SOURCES SOUGHT
D -- System Administration and Migration for DLA Ogden Enclave
- Notice Date
- 5/6/2010
- Notice Type
- Sources Sought
- NAICS
- 541712
— Research and Development in the Physical, Engineering, and Life Sciences (except Biotechnology)
- Contracting Office
- Defense Information Systems Agency, Procurement Directorate, DITCO-Scott, 2300 East Dr., Building 3600, Scott AFB, Illinois, 62225-5406, United States
- ZIP Code
- 62225-5406
- Solicitation Number
- DLA_DOE
- Archive Date
- 5/30/2010
- Point of Contact
- Lisa A Kraft, Phone: 618-229-9632
- E-Mail Address
-
lisa.kraft@disa.mil
(lisa.kraft@disa.mil)
- Small Business Set-Aside
- N/A
- Description
- DLA Defense Logistics Agency Table of Contents DLA 1 1.0 Introduction 3 2.0 Background 3 3.0 Statement of Need 4 4.0 Information Requested 4 5.0 Instructions to Vendors 7 Appendix A- DLA / DISA Roles and Responsibilities 9 DLA Request for Information 1.0 Introduction This is a Request for Information (RFI), as defined in Federal Acquisition Regulation (FAR) Part 10. The Government is issuing this RFI in an effort to understand market availability, technical characteristics, and functionality of Information Technology (IT), tools, or products capable of satisfying the technical, functional, and/or operational capabilities described in this RFI. This is not a Request For Proposal (RFP), Request For Quotation (RFQ), or an invitation for bid, nor does its issuance obligate or restrict the Government to any eventual acquisition approach. All information received from this RFI will be used for planning and Market Research purposes only. The Government does not intend to award a contract on the basis of responses nor otherwise pay for the preparation of any information submitted or use of such information. Acknowledgement of receipt of responses will not be made, nor will respondents be notified of the outcome of the information received. 2.0 Background The Defense Logistics Agency (DLA) currently operates and maintains numerous software applications in support of its logistics mission. These include legacy systems, contemporary systems, and emerging systems. There are a large number of DLA employees and consultants directly related to supporting these Information Technology (IT) systems and infrastructure at the various DLA facilities. Decentralized responsibility and execution for operations and support of logistics systems has led to the creation of a large number of unique applications, each requiring individual and specialized support. This RFI defines a System as: "The hardware, firmware, and software used as part of the Information System (IS) to perform DOD information functions." This definition includes computers, telecommunications, automated information systems, and automatic data processing equipment. IT includes any assembly of computer hardware, software, and/or firmware configured to collect, create, communicate, compute, disseminate, process, store, and/or control data or information, per DoDI 8510.01 Department of Defense Information Assurance Certification and Accreditation Process (DIACAP) Instruction, DoDD 8500.01 Information Assurance, and various NSA and NIST supplemental guidance. Over the past several years DLA has migrated its applications from a decentralized operations model into centralized data centers, first at commercial sites and then at Defense Enterprise Computing Centers (DECCs) at the Defense Information Systems Agency (DISA). Application production is currently at the DECC located in Hill Air Force Base in Ogden, Utah and the application Test, Development and Staging will be located at the DECC in the Systems Support Office in Mechanicsburg, Pennsylvania. The applications in these sites that are fully compliant with DOD security regulations are operated in DISA controlled enclaves. The other applications, including the test and development, are operated in enclaves are under DLA control. Applications that require modification or retirement are currently in the DLA controlled enclaves identified as the DLA Ogden Enclave (DOE) at Hill Air Force Base, Utah. DLA's intent is to reduce the applications in the DOE by either re-engineering them to fully comply with the DOD security regulations and migrate them to the DISA controlled enclave or to return them to DLA facilities to be replaced or retired. All staging will eventually be migrated to DISA managed facilities. Applications that cannot be so migrated will be converted to the DISA Customer Designated Approving Authority (DAA) Accredited Enclave (CDAE). Network access to the DISA facilities will be provided by the Non-classified Internet Protocol Router Network (NIPRNet). Network access to the DOE and CDAE facilities will be provided by the DLA Enterprise Telecommunications Network (ETN). DLA is interested in industry capabilities and best practices in regards to providing support services and database support. Specifically DLA is interested in realizing savings in operations, acquisition, licensing and maintenance of the servers, applications, databases, networks, and facilities. DLA's considerations/goals are: a) Consolidate System Administration and Information Assurance for DOE servers, applications, storage, and operations and thereby reduce cost; b) Provide processes and procedures to improve efficiency by decreasing incident response times, performing root cause analyses, and streamlining management and reporting; c) Reduce vulnerability; d) Improve reliability; and e) Set the foundation for effective management of DLA Information Technology assets. The anticipated benefits of these support services are: a) A modern and flexible IT infrastructure; b) Support the standardization of application development through the consolidation of test and development environments; c) A reduction in the IT inventory (servers, applications and storage) and the associated costs through an improved use of equipment and the consolidation of applications when possible; d) A more effective enterprise Information Assurance (IA) implementation through reduced vulnerabilities and centralized system administration; e) An expanded disaster recovery capacity and Continuity Of Operations (COOP) capable of managing a growth in DLA applications and users; f) A reduction in the total cost of ownership; and g) Assist DLA PMO in coordinating IA certification and accreditation activities. 3.0 Statement of Need DLA is researching support services for the Defense Logistics Agency (DLA) Ogden Enclave (DOE) Production and Test/Development environments currently located at the Defense Information System Agency (DISA) Hosting Center in Ogden, Utah. These support services include but are not limited to: Systems Administration (SA), Information Assurance (IA), Certification & Accreditation (C&A), and incident, problem, and configuration management utilizing DISA owned tool set (e.g. IT Service Management (ITSM)), and Program Management. In addition, support services will be required for migrating the Test/Development environment from its current location in DISA DECC Ogden to the DISA DECC in Mechanicsburg, Pennsylvania. 4.0 Information Requested For this RFI, DLA requests a demonstration of innovative, state-of-the-art technology solutions, to provide for the successful transition of current management responsibilities for the DLA Ogden Enclave (DOE) to the DISA environments through a process of knowledge transfer sessions and training activities. Specifically, DLA is interested in the following four (4) capabilities: Capability 1: System Administration The selected contractor shall provide systems administration and support services for approximately 200 DLA servers running Microsoft Windows, various brands of UNIX, and Linux based operating systems. Task within this area include but are not limited to; a) Installing, configuring, and securing, servers, operating systems software and patches, application software and database management systems. b) Creating and maintaining user accounts and user access controls. c) Backing up and restoring operating systems, databases, and user files, participating in all activity that supports the agency's DR/COOP initiatives. d) Monitoring and tuning systems performance, CPU, memory and storage utilization, and providing capacity planning support to DLA as directed. e) Responding to incidences, and performing troubleshooting and problem resolution task as directed by DLA. All services provided under this task area shall use and be integrated with approved DOD and Federal standard communications, security, data and technical specifications. Applications shall be integrated into the existing infrastructure or built with new infrastructure as approved by the DOE Program Manager and the Contracting Officer. Capability 2: Information Assurance Support services for Information Assurance (IA) and Certification & Accreditation (C&A) activities, actions and processes shall be implemented at all phases of DOE program management to ensure that security services are provided for the confidentiality, integrity, and availability of information being managed or processed by the DOE. Security services shall be provided to protect non-classified, sensitive non-classified and classified information at rest, in-use, or in-transit in accordance with the policy delineated in governing references. The design of the DOE provides adequate protection measures to increase its resistance to attacks that might partially or wholly incapacitate it, and to prevent disclosure of sensitive information that might make it vulnerable. Protection of the DOE encompasses three aspects: operations, communications, and physical protection. Mechanisms have been implemented within the DOE to adequately protect these three aspects of operations. The selected contractor shall manage and deploy appropriate mechanisms to ensure that Denial of Service attacks or other risks to availability are properly mitigated. The DOE incorporates Defense-in-Depth mechanisms throughout each aspect of the infrastructure and operations. In order to accomplish this, the selected contractor shall be required to interface with, report to and work with DLA management and field sites. This includes, but is not limited to the following DLA organizations: DLA Network Operations Support Center (NOSC), DLA Computing Emergency Response Team (CERT), DLA J61 (Information Assurance Policy), and DLA J6 (Information Operations), as the Program Manager directs. The Government is the owner of the data hosted on or processed by the DOE to include data generated by part or component of DOE (e.g., security incident data). All deliverables in the final contract will be considered as the property of DLA and the Government. All Personally Identifiable Information (PII) will be handled separately and protected from being released to the general public. Capability 3: Program Management The selected contractor shall provide the program management and planning activities as required to ensure that the management of the DLA DOE lifecycle adheres to all relevant and applicable DOD, DLA, and DISA guidelines, directives, and policies. This includes, but is not be limited to the creation, review, comment, the updating of planning and policy documents; status and activity reports; the preparation of project presentations to DLA management, and the support of the meetings needed to coordinate all of these activities. In addition, the selected contractor shall provide appropriately trained personnel with the security approvals and professional certifications required to accomplish the following objectives: a) Track all adds, moves, and changes to all DOE systems and equipment. b) Support scheduling activities for all related Configuration Management (CM) groups to include the development of agendas and documenting the status, action items, and issues discussed. c) Provide support for the coordination and scheduling of approved changes into the DOE. d) Analyze and identify potential risks or conflicts relating to proposed changes to the DOE systems and equipment. e) Manage the CM library of DOE configuration artifacts to include detailed designs, network maps, equipment layout diagrams, configuration artifacts, etc. f) Develop and maintain the DOE CM Plan. g) Develop and maintain the documentation of the DOE CM processes and procedures in support of this Plan. h) Facilitate appropriate CM training and awareness to DLA stakeholders. i) Provide input to the J-641 budget for DOE related items. j) Coordinate with the Asset Management program for DOE equipment. k) Act as DLA representation for external (DISA/DOD) Configuration Control Boards (CCB), weekly meetings, and working groups where necessary. l) Manage the necessary communications needed to support the DLA Program Management Office (PMO). Capability 4: Migration Support The selected contractor shall provide support services for the migration of the Test/Development environment from its current location at the DISA DECC Ogden Utah (DECC-O) to the DISA DECC in Mechanicsburg, Pennsylvania (DECC-M). Task within this area will include but will not limited to; a) Working with DLA,DISA, and DLA field site management to identify the requirements for migration, and to develop and manage the migration of DLA test and development environments and applications out of DECC-O and into DECC-M. b) Support the DLA PMO in the development and management the overall master migration schedule. Identify and track key milestones and resolve issues impacting migration schedule. c) Assist in the migration of DLA systems; coordinate and manage migration activities between DISA and DLA personnel. d) Assist in determining the operational architecture, roles and responsibilities, virtualization approach, and migration strategy for DOE applications. e) Prepare and distribute weekly status reports and identified briefing materials for DLA Management. f) Assist in the disposition of Government Furnished Equipment (GFE) in the DOE and confirm with DLA Management. When migration has been completed, the contractor shall provide support services for the DECC-M environment for at least a thirty day stabilization period, as determined appropriate by the DLA Program Manager and the DITCO Contracting Officer. Small Business Concerns: DLA is interested in reaching out to designated small businesses and assessing their capabilities. Therefore, all qualified small businesses are highly encouraged to submit a response. Small business responses will be used to assist DLA and DITCO in performing further market research and determining the appropriate procurement vehicles, if needed. 5.0 Instructions to Vendors The purpose of this RFI is to gather information. Responses to this RFI or participation in any follow-on demonstrations will not preclude any vendor from responding to future acquisitions efforts, either individually or as part of a team. Response to this RFI should be in the form of a Microsoft PowerPoint presentation. This presentation should describe how the product/technology might be used to address the business needs in Section 3 and the capabilities in Section 4. This submission should include the following: a) Product overview and a detailed description of the technology, clearly demonstrating that no customization of Commercial-Off-the-Shelf (COTS) software; b) Succinct description of how the technology can be used to meet Capabilities in Section 4, supported by examples of where this approach has been successfully deployed; c) Succinct description of the "proven" business benefits of the technology; d) Company Information. If the Government has additional questions or a need for information vendors will be contacted and asked to provide additional information or a demonstration. DLA has included project related material as appendixes in this RFI. This material should be considered only as an example of the work to be performed on this contract once awarded. DLA recognizes that vendors may include proprietary information and trade secrets in their responses. DLA will treat all responses with the same level of content security as afforded source selection sensitive documents. DLA is not responsible or liable for any costs incurred by vendors in the response to this RFI. RFI Process Because of schedule constraints, questions or negotiations will not be entertained for this RFI. Based on the results of the Government's review of the submission packages information provided in any response may be included in future acquisition documents. Submission Package Responses should be: • No more than 17 pages in Microsoft PowerPoint format; • Use 12 point Times New Roman or Larger font; • Any diagrams may also be provided in Microsoft Visio format as an attachment; • Vendors may not receive a confirmation of receipt of their submitted package. Submission Package Format and Page Count Limitation: o Product Overview and a detailed description of the technology, clearly identifying an estimate of the custom development required to meet Section 3 and fulfill the capabilities described in Section 4 (Maximum of 5 charts) o Succinct description of how the technology can be used to meet the Capabilities in Section 4 and supported by examples of how/where the technology has been successfully deployed (Maximum of 5 charts) o Succinct description of the "proven" business benefits of the technology (Maximum of 3 charts) o Approach and Scenario(s) to be Used in the Demonstration (Maximum of 3 charts) o Company and contact Information (Maximum of 1 chart) Delivery Instructions Submission packages should be emailed to William.Wallace@dla.mil and Angelika.Daviston@dla.mil no later than May 15th, 2010. Appendix A- DLA / DISA Roles and Responsibilities Role Definition R Responsible (implies Executes if not otherwise stated) E Executes H Helps C Concurs (assists, supports, participates in order to concur) A Approves N Shall be Notified A blank cell indicates the entity has no responsibility for task Roles and Responsibilities for the DLA Ogden Enclave (DOE) Task DISA Contractor App Owner DLA Comments Incident Management Facility R N N N Network - DOE LAN E R N N Network - ETN WAN N N N R Server E R N N Storage E R N N OS H R N N Data Bases R C N Application R E N Ticket should be put in at Local J6 Help Desk level and routed internally to J6App owner. Problem Management Facility R N N N Network - DOE LAN E R N N Network - ETN WAN N N N R Server E R N N Storage E R N N OS H R N N Data Bases R H N Application R E N Ticket should be put in at Local J6 Help Desk level and routed internally to J6App owner Change Management Facility R N N N Network - DOE LAN E R C A Roles and Responsibilities for the DLA Ogden Enclave (DOE) Task DISA Contractor App Owner DLA Comments Network - ETN WAN N N N R Server E R C A Storage E R C A OS H R C A Data Bases R H N Application R E N Ticket should be put in at Local J6 Help Desk level and routed internally to J6App owner Configuration Management Facility R N N N Network - DOE LAN E H N R Network - ETN WAN N N N R Server R N N A Storage R N N A OS H R N N RDBMS - Relational Database Management Systems R N N Data Bases H R N Application N R N Administration and Security Facility - DECC Ogden - Monitor and Manage power infrastructure R N N N Facility - DECC Ogden - Monitor and Manage floor and rack space R N N N Facility - DECC Ogden - Monitor and Manage environment (cooling) R N N N Facility - DECC Ogden - Provide and Monitor physical security R N N N Facility - DECC Ogden - Maintain site accreditation R N N N Network - DOE Local Area Networks (LAN) - Hardware procurement and maintenance R N N A Network - DOE LAN - Provision Firewalls R N N A Network - DOE LAN - Configure Firewalls E H N R Contractor will route tickets to firewall resources. Network - DOE LAN - Implement and Provision network devices R N N A Roles and Responsibilities for the DLA Ogden Enclave (DOE) Task DISA Contractor App Owner DLA Comments Network - DOE LAN - Maintain traffic analysis capability (troubleshooting) R N N N Network - DOE LAN - Analyze Traffic H H H R Network - DOE LAN - DoD Security Technical Implementation Guides (STIG) Devices and post results in the Vulnerability Management System R N N C Network - DOE LAN - Maintain IA Accreditation H H H R Network - ETN Wide Area Network (WAN) - Hardware procurement and maintenance N N N R Network - ETN WAN - Provision Firewalls N N N R Network - ETN WAN - Configure Firewalls N N N R Network - ETN WAN - Implement and Provision network devices N N N R Network - ETN WAN - Maintain traffic analysis capability (troubleshooting) N N N R Network - ETN WAN - Analyze Traffic H H H R Network - ETN WAN - STIG Devices and post results in VMS N N N R Network - ETN WAN - Maintain IA Accreditation N N N R Storage - Hardware procurement R N A Storage - Tape array administration R N N Storage - Vertias NetBackup Administration R N N Install Netback-up Agent R STIG, Upgrade Netback-up Software R E DISA is responsible. Contractor Executes upgrades with Change Request, directions and software. DISA configures Database Back-ups non-Veritas R Back-up Policy Exclusions H E R Storage - Veritas Backup result reporting R N N N Storage - non-Veritas Backup result reporting N N R N Roles and Responsibilities for the DLA Ogden Enclave (DOE) Task DISA Contractor App Owner DLA Comments Storage - Disk array administration R N N N Storage - SAN administration R N N N Storage - SAN - Dual Pathing Installation/Initial Configuration R H N N Storage - SAN - Dual Pathing Configuration/Maintenance R E N N Storage - Logical Unit Number (LUN)creation and masking R N C N Storage - Space Allocation E N N R Storage - Allocation reporting R N N C Storage - Utilization Reporting N R N Server - Hardware procurement R N N A Server - Hardware maintenance and configuration R N N A Server - Performance Monitoring and Reporting for Troubleshooting H H N R DISA responsible for Virtual, Contractor will assist with scripts for troubleshooting. Server - Fault Monitoring and Alerting H R N N Load Balancing - Hardware procurement R N N A Load Balance-Application H H R N Load Balancing - Operating System (OS) H E R N Load Balancing - Hardware E H R N Virtual Management VMWare - ESX Tool installation, maintenance and monitoring R N N Virtual Management VMWare - Virtual Operation Environment (VOE) Configuration and Installation R H N A Virtual Management VMWare - ESX Tool installation and maintenance R N N Virtual Management VMWare - Virtual Operation Environment (VOE) tools installation and maintenance R E N N OS - Installation R H N A OS - Administration R N N OS - STIG and post results in VMS R N C OS - Data backup and recovery E H R N OS - Software licensing for OS, NetBackup Agent R N Roles and Responsibilities for the DLA Ogden Enclave (DOE) Task DISA Contractor App Owner DLA Comments OS - Local account management R H A OS - DLA Microsoft Active Directory (AD) Server Build H R A OS - DLA AD account management for DOE Domain H H R OS - Microsoft Internet Information Service (IIS) Install IIS R C A Patch, ensure security compliance E R C Build/Administer web site H R N Administration consists of content upload. Contractor will help for anything needing OS, but not content.. Configure web site H R A if os level access required to do anything contractor engaged to help OS - Cluster Server Installation of Cluster software H R A Configuration of Cluster software E R N Installation/Administration of Cluster Application H R Security - IA tools installation and maintenance R N A Security - IA tools monitoring R N C Security - Incident Handling and Response H R N C Security - Enclave Accreditation H H H R Security - Enclave documentation H R H H accreditation for enclave Security - Vulnerability Management R N C Security - CERT reporting R N C Database RDBMS - Administration R H Database - Administration H R N Anything requiring OS level Access - Contractor Oracle - Installation of Oracle E R N Oracle - Critical patches R C N Oracle - Application configuration and maintenance N R N Structured Query Language (SQL) - Installation of SQL E R N SQL - Critical patches R C N Roles and Responsibilities for the DLA Ogden Enclave (DOE) Task DISA Contractor App Owner DLA Comments SQL - Application configuration and maintenance H R N Database - Performance Tuning H R N Database - Threshold alert tuning H R N Database - RDBMS - STIG and post results in VMS R H Database - STIG and post results in VMS H R N Database - Monitoring R N Application - Administration N R N Application - IA Accreditation / Authority to Operate (ATO) H H R H Application - STIG and VMS reporting N R C Application - Installation and setup H R N Contractor will give admin access Application - Disaster Recovery procedures H H R C Application - Performance Monitoring H H R N Contractor will help with Problem Ticket resolution Application - Application Monitoring R N N Awaiting installation of HPES monitoring software for capability Application - Access control and security management N R N
- Web Link
-
FBO.gov Permalink
(https://www.fbo.gov/spg/DISA/D4AD/DITCO/DLA_DOE/listing.html)
- Record
- SN02142974-W 20100508/100506235552-86c278cc36c99c95c58d9ce2c7eacf02 (fbodaily.com)
- Source
-
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
| FSG Index | This Issue's Index | Today's FBO Daily Index Page |