s/DoD standards and policies throughout the duration of this contract.

6.7 The Contractor shall be knowledgeable of the customers mission related acquisition, logistics, technology, and CS programs and their life cycle support systems.

6.8 The Contractor shall be knowledgeable of the business, functional, technical, and network environments of the customers supported and shall be responsible for responding and adapting to technology changes.

7.0 OTHER DIRECT COSTS. The Contractor may be required to purchase incidental items, training, claim local mileage and other miscellaneous items as Other Direct Costs (ODC). ODCs are for incidental expenses only. ODCs shall be requested and approved by the COR prior to incurring any costs/expenses and reimbursed to the Contractor. Any single item purchased under ODC with a value of $25K or more shall be approved by the Contracting Officer prior to incurring any costs/expenses.

8.0 DEGREE OF KNOWLEDGE & EXPERIENCE. The customer base supports a variety of legacy, GOTS and COTS application/system environments. These environments require a variety of expertise to perform CSIM support service activities, for which the Contractor shall provide qualified personnel with leading skills and experience. Current environments require expertise in CSIM program goals and initiatives, organizational responsibilities, program synchronization, and CSIM strategic planning for which the Contractor shall provide qualified personnel with leading skills and experience. The Contractor shall provide specialists, SMEs, and other specific skill sets as identified in the individual TDOs. Individual TDOs will specify the education, experience, training, and certifications required for TDO performance.

9.0 PLACE OF PERFORMANCE. Contractor personnel shall work primarily on-site at Redstone Arsenal, Huntsville, Alabama. TDOs may be performed in part or in full at other locations. Off-site and temporary travel to other locations shall be required. The CSIM support services shall be performed for organizations and locations listed in Appendix A and others as necessary.

10.0 SECURITY. Contractor employees shall adhere to the provisions set forth in AR 380-5, Army Information Security Program; AR 25-1, Army Knowledge Management Program; AR 25-2, Information Assurance; AR 380-67, Personnel Security Program; AR 600-8-14, Identification Cards for Members of the Uniformed Services, Their Eligible Family Members, and Other Eligible Personnel; Federal Information Processing Standards Publication 201-1, Personal Identity Verification (PIV) of Federal Employees and Contractors; DoD Regulation 5200.2-R, Personnel Security Program; DODI 1000.13, Identification (ID) Cards for Members of the Uniformed Services, Their Dependents, and Other Eligible Individuals; and D-2008-104, DOD Implementation of Homeland Security Presidential Directive-12 (HSPD-12). Contractor personnel shall not pose an actual or potential threat or risk to security or mission of Redstone Arsenal and/or its supported activities, or the health and safety of the workforce. The Government has the right to restrict and control access to its facilities, property, and data access privileges will be tailored to individual Contractor personnel responsibilities. The Government will be the final authority in determining access privileges. The Government’s exercise of its right to grant and revoke access by particular individual(s) to its facilities will not constitute a breach or change to the contract, regardless of whether said individual(s) are employed by the Contractor, and regardless of whether said individual(s) are thereby precluded from performing work under the PWS.

10.1 Contractor personnel shall comply with local security requirements for entry and exit control for personnel and property at the Government facility and the installation, as applicable. The Contractor shall observe and comply with the security provisions in effect at the Government facility. Identification badges shall be worn and displayed as required.

10.2 All Contractor personnel that access Government owned or operated automated computer systems, networks, or databases shall have the minimum of a National Agency Check with written Inquiries (NACI) and a favorable completion of a Federal Bureau of Investigation (FBI) fingerprint check, or a DoD-determined equivalent investigation, or greater.

10.3 All Contractor personnel that require a Common Access Card (CAC) in performance under this contract shall obtain the card within 3 business days of commencement of work unless otherwise authorized by the contracting officer or COR. All Contractors must be able to maintain a CAC during entire contract performance.

10.4 The Government may require security clearances up to Top Secret for performance of any TDO under this contract. A TDO specific Defense Department (DD) Form 254 will be incorporated for each TDO. The level of classified access required shall be indicated in the individual TDO. The Contractor shall provide sufficient personnel with the required security clearances to perform the work as specified in individual TDOs.

10.5 Contractor personnel performing Automated Data Processing (ADP) sensitive duties, are subject to investigative and assignment requirements IAW DoD 5200.2-R, DoD Personnel Security Program, AR 25-2, Information Assurance, and affiliated regulations.

10.6 The Contractor shall bear the cost of any security clearances required for performance.

10.7 Failure to comply with security requirements can be cause for termination of employment/contract/TDO.

10.8 Contractor personnel shall comply with all security requirements of the applicable DD Form 254, Department of Defense Contract Security Classification Specification. Contractor employees are required to complete all required Security and Information Assurance training required by DoD and Army regulations, and supplements thereto. Applicable regulations, supplements, and standard operating procedures will be provided Contractor employees at their assigned organizations.

10.9 The Contractor shall not allow access to any Government information, system, computer, software, database, code, or any other Government assets associated with this PWS or applicable TDO to anyone who does not hold at the time of access the appropriate security clearance. Violation of this will subject the Contractor and Contractor personnel to any and all applicable laws and penalties.

10.10 The Contractor shall notify the TM and the COR within one business day of any Contractor employee that has been terminated from their employment and of any Contractor employee that has had their clearance revoked or suspended.

10.11 Installation/Facility Access. Contractor personnel shall comply with applicable installation, facility, area commander installation/facility access, and local/facility security policies and procedures. Contractor personnel shall comply with all personal identity verification requirements as directed by DoD, Headquarters, Department of the Army (HQDA), and local policy.

10.12 The Contractor shall comply with Federal Acquisition Regulation (FAR) subpart 37.114. All contract personnel attending meetings, answering Government telephones, and working in other situations where their Contractor status is not obvious to third parties, are required to identify themselves as Contractors. When Contractor personnel send e-mail messages from or to a Government-owned computer, they shall include a signature block that includes their employer’s name, and the employee’s full name and e-mail address.

11.0 TRAINING.

11.1 The Contractor shall provide a workforce possessing the skills, knowledge, training and certifications to satisfactorily perform the services required by this PWS. Personnel performing work under this PWS shall be employees of the Contractor and shall not be considered employees of the Government.

11.2 The Contractor shall have full responsibility for keeping its personnel current and abreast of state-of-the-art technology in the contract disciplines, Information Assurance Technical (IAT)/Information Assurance Management (IAM) classifications, required certifications (i.e. ITIL, CMMI, Project Management Information Security Officer (PMI), Project Management Professional (PMP), Systems Applications Products (SAP)), required labor positions, and the hardware/software environments that are applicable to specific TDO efforts. The Contractor shall be responsible for all new and recurring training and certifications of Contractor personnel in such a manner as to assure that all tasks required by this PWS are performed properly.

11.3 The Defense Federal Acquisition Regulation Supplement (DFAR) Clause 252.239-7001 (Information Assurance Contractor Training and Certification) applies to this contract. This contract is subject to the mandates of DoD 8570.01-M, which establishes baseline technical and management skills for personnel performing identified functions within the DoD. Functions spanning multiple levels require certification of the highest level functions. Certification holders shall ensure that their certificates remain active and are renewed prior to expiration. Contractor personnel supporting shall be appropriately certified prior to starting work on this contract. Contractor personnel shall utilize the Army Training and Certification Tracking System (ATCTS) website at to create and maintain an account for documentation of successful completion of mandatory training, certification, and re-certification.

11.4 The Government will identify in the TDO the IA classification level for each Contractor’s functional role. The classification level will indicate at which Certification level, either I, II or III, the Contractor shall to be trained. Certification training shall be in accordance DoD Directive 8140.01, Cyberspace Workforce Management; DoD Directive 8570.01-M, Information Assurance Workforce Improvement Program; AR 25-2; Army Training and Certification Best Business Practices, including 05-PR-M-0002, IA Training and Certification; and applicable guidance/policy. Contractor shall supply fully certified personnel to begin performance under this contract unless otherwise approved in writing by the contracting officer or COR. If approved by the Contracting Officer or COR, Contractor training shall comply with all applicable guidance/policy. The Contractor personnel shall supply/retain/maintain the identified classification level throughout performance of this contract.

11.5 The Government will identify in the TDO the IT and IT-related positions which are required to comply with AR 25-2, Section V, Personnel Security, requirements and applicable guidance/policy. The IT level will be designated as either level I, II or III. The Contractor shall supply fully qualified IT personnel to begin performance under this contract. The Contractor personnel shall supply/retain/maintain the identified IT and IT-related position levels throughout performance of this contract.

11.6 Training at Government expense will not be authorized for replacement personnel, for training Contractor personnel on TDO requirements, or for keeping Contractor personnel abreast of the state of art technologies unless specifically authorized by the Contracting Officer.

11.7 The Contractor shall not bill for labor hours or travel costs associated with Contractor employee training unless Government directed training is specifically required and approved by the COR. The Contractor shall be required to obtain written approval from the COR prior to the start of Government directed training. If travel costs are involved, reimbursement will be in accordance with Section 13.0.

11.8 In addition to noted training, education, and experience requirements, the Contractor and their subContractors shall be required to take Government directed training to support the contract effort. The Government will identify required training that is at Government expense.

12.0 ANTITERRORISM/OPERATIONS SECURITY (AT/OPSEC). The Contractor shall have full responsibility for keeping all its personnel fully trained and certified. Failure to comply with training and certification requirements can be cause for termination of employment/TDO/contract. Reporting of annual training requirements shall be in compliance with the Training Report, IAW DI-MISC-80508, CDRL A006

12.1 Antiterrorism (AT) Level I training is required for Contractor employees with an area of performance within an Army controlled installation, facility or area, or providing direct support to the contract. All Contractor employees requiring access to Army installations, facilities and controlled access areas shall complete AT Level I awareness training within 30 calendar days after contract start date or effective date of incorporation of this requirement into the contract, whichever is applicable. The Contractor shall submit certificates of completion for each affected Contractor employee to the COR or to the contracting officer within 30 calendar days after completion of training by all Contractor employees. AT level I awareness training is available at the following website:

12.2 AT Awareness Training for Contractor Personnel Traveling Overseas. Contractor employees shall make available and receive Government provided area of responsibility (AOR) specific AT awareness training as directed by AR 525-13. Specific AOR training content is directed by the combatant commander with the unit Antiterrorism Officer (ATO) being the local point of contact.

12.3 iWATCH Training shall be required for all Contractor employees with an area of performance within an Army controlled installation, facility or area, or providing direct support to the contract. The Contractor shall brief all employees on the local iWATCH program (training standards provided by the requiring activity ATO). This local developed training shall be used to inform employees of the types of behavior to watch for and instruct employees to report suspicious activity to the KO. This training shall be completed within 30 calendar days of contract award and within 30 calendar days of new employees commencing performance with the results reported to the COR No Later Than (NLT) 30 calendar days after completion of training. Training website:

12.4 ATCTS registration shall be mandatory for Contractor employees who require access to Government information systems. All Contractor employees with access to Government information systems shall be registered in the ATCTS at commencement of services, and shall successfully complete the DoD Information Assurance Awareness prior to access to the IS and then annually thereafter.

12.5 For CS/IT training. All Contractor employees shall complete the DoD IA awareness training before issuance of network access and annually thereafter. All Contractor employees working IA/IT functions shall comply with DoD and Army training requirements in DoDD 8570.01, DoD 8570.01-M and AR 25-2.

12.6 For IA/IT certification and personnel security standards. Per DoD 8570.01-M, DFARS 252.239.7001 and AR 25-2, the Contractor employees supporting CS/IT functions shall be appropriately certified prior to providing support under this contract and shall maintain mandatory minimum training requirements during contract performance. The baseline certification as stipulated in DoD 8570.01-M shall be completed prior to providing support under this contract and shall maintain mandatory minimum training requirements during contract performance.

12.7 OPSEC training. Per AR 530-1, the Contractor employees shall complete Level I OPSEC Awareness training. New employees shall be trained with 30 calendar days of their reporting for duty and annually thereafter.

12.8 For Contract Requiring Performance of Delivery in a Foreign Country. DFARS Clause 252.225-7043, Antiterrorism/Force Protection for Defense Contractors outside the US. This clause applies to both contingencies and non-contingency support. All non-local national Contractor personnel shall comply with theater clearance requirements. The combatant commander shall exercise oversight to ensure the Contractor’s compliance with combatant commander and subordinate task force commander policies and directives

12.9 Handling or access to classified information. Contractor employees shall comply with FAR 52.204-2, Security Requirements. The Contractor shall comply with: (1) The Security Agreement (DD Form 441), including the National Industrial Security Program Operating Manual (DoD 5220.22-M) and, (2) any revisions to DoD 5220.22-M, notice of which has been furnished to the Contractor

12.10 Access and general protection/security policy and procedures Contractor employees with an area of performance within an Army controlled installation, facility, or area shall provide all information required for background checks to meet installation access requirements to be accomplished by installation Provost Marshal Office, Director of Emergency Services or Security Office. Contractor workforce shall comply with all personal identity verification requirements (FAR clause 52.204-9, Personal Identity Verification of Contractor Personnel) as directed by DoD, HQDA and/or local policy. In addition to the changes otherwise authorized by the changes clause of this contract, should the Force Protection Condition (FPCON) at any individual facility or installation change, the Government may require changes in Contractor security matters or processes

12.11 For Contractors requiring a CAC. Before CAC issuance, the Contractor employee requires, at a minimum, a favorably adjudicated NACI or an equivalent or higher investigation in accordance with Army Directive 2014-05. The Contractor employee shall be issued a CAC only if duties involve one of the following: (1) both physical access to a DoD facility and access, via logon, to DoD networks on-site or remotely; (2) remote access, via logon, to a DoD network using DoD-approved remote access procedures; or, (3) physical access to multiple DoD facilities or multiple non-DoD federally controlled facilities on behalf of the DoD on a recurring basis for a period of 6 months or more in direct support of this contract.

12.12 Per AR 381-12, Threat Awareness and Reporting Program (TARP), all Contractor employees with security clearances shall receive annual TARP training by a Counterintelligence (CI) agent or other trainer as specified in 2-4b. This training shall be completed annually with the results provided to the COR NLT 30 days after completion of the training.

13.0 TRAVEL. The Government, in accordance with Joint Travel Regulation (JTR) and FAR 31.205-46, will reimburse the Contractor for all approved travel incurred in the performance of the TDOs. The Contractor shall obtain written approval from the COR prior to conducting travel. Travel requirements shall be limited to that required to support the TDOs. The Contractor shall be responsible for travel arrangements for Contractor personnel under this TDO and for securing any required personnel clearances, as needed at various locations. This includes travel, subsistence, and associated labor charges for travel time. Contractors shall be required to have a valid passport and current immunizations for Outside Continental United
States (OCONUS) travel. The Contractor shall be responsible for obtaining passports, immunizations, and/or visas for traveling Contractor personnel. The Contractor shall use only the minimum number of travelers and rental cars needed to accomplish the trip purpose. Travel shall be scheduled during normal duty hours whenever possible. Airfare will be reimbursed for actual common carrier fares which are obtained by the most reasonable and economical means.

13.1 When the COR has approved tasks to be performed in part or in full at other locations/offsite (See Appendix A) and this requires travel to a location other than the Contractor personnel ‘s’ assigned duty station, travel will be reimbursed in accordance with applicable regulations and guidance. Travel performed for personal convenience and daily travel to and from work at the Government or Contractor’s facility will not be reimbursed.

13.2 The Contractor shall prepare a Trip Report IAW DI-MISC-80508, CDRL A003, for each trip incurred

14.0 GOVERNMENT FURNISHED FACILITIES, EQUIPMENT (GFE) & INFORMATION.

14.1 The Government will provide the following when Contractor employees are co-located with Government personnel at Government facilities:

• A work area for Contractor personnel
• Personal computers with network printing capabilities, E-mail and Web (Intranet/Internet) access
• Software required in performing task activities
• Class A, Voice over Internet Protocol (VoIP), or other Government approved telephones
• Contractor personnel identification badges, which shall be worn in the workplace
• Applicable User IDs and passwords
• Expendable office supplies (pencils, pens, tape, paper, etc.)
• Desktop Locks for laptops and/or Central Processing Units (CPUs), when needed

The Government may provide non-co-located Contractor personnel access to Government computers, software, IDs, passwords when it is required for TDO performance.

14.2 Government property will not be taken from the work place, nor modified without written request to the Government and written Government permission by the authorized Government COR or KO.

14.3 The Contractor shall be fully responsible for the acceptability of its employees for purposes of facilities access and network access. Any failure of Contractor employees to gain access to either facilities or the network and any resultant delay in contract performance is not the responsibility of the Government.

14.4 The Government may provide GFE as required in individual TDOs issued under this contract. The Contractor shall be responsible for reimbursement to the Government, for only the repair or replacement of GFE that is in his possession and that is damaged or lost due to negligence, misuse, or abuse on the part of the Contractor’s employees.

14.5 The Government will provide the hardware and software components integral to the implementation of Contractor services identified in Appendix B of this PWS.

14.6 Government Furnished Information (GFI) is any technical data, drawings, or models necessary for contract performance that are in the Government’s possession. The COR will determine if the GFI identified in individual TDOs is in the Government’ s possession and make the determination as to whether the requested data /drawings/models can be released to the Contractor.

15.0 PRIVACY ACT. Work under this contract may require that Contractor personnel have access to Privacy Information. Personnel shall adhere to the Privacy Act, Title 5 of the U.S. Code, Section 552a and applicable agency rules and regulations.

16.0 HOURS OF OPERATION. The Contractor shall perform the functions under this PWS as dictated by the operational requirements of the customers that are being supported.

16.1 NORMAL BUSINESS HOURS. The Contractor normal business hours of operation are 0600 hours to 1800 hours, Monday through Friday. The normal duty day will consist of eight work hours with a meal break. Individual TDOs shall identify normal business hours.

16.2 OPERATIONAL BUSINESS HOURS. The Contractor operational business hours for some customers may be up to 24 hours a day, 7 days a week, and 365 days a year. Individual TDOs shall identify hours of operation.

16.3 OVERTIME. Approval of overtime will be determined on a case by case basis per FAR 22.103-2. The Contractor shall identify hours in excess of 40 hours per week that are necessary to meet requirements and shall notify the KO/COR of the labor category, justification, date(s), time(s) and estimate of hours necessary to support TDO requirements. Overtime shall be requested and approved by the KO/COR prior to incurring any overtime. Overtime hours that are not authorized by the KO/COR will not be reimbursed to the Contractor, by the Government. Under no circumstances shall Contractor personnel exceed the approved allotment of overtime hours.

16.4 ON-CALL. The Government may require on-call support on a periodic, temporary or pem1anent basis. Individual TDOs shall identify the on-call requirements.

16.5 CRITICAL SUPPORT. The Contractor shall provide support, after Normal Business Hours and for Operational Hours, as stated in 16.1 and 16.2, for mission critical support, when necessary. Critical functions may be performed in response to individual TDO requirements. Any COOP requirements shall be identified in the individual TDOs.

16.6 CONTINUITY OF OPERATIONS (COOP)/DISASTER RECOVERY. The Contractor shall comply with COOPs and the Disaster Recovery Plans for all areas supported during routine operations and emergencies.

16.7 MISSION/KEY ESSENTIAL. The Government may designate certain Contractor positions as emergency/key essential positions which are required to support vital services during inclement weather, base closure or other situations. The Contractor positions that are designated as emergency/key essential positions may be required to stay on the job or report to work while fellow workers are excused. The Contractor shall comply with the emergency/key essential requirements for all areas supported.

17.0 HAZARDOUS MATERIAL. Hazardous Material activities are not anticipated in the performance of the tasks identified in this PWS. In the event of contact or exposure to hazardous material, the Contractor and subContractor activities shall be in compliance with applicable Federal, state and local environmental laws and regulations.

18.0 COMPLIANCE WITH ENVIRONMENTAL LAWS AND REGULATIONS. Contractor shall comply with all applicable federal, state, and local environmental laws, statutes, regulations, executive orders, permits, Army regulations (with supplements), as well as Major Subordinate Command (MSC) and installation regulation, policy, Host Tenant Agreement, Interagency Service Support Agreement, or Status-of-Forces Agreement. Contractor shall immediately report any conflicts between applicable federal, state, local environmental laws, statutes, executive orders, and provisions of AR 200-1, and any specifications within this contract to the COR.

19.0 PHASE-IN, PHASE-OUT, and CLOSE-OUT. The following phase-in, phase-out and close-out requirements describe how continuity of operations shall be maintained for serviced organizations during transition of performance from out-going Contractors to incoming Contractors/Government. The objective is to coordinate on-going efforts so that user/customer services are not impacted. These requirements will be initiated at the Government’s discretion through individual TDOs.

19.1 PHASE-IN EFFORT. The Contractor shall work in coordination with the outgoing Contractor/Government for a period not to exceed 60 days after TDO approval to ensure that support is transitioned in a smooth, uninterrupted effort.

A. During the phase-in period, the Government may provide the Contractor written descriptions and procedures of ongoing and recurring activities.
B. The Government COR or assigned Technical Monitor (TM) will provide access to all documentation pertinent to the TDO effort (e.g., manuals, regulations, reports, schedules, activity logs, and all required computer related passwords).

19.2 PHASE-OUT AND CLOSE-OUT EFFORT. For each TDO under this PWS, the Contractor shall provide transition information to and coordinate with the incoming Contractor/Government as described below or shall provide close-out information to the Government. Hand-off of all materials/projects developed, purchased or under development, including licenses shall be accomplished in an orderly fashion. This shall include all materials in which ownership is in dispute, which shall be resolved under contract close-out procedures. These requirements are in addition to standard procedures such as clearing of post. The Phase-Out or Close-Out requirements will be initiated at the Government’s discretion through individual TDOs.

A. The Contractor shall work in coordination with the incoming Contractor/Government during the transition period not to exceed 60 days prior to the TDO completion date. Additional workspace may be provided by the Government during this period.
B. As required by individual TDOs, the Contractor shall provide a detailed Phase-Out Report that includes written descriptions and procedures for all ongoing and recurring activities IAW DI-MISC-80508, CDRL A004.
C. As required by individual TDOs, the Contractor shall provide a detailed Close-Out Report that includes an overview of the TDO tasks including timelines, actions, activities, and lessons learned IAW DI-MSC-80508, CDRL A005.
D. During the final 60 day period of each TDO effort, the Contractor shall promptly provide all documentation and work-in-progress applicable to the TDO effort, return any Government furnished property in its possession, and identify all required passwords utilized in connection with the TDO. The Contractor shall make no further changes to passwords without notification to the COR.

20.0 CONTRACT ADMINISTRATION. The Contractor shall provide all its own necessary administrative support to successfully accomplish the requirements of this PWS including management, word processing, accounting, secretarial, and administrative labor.

20.1 The Contractor shall prepare a Work Plan IAW DI-MGMT-81117, CDRL A002 for every TDO issued, which shall delineate the Contractor’s approach for accomplishment of the work. This Work Plan will be approved by the Government prior to the Contractor expending any effort on the task, except that work can begin before Work Plan approval when the Government determines that the urgency of the task is such that any delay would not be in the Government’s best interest. The Contracting Officer or COR may authorize the Contractor to begin work before Work Plan approval.

20.2 The Contractor shall prepare a comprehensive monthly status and progress report IAW DI-MGMT-80227, CDRL A001, at the overall contract level and for each TDO.

20.3 The Contractor shall prepare a Training Report which identifies the status of mandatory training IAW DI-MISC-80508, CDRL A006, for each TDO.

20.4 The Contractor shall ensure that all personnel in-processing and out-processing requirements, such as security clearances, personnel badges and vehicle registrations are completed. The Contractor shall comply with AR 25-2, AR 380-67, AR 385-10, AR 600-8-14, DoD and Army security regulations, and local Standard Operating Procedures (SOPs) and guidelines as required and applicable. These regulations/policies/guidance will be made available upon assignment to the responsible organization.

21.0 MEETINGS.

21.1 KICK-OFF MEETING. The Contractor shall perform a kick off meeting within 10 days of contract award. The Meeting will include the KO, the COR/CORs, the Contractor Project Team, and the Government Project Team and their representatives.

21.2 OTHER MEETINGS. The Contractor shall attend, participate in, contribute to and/or conduct meetings in accordance with the requirements and schedule of the individual project/program and applicable TDO. Meetings may include CSIM Briefings, General Staff Meetings/Briefings, TDO Status/Update meetings, and TDO subject specific meetings.

21.2.1 The Contractor shall prepare Report, Record of Meeting/Minutes as specified within individual TDOs IAW DI-ADMN-81505, CDRL A009.
21.2.2 The Contractor shall prepare Briefing Material as specified within individual TDOs IAW DI-MGMT-81605, CDRL A012.

22.0 PERFORMANCE OBJECTIVES METRICS. The performance objectives and metrics discussed below have been established for utilization under this contract and subsequent TDOs. The contract performance metrics are set forth at Appendix E, Performance Requirements Summary Matrix. Individual TDOs may establish a Performance Requirements Matrix at a higher acceptable quality level.

22.1 Appendix E, Performance Requirements Summary Matrix. This performance-based service contract incorporates the following performance objectives: (1) Delivery of high quality technical performance; (2) Adherence to TDO schedules, milestones, and delivery requirement s; (3) Efficient and effective control of labor resources; and (4) Establish appropriate and proficient business relations. It is the Contractor’s responsibility to employ the necessary resources to ensure accomplishment of these objectives. The Government’s assessment of the Contractor’s performance in achieving these objectives will utilize the standards, acceptable quality levels, surveillance methods, and performance assessments described in the Performance Requirement s Summary Matrix. The performance assessments will be in accordance with FAR, Part 37 and Part 42.

22.2 The performance objectives, standards, and acceptable quality levels in this contract shall be applied on the basis of each individual TDO. The Government will conduct informal performance review sessions with the Contractor’s Program/TDO Manager to identify any active TDO performance that is not meeting the acceptable quality levels. These sessions will provide the Contractor a fair opportunity and adequate time to improve its performance level and will occur at a minimum of annually as part of the past performance evaluations and contract quality assurance actions required by FAR 42.1502, 46.l 02 and 46.l 04.

22.3 The Control of Labor Resources criteria will be reflected under the “Cost” category of the performance assessment. Although the criterion of Management of Key Personnel is not specifically included in the Performance Requirements Summary Matrix, the overall performance assessment will continue to include this criterion.

22.4 The Contractor will be notified, in writing, of the Government’s determination of its performance level for each performance objective including all instances where the Contractor failed to meet the acceptable quality level.

23.0 CONTRACT MANPOWER REPORTING (CMR). The Secretary of the Army has required all Army contracting agencies comply with the “Accounting for Contractor Man-hours” memo dated 7 January 2005. The Contractor shall report manpower and cost data into the Army’s Contractor manpower database as described below.

23.1 Accounting for Contractor Man-Hours: The Army’s Office of the Assistant Secretary of the Army (Manpower & Reserve Affairs) operates and maintains a secure Army data collection site where the Contractor shall report ALL Contractor manpower (including subContractor manpower) required for performance of this contract. The Contractor shall be required to completely fill in all the information in the site’s format using the following web address The required information includes:

a. Contracting Office, Contracting Officer, Contracting Officer’s Technical Representative;
b. Contract number, including task and delivery order number;
c. Beginning and ending dates covered by reporting period;
d. Contractor Company name, name of Contractor employee entering data, Government office address; phone number and e-mail address;
e. Estimated direct labor hours (including subContractors);
f. Estimated direct labor dollars paid this reporting period (including subContractors);
g. Total payments (including subContractors);
h. Predominant Federal Service Code (FSC) reflecting services provided by Contractor (and separate predominant FSC for each subContractor if different) – for this work, the code is “D” for Information Technology;
i. Estimated data collection cost;
j. Organizational title associated with the Unit Identification Code (UIC) for the Army Requiring Activities;
k. Locations where Contractor and sub-Contractors perform the work (specified by zip code in the United States and nearest city, country, when in an overseas location, using standardized nomenclature provided on website);
l. Presence of deployment or contingency contract language; and
m. Number of Contractor, and Subcontractor employees deployed in theater this reporting period (by country).

As part of its submission, the Contractor shall also provide the estimated total cost (if any) incurred to comply with this reporting requirement. The Reporting period will be the period of performance, not to exceed 12 months ending September 30 of each Government fiscal year and must be reported upon contract award and annually thereafter (by 31 October of each calendar year) for the duration of the contract. The Contractor may use a direct Extensible Markup Language (XML) data transfer to the database server or fill in the fields on the website. The XML direct transfer is a format for transferring files from a Contractor’s systems to the secure web site without the need for separate data entries for each required data element at the web site. The specific formats for the XML direct transfer may be downloaded from the web site.

Response Date:
051217

Sol Number:
IA-IM0001_PWS_(SPECIAL-NOTICE)