Notice ID: 36C10B22Q0198
“Scope of Work: The Contractor shall provide technical and programmatic support services to include the development and maintenance of the ESA artifacts, administrative engineering support, and the facilitation of the enterprise-wide use of the VA ESA. The VA ESA shall support an integrated VA-wide risk management program in accordance with National Institute of Standards and Technology (NIST) Special Publication (SP) 800-39, Managing Information Security Risk, Organization (High Level), Mission (Business), and the Information System View (System views may include but would not be limited to logical, data, and tactical). The VA ESA shall be comprehensive and consist of artifacts that support the VA risk management process at the: (i) organization level (VA-level); (ii) mission/business process level (Veterans Health Administration, Veterans Benefit Administration, National Cemetery Administration, and VA Central Office); and (iii) information system level.”
“The VA ESA aligns, supports, and enables the VA ESA Strategy to address the evolving threat landscape, support VA Business and IT Modernization initiatives, and take advantage of new and emerging security approaches and technologies. The Contractor shall provide multi-domain support to address VA’s scope, size and complexity related to emerging technologies and their value to specialized domain areas (healthcare, medical devices, cybersecurity, IT modernization, large-scale architecture, risk management, etc.). The Contractor shall demonstrate specialized technical and cybersecurity expertise needed to advance the SH&RE. This SH&RE initiative is maturing into a collaborative, cloud environment designed to increase the efficiency of VA Researchers operations by leveraging innovative technologies that are at the core of security. Key elements include: Data Governance and Virtual Collaboration. It seeks to provide these solutions securely by adding scientific and non-scientific devices and users to the network using digital credentials secured using blockchain technology. More specifically, SH&RE has pursued AI, System Orchestrator, VR, Augmented Reality (AR) and Blockchain technology integration. Data Share, Personal Identity Verification (PIV), Asset Management, Data Storage, AI modeling, Data Management, and User Credentialling considerations have been matured and transition documentation shall be provided to the successful vendor.”
“The scope of this acquisition is for the Contractor to transition the SH&RE to an operational capability within the VA Enterprise Cloud (VAEC). The Contractor shall:
- Assess the body of work accomplished for completeness, capture and augmentation needed to retain current capabilities in the BETA environment and/or development environment.
- Address outstanding requirements to transition from a BETA environment to an authorized to operate, stood up environment.
- Provide continual management of the environment with resources focused on risk mitigation, conversion to more cost effective and sustainable tools, studying and assessing capability expansion and maintenance of related communication tools to include web services, metrics and responses to stakeholder inquiries…”