Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
FBO DAILY - FEDBIZOPPS ISSUE OF JUNE 04, 2017 FBO #5672
DOCUMENT

D -- Cloud Managed Services and Transition Services - Attachment

Notice Date
6/2/2017
 
Notice Type
Attachment
 
NAICS
541512 — Computer Systems Design Services
 
Contracting Office
Department of Veterans Affairs;Technology Acquisition Center;23 Christopher Way;Eatontown NJ 07724
 
ZIP Code
07724
 
Solicitation Number
VA11817N2170
 
Response Due
6/12/2017
 
Archive Date
9/10/2017
 
Point of Contact
Troy Loveland
 
Small Business Set-Aside
N/A
 
Description
Request for Information Cloud Managed Services and Transition Services TAC Number: TAC-17-44171 Request For InformationPage 15 This is a request for information (RFI) only. Do not submit a TEP. It is requested that all interested parties, however, note their interest and provide indication of their respective capabilities to perform the effort described in part below. This RFI is for planning purposes only and shall not be considered an Invitation for Bid, Request for Task Execution Plan, Request for Quotation or a Request for Proposal. There is no obligation on the part of the Government to acquire any products or services or incidental material described in this RFI. Your response to this RFI will be treated only as information for the Government to consider. You will not be entitled to payment for direct or indirect costs that you incur in responding to this RFI. This request does not constitute a solicitation for proposals or the authority to enter into negotiations to award a contract. No funds have been authorized, appropriated or received for this effort. The information provided may be used by the VA in developing its acquisition strategy. Interested parties are responsible for adequately marking proprietary, restricted or competition sensitive information contained in their response. The Government does not intend to pay for the information submitted in response to this RFI. The Department of Veterans Affairs (VA), Office of Information Technology (OIT) requires the ability to efficiently acquire Cloud Managed Services on an ongoing basis. The objective is to develop/acquire an internal VA owned Managed Cloud Service capability. The Cloud Managed Service provider shall manage a portfolio of cloud computing services across multiple cloud service provider (CSP) offerings, utilizing existing VA owned tools and/or CSP tools, recommending to VA flexible solutions for the delivery of cloud computing services. The Cloud Managed Service provider will be required to provide cloud transition services and/or cloud managed services. Note: The RFI is not for the purpose of requesting information for the underlying cloud services (e.g. CSP). The description below represents the VA s requirement for a framework that will move the VA enterprise from the current state to a future cloud enabled state. The objectives outlined below provide VA s vision for a current enterprise, key objectives, and its goals in terms of how to move forward to quickly attain the benefits of cloud services, network modernization, unified communications, and data center consolidation.. The vision is to make profound changes in the VA computing environment, to leverage existing efforts, to forge a path on how to move the enterprise to full cloud adoption, and significantly improve VA s delivery of enhancements to Veteran health, benefits, and service delivery programs while driving down Information Technology sustainment costs and optimizing resources. The Cloud Managed Service Provider may support the following areas: Cloud Transition Professional Services; Cloud Transition Governance Support Cloud Transition Operational Support Managed Cloud Services Implementation Network Modernization & Convergence; Unified Communications; Data Center Consolidation; Cloud Managed Services Cloud Mgmt. Core Services Operation; Cloud Mgmt. Higher Value Services Operation; Cloud Service Provider (CSP) Services Public Cloud Services The North American Industry Classification System (NAICS) for this requirement is 541512 with a size standard of $27.5 million. Be advised that set-aside decisions may be made based on the information provided in response to this RFI. Therefore, this RFI is also issued to determine the availability of verified Service-Disabled Veteran-Owned Small Businesses (SDVOSBs) and Veteran Owned Small Businesses (VOSBs) that are capable of providing the cloud managed services in accordance with the Limitation of Subcontracting under the Code of Federal Regulations 13 CFR §125.6. Responses should be as complete and informative as possible. Generic capability statements will not be accepted or reviewed. Your response must address capabilities specific to the services as described below: The following diagram provides an overview of the cloud professional services and cloud managed services the Government anticipates requiring: Statement of Service Objectives: VA has identified the need for professional cloud infrastructure transition as well as cloud managed services which will support a number of key service objectives. The Cloud Transition Professional Services may include the following: Overarching Program Governance and Operational Support for all aspects of the cloud and infrastructure transition, and in support of the implementation of an internal Managed Cloud Service; On-going Managed Cloud Services Implementation Support for the creation of an internal Managed Cloud Service capability to be operated by an external Managed Service Provider; In addition to these cloud specific transition services, the VA recognizes that it may also require core infrastructure support services that will be utilized to support the modernization of its infrastructure. This modernized infrastructure is considered to be a critical path for the creation for the internal Managed Cloud Services outlined above, as well as for the continued support of on-going traditional Information Technology (IT) Infrastructure support services. On-going Network Modernization and Convergence Support for the creation of an internal Managed Cloud Service capability, as well for the creation of a modernized IT Network Infrastructure support service; On-going Unified Communications (UC) Support for a modernized IT Communications Infrastructure support service, aligned with the on-going Network Modernization support activities; On-Going Data Center Consolidation Support for the creation of an internal Managed Cloud Service capability, as well for the creation of a Consolidated Data Center Infrastructure support service. The Cloud Managed Services may include the following: Cloud Management Core Services Operation Managed Service, which will provide resources to operate and support the internal Managed Cloud Services environment for both Public & Private Services. i.e. Cloud Management Platform (CMP) enabled functions such as Service Catalog, Provisioning, Orchestration, Chargeback/Billing, Capacity/ Performance, Change/Configuration, etc.; Cloud Management Higher Value Services Operation Managed Service, which will provide resources to operate and support the internal Managed Cloud Services environment for both Public & Private Services. i.e. IT Cloud Service Management functions such as Demand, Financial, Continuity, etc. and IT Cloud Technical Management functions such as Automation, Security, Development, etc. Service Objectives Cloud Transition Professional Services Cloud Transition Governance Support; Support the on-going management of the overall cloud transition program delivery and performance through the establishment of a Cloud Program Management Office (CPMO). Develop/maintain the overall cloud program strategy and roadmap plan and support its continuous improvement and iteration. Develop/maintain the overall cloud program architecture plan and support its continuous improvement and iteration. Provide Demand Management support services providing analysis, cost modeling, risk analysis, analysis of alternatives (AoA), and recommendations on solution delivery (selection support). Support, provide, and integrate information security controls at all levels for the purpose of implementation, management and maintenance responsibility boundary by Service Model. Apply data categorization methodology to appropriate controls in accordance with the Federal Information Processing Standard (FIPS) 199 and 200; NIST, and VA policies. Execute the NIST Risk Management Framework to achieve FISMA or FedRAMP certification Incident Response activities Notify and report incidents upon discovery or disclosure of successful exploits of the vulnerability which can compromise the security of the Systems (including the confidentiality or integrity of its data and operations, or the availability of the system). Perform remediation activities within agreed upon time. Assist in establishing continuous monitoring, auditing and reporting of cloud services Assist in establishing and improving upon security compliance, mitigation and remediation procedures and recommendations for the creation of the most effective cloud compliant implementation, risk assessments, routine vulnerability scanning, system patching and change management procedures, and the completion of an acceptable contingency plan for cloud service. Provide Information Assurance (IA) expertise in the areas of development and implementation, monitoring, maintaining, reviewing and processing. Assist in accreditation/certification, Program Protection Plan (PPP) reviews, and other cyber security related activities and mandates. Develop/maintain the VA Cloud Configuration Database Cloud Transition Operational Support; Manage the cloud program on-going project intake delivery and execution (in alignment with VA EPMD), including the execution of projects per the VA Veteran-Focused Integration Process (VIP) framework and other government processes. Plan, build, migrate, and/or assist in managing the cloud program application migration, including analyzing current VA applications, developing a transition plan, and managing migrations to the cloud. Plans should place emphasis around practical application suitability/targeting, gaps in application documentation, the need to adapt internal policies, and a current limitation which prevents the installation of additional discovery tools beyond VA s existing capabilities. Plan, build, migrate, and/or assist in managing the cloud program interim triage operational support, including basic service delivery and support on initial applications migrated to the cloud. Plan, build, migrate, and/or assist in managing cloud provider appropriate operational architecture for enterprise management, capacity and performance management, and costing capabilities in context of proprietary services provided. Managed Cloud Services Implementation; Support the on-going planning, development, acquisition, and implementation of a Cloud Management Services capability (People, Process, & Technology), which will be operated by an external Managed Services Provider. This includes managing the deployment of Cloud Management Platform (CMP) tools and technologies (Currently being procured separately), and a full Managed Services Operating Model with associated processes, roles & responsibilities, metrics, etc. Support the on-going planning, development, acquisition, and creation of additional supporting Cloud Management Service capabilities such as deploying Cloud Access Security Broker (CASB) and API Gateway tools and technologies. (The tools and technologies will be procured independently.) Ensure the Management Cloud Service environment can uniformly support a portfolio of cloud computing services across multiple vendors and internal VA offerings. Ensure the Management Cloud Service environment enables comprehensive service provisioning across on and off premise cloud platforms that ensure accurate reporting and appropriate governance and compliance policies across disparate providers. Analyze, recommend, implement and manage a balanced set of KPI s e.g. Availability, Speed of Service Execution, Accuracy of Execution, Legal/Regulatory Compliance, Financials/Costs, Satisfaction, etc. for a program dashboard and quad charts. Maintain the VA Cloud Service Level Agreements (SLA) and monitor and report on compliance with same. Network Modernization and Convergence Support the on-going analysis of the VA s network environment and current solutions and compare them with Industry standards for Local Area Network (LAN), Wide Area Network (WAN), Wireless, Remote access, security, cloud connectivity, authentication and disaster recovery. Provide comprehensive recommendations for network modernization, convergence and refreshment for LAN, WAN and Virtual Private Network (VPN), inclusive of decisions regarding transformation and transition for data network, voice, and carrier hosting facilities. Recommend architecture, design, procurement, implementation, migration, security, ongoing provisioning, operations and maintenance of VA LAN, WAN and VPN services within the network modernization and convergence portfolio. Ensure that network is able to support unified communications. Unified Communications (UC) Support the on-going analysis of current VA enterprise communication network. Manage the migration of current communication infrastructure and contact center to IP based unified communications Manage the convergence of communications systems onto a single, IP-based enterprise system that seamlessly accommodates all voice, video, data, and collaboration traffic establishing a unified communications capability. Analyze and recommend a strategy to migrate voice services to a cloud environment. Support the analysis of potential cloud suitability, if required support the migration of voice services to a cloud environment. Data Center Consolidation Support the on-going evaluation of the current data center services and recommend candidates for cloud or consolidated solutions. Support the standardization, centralization, and consolidation of the cloud hosting services and deployment of cloud services for both business process and technology consumption in an enterprise cloud service catalog. Support and sustain system integration of VA applications into target locations deem suitable as part of application analysis, either in the cloud and/or in traditional, consolidated data center facilities. i.e. Co-Location Cloud Managed Services Cloud Management Core Services Operation; Manage the day to day utilization of the internal VA owned Cloud Management Core Services environment; Including supporting tools and continuous improvement; Utilize Cloud Management Core Services such as Service Cataloguing, Provisioning, Decision Logic Framework, etc. to manage the VA Managed Cloud Service. (Scope to be finalized before RFP); Utilize Cloud Management Core Business Support Services such as Contract Best Practices/SLA, Governance/Compliance, Billing/Chargeback, etc. to manage the VA Managed Cloud Service. (Scope to be finalized before RFP); Utilize Cloud Management Core Operational Support Services such as Core Security, Orchestration/Workflow Automation, Capacity/Performance, Change/Configuration, etc. to manage the VA Manage Cloud Service. (Scope to be finalized before RFP); Provide necessary Cloud Service Provider brokerage/target suitability support to analyze options and select the most suitable and cost effective service provider for a given requirement. Develop requirements for admission and an intake, evaluation, and approval process for additional CSP s and CSP Services that are required to be added to the VA Managed Cloud Service. Cloud Management Higher Value Services Operation; Manage the day to day utilization of the internal VA owned Cloud Management Higher Value Services environment, Including supporting tools and continuous improvement; Utilize Cloud Management Higher Value Services Management Services such as Financial Mgmt., Demand Mgmt., Continuity Mgmt., Event Mgmt. Asset Mgmt., etc. to manage the VA Managed Cloud Service. (Scope to be finalized before RFP); Utilize Cloud Management Higher Value Technical Support Services such Technology Support, Automation Support, Security Support (IDM), etc. to manage the VA Managed Cloud Service. (Scope to be finalized before RFP); Develop and maintain template cloud PWS/SLA that includes the concept of Government Furnished Cloud Capacity under a VA owned master account with each CSP. RFI Questions Respondents shall include the following in their submissions: Name of Company: Cage Code and DUNS Number: Address: Point of Contact /Company Representative: Phone Number: Fax Numbers: Email Address: List any/all current contracting vehicles or applicable schedules (General Services Administration (GSA), Mission Oriented Business Integrated Services (MOBIS), Veterans Technology Services (VETS) Government wide Acquisition Contract (GWAC), etc.); For SDVOSB or VOSB interested parties, address the intent and ability to meet the set aside requirement in accordance with VAAR 852.219-10 (JUL 2016) (DEVIATION) VA Notice of Total SDVOSB and 13 CFR §125.6, which states the contractor will not pay more than 50 percent of the amount paid by the Government to it to firms that are not SDVOSBs as defined by VAAR 852.219-10 (JUL 2016) (DEVIATION). Your response shall include information as to available personnel and financial resources; full names of proposed team members and the PWS requirements planned to be subcontracted to them, which must include the prime planned percentage or the names of the potential team members that may be used to fulfill the set aside requirement. Please provide answers to following questions to demonstrate your experience and capabilities to meet objectives mentioned above for companies of similar scope, size and complexity to the VA. Be succinct in your responses and ensure that you answer the question directly. Please limit responses to any question to one (1) page or less, unless otherwise specified. General Questions: Provide an overview of your company including primary services that you provide, size of the company, year established etc. Describe your experience in providing a similar scope of services to Government agencies of similar scope, size and complexity of the VA. Include the agency name, project type, scope, length, and deliverables. Please limit your response to three (3) pages or less. Describe your experience in providing a similar scope of services to commercial organizations of similar scope, size and complexity to the VA. Include the company s name, company size, company revenue, project type, scope, length, and deliverables. Please limit your response to three (3) pages or less. What would be your approach for transitioning from existing provider of these services with multiple initiatives at various stages? Share any lessons learned relative to contract structure which would enable the VA to meet the stated objectives in best possible manner? Describe your transition services including data and application migration support that you provide? Will your company be the sole provider of the complete scope of services, or is your company planning to provide any of the services sought in partnership with another entities? If it will be in partnership with another entity (or entities), identify the scope of services that will be provided by subcontractors or partners, the names of anticipated partners and the percentage(s) of the service(s) that will be provided by each of the subcontractor(s) or partner(s) Do you provide Learning and development training around technologies mentioned in the objectives? If yes, please outline the types of trainings available? How would you work/integrate with internal IT Service Management (ITSM) tools or IT Infrastructure Library (ITIL) v3 to carry out required services? Describe your company knowledge of VA policies and regulations as it applies to implementing cloud solutions, Unified Communications, Network Convergence and Data Center Consolidation? What key pre-requisites must be in place in order for a federal agency such as VA to achieve deploying a successful Managed Cloud Service capability? Cloud Transition Governance Support: Provide an outline of your experience providing Cloud Transition Governance, including Program Management, Strategy, and Architecture to a Government or commercial entity of similar scope, size and complexity to the VA. Describe your approach/methodology for establishing Cloud Transition Governance, including Program Management, Strategy, and Architecture. Please limit your response to three (3) pages or less. What governance standards and industry certifications does your organization and/or personnel follow or hold? i.e. CGEIT, CISA, CISM, CRISC, ITIL, PMI-RMP, CCSK, CCSP, CCISP, etc. Cloud Transition Operational Support: Describe your approach/methodology to cloud project intake delivery and execution. Include how that will integrate with existing VA intake processes. Please limit your response to three (3) pages or less. Describe any particular strategies and/or techniques that you have used to improvise in an immature cloud management environment. Please limit your response to three (3) pages or less. Describe any risks and mitigations/remediation approaches you have applied when executing projects in a developing (relatively immature ) cloud management environment. Please list all the cloud IaaS/PaaS/SaaS vendors you support, and their FedRAMP certification level. Briefly describe the services you provide for on premise, private cloud deployments and hybrid migrations, if applicable, for clients of similar scope, size and complexity to the VA. Please limit your response to three (3) pages or less. Describe your approach/methodology/tools to assess application readiness and support cloud application migration. Please limit your response to three (3) pages or less. Describe how you would mitigate being unable to deploy your own inventory discovery tools to support an application analysis within a cloud application migration methodology. What operating systems do you have experience migrating? (RHEL, Windows, AIX, other). What virtualization technologies do you have experience working with? Please elaborate on cloud native architectures that you have developed and supported? What hyper converged infrastructure appliances do you have experience in operating and migrating applications? Describe your approach/methodology to building out an operational support capability when you have a requirement to immediately support applications within the cloud? Please limit your response to three (3) pages or less, and reference applicable approaches/ methodologies used at clients of similar scope, size and complexity to the VA. What has been your experience with risks and mitigations/remediation s when maintaining cloud operational support in a developing (or relatively immature ) cloud management environment Has your organization ever deployed an interim Cloud Management Platform (CMP) Managed Service from a Managed Service Provider, while implementing a permanent internal customer CMP capability? What are the pros and cons of such a strategy? Please limit your response to three (3) pages or less, and reference applicable experience in working with clients of similar scope, size and complexity to the VA. With regard to the previous question, in your experience, how quickly could a basic CMP Manager Service Provider capability be stood up to support public cloud service management? With regard to the previous question, have you ever advocated this sort of approach? If yes, please outline the circumstances in which you advocated this. Include relevant experience at clients of similar scope, size and complexity to the VA. Managed Cloud Services Implementation: What year did you begin implementing cloud management services? How has your company grown since then? Provide relevant experience with providing cloud management services to clients of similar scope, size and complexity to the VA What value added services and/or capabilities can you provide in terms of implementing managed cloud service environments, including core CMP services and higher level managed services? Please reference services and/or capabilities that you have provided at clients of similar scope, size and complexity to the VA and limit your response to two (2) pages or less. Have you ever performed both the implementation of a Managed Cloud Services environment under a single contract; and if so, provide details. Have you ever performed both the implementation of a Managed Cloud Services environment under a single contract that would be of similar scope, size and complexity as represented by the VA? If so, provide details. Describe your experience and philosophy with different approaches to orchestration and their supporting technologies. Please limit your response to three (3) pages or less. Describe any risks and mitigations/remediation approaches you have applied in dealing with the relatively immature CMP marketplace and variance in service and technology providers. Describe your experience and expertise with different CMP technologies and platforms. Provide examples of managed cloud services implementation projects you have supported including type of project and size and scope in terms of users, devices and/or locations. Identify those projects that you would consider of similar scope, size and complexity to this potential acquisition. Which industry certification do you hold for cloud computing services? i.e. AWS-CSA Professional, EMC Cloud, CompTIA Cloud, MCSE Cloud, VMWare VCP6 Cloud, etc. What compliance standards do you meet for cloud computing services? i.e. NIST, CSA, ITIL, ISACA, TOGAF, COSO, etc. Unified Communications: What would be your approach and methodology for unified communications and Contact Center at clients of similar scope, size and complexity as the VA? Please limit your response to three (3) pages or less. How many unified communications projects have you done in past 5 years? Identify those that you would consider of similar scope, size and complexity to the VA. What is the size and scope of your recent Unified Communications and contact center projects? Identify those that you would consider of similar scope, size and complexity to the VA. What are potential challenges you see with a large scale initiative of the scope, size and complexity of the VA? Please elaborate on technical challenges related to Unified communication, not general program management challenges. Please limit your response to two (2) pages or less. Which industry certification do you hold for Unified Communications (UC)? e.g. CCNP, CTP, ACIS. What compliance standards do you meet for Unified Communications (UC)? e.g. HIPAA, Sarbanes-Oxley, PCI-DSS. Network Modernization: What would be your approach and methodology for Network Modernization? How would this approach be modified at a client of similar scope, size and complexity as the VA. Please limit your response to three (3) pages or less. How many network transformational projects have you completed in past 5 years? Indicate those that were of similar scope, size and complexity to the projects in this potential acquisition? What is the size and scope of your recent Network Modernization projects? Identify those that you would consider of similar scope, size and complexity to the VA. In the above projects, what was the total cost of products and services rendered? What are potential challenges you see with a large scale initiative of the scope, size and complexity of the VA? Please elaborate on technical challenges related to network technologies. Do not discuss general program management challenges. Please limit your response to two (2) pages or less. Please describe the approach to network transition for enterprise class organizations? Which industry certification do you hold for data and voice networks? e.g. CCNP, CCIE, JNCIE-ENT, CompTIA Network+, WNCA. What compliance standards do you meet for data and voice networks? e.g. ISO/IEC Datacenter Consolidation What would be your approach and methodology for datacenter consolidation at clients of similar scope, size and complexity as the VA? Please limit your response to three (3) pages or less. What is the size and scope of your recent datacenter consolidation projects? Identify those that you would consider of similar scope, size and complexity to the VA. What are potential challenges you see with such large scale initiative? Please elaborate on technical challenges related to Unified communication, not general program management challenges. Please limit your response to two (2) pages or less. Which industry certification do you hold for datacenter consolidation? e.g. DCDC, CDCMP. What compliance standards do you meet for datacenter consolidation? e.g. HIPAA, PCI-DSS, SAS70, SSAE 16, SOC1. Cloud Managed Services: What year did you begin providing operational (People) cloud management services of customer owned Managed Cloud Service environments? When did you start providing these services to clients of similar scope, size and complexity to the VA? What year did you begin providing full service (People, Process, & Technology) cloud management services utilizing your own Managed Cloud Service environment? When did you start providing these services to companies of similar scope, size and complexity as the VA? Please list all the cloud IaaS/PaaS vendors you have provided operational and/or full service cloud management support for, and indicate if you support private cloud, traditional datacenters, and hybrid environments? Provide examples of operational cloud management service projects you have supported including type of project and size and scope in terms of users, devices and/or locations. Identify those that you would consider of similar scope, size and complexity to the VA. Which industry certification do you or your employees hold for cloud computing services? i.e. AWS-CSA Professional, EMC Cloud, CompTIA Cloud, MCSE Cloud, VMWare VCP6 Cloud, etc. What compliance standards do you meet for cloud computing services? i.e. NIST, CSA, ITIL, ISACA, TOGAF, COSO, etc. Submit your response via email to the Contract Specialist, Troy Loveland at Troy.Loveland@va.gov no later than noon, Eastern Time, on June 12, 2017; however, the Government will also accept responses up to June 16, 2017.
 
Web Link
FBO.gov Permalink
(https://www.fbo.gov/notices/b4a745d2feb9d471de75f94d9d0d8737)
 
Document(s)
Attachment
 
File Name: VA118-17-N-2170 VA118-17-N-2170.docx (https://www.vendorportal.ecms.va.gov/FBODocumentServer/DocumentServer.aspx?DocumentId=3546997&FileName=VA118-17-N-2170-000.docx)
Link: https://www.vendorportal.ecms.va.gov/FBODocumentServer/DocumentServer.aspx?DocumentId=3546997&FileName=VA118-17-N-2170-000.docx

 
Note: If links are broken, refer to Point of Contact above or contact the FBO Help Desk at 877-472-3779.
 
Record
SN04531111-W 20170604/170602234826-b4a745d2feb9d471de75f94d9d0d8737 (fbodaily.com)
 
Source
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.