Job Description
Position is located at DLA DOTT Belvoir and some remote
Performs a variety of routine project tasks applied to specialized Cybersecurity problems. Tasks involve integration
of electronic processes or methodologies to resolve total system problems, or technology problems as they relate to
cybersecurity requirements. Analyzes information security requirements. Applies analytical and systematic
approaches in the resolution of problems of work flow, organization, and planning. Provides security engineering
support for planning, design, development, testing, demonstration, integration of information systems.
17
o Minimum Experience:
§ Seven (7) years of relevant IT experience
§ DOD Secret Clearance.
§ Must be eligible for IT I
§ Relevant certification meeting DOD 8570.01 IAM level III.
SCOPE
This Performance Work Statement (PWS) outlines the requirements to acquire the certified, highly
knowledgeable and skilled contract personnel to support the Cybersecurity Operability Review and
Assessment branch in its efforts to ensure the confidentiality, integrity, and availability of all DLA IT.
The Cybersecurity Operability Review and Assessment branch provides risk assessments and evaluations
to DLA key stakeholders for the AO to review and understand the agencies risk exposure for the
technologies being evaluated. The contractor shall assist DLA in developing, maintaining and refining the
methodologies used as well as participating in the onsite evaluations.
3
The two objectives of this contract are to improve the Cybersecurity posture of all DLA activities and to
enforce compliance with OMB, DOD, DLA, and other applicable Cybersecurity policies. The government
requires cleared, certified, highly knowledgeable, skilled resources to augment organic resources in
performing Cybersecurity assessments in order to meet these objectives.
TASK 2– Information Assurance Engineering Support (Reference IDIQ RFP SP4701-15-R-0030
Task Area 16)
The Contractor shall provide analysis of existing and emerging DLA Information Systems, and IT
Infrastructure to assess compliance with DLA, DoD and Federal Information Assurance policy, order, task
and or regulation.
The Contractor shall review both existing and draft/proposed policy and changes against system design
documentation and identify any areas of non-compliance.
The Contractor shall assist with and/or conduct Security Test and Evaluation and IA/Cybersecurity
assessment reviews as a way of validating compliance with DLA, DoD and Federal Information Assurance
policy, order, task and or regulation. Scan or test results are required to be complete and accessible.
The Contractor shall review all proposed and draft DoD policies and provide an assessment of the impact
of the proposed policy on DLA IT, and IA/Cybersecurity architecture.
The Contractor shall develop and document standards and guides for the implementation of
IA/Cybersecurity solutions including but not limited to, compliance, system security design, security
testing and IA/Cybersecurity assessments for IT.
The Contractor shall conduct and document Risk Assessments identifying risks to the information system’s
and determining the probability of occurrence, the resulting impact, and additional safeguards that would
mitigate the exposure and impact of the identified risk(s). Provide a decision recommendation once the
assessed risk to the information system given the mitigated or corrected state of any or all existing
weakness(s).
Company Description
Raye IT Consulting, LLC is an 8(a) company.