Oct 19, 2019
Job ID 2019-3355 Overview OBXtek Inc. is an established, award-winning, service disabled veteran owned business providing information technology and professional management services to the federal government. Our corporate growth has coincided with our investment in our employees as well as in outreach to our civilian and military community. Responsibilities OBXtek is currently staffing for an Intrusion Protection Specialist 3 to support SSA's DISSAO division with Security Infrastructure Management for Secure Remote Tool. Background Currently operating as a limited PILOT while actively deploying the Production environment, SRT addresses the Social Security Administration's need to securely provide an enterprise wide remote support and administration solution for more than 250k devices and nearly 90k personnel worldwide. BeyondTrust's(formerly Bomgar) Remote Support solution is the core of SRT and acts as a secure remote session proxy to centrally manage and audit remote support and administration of SSA systems. SRT provides the means for SSA to meet Federal mandates and addresses security findings through role based access controls for remote sessions. SRT is integrating with other agency systems to achieve monitoring via Simple Network Management Protocol (SNMP) systems, ticketing and inventory via IT Service Support Management (ITSSM) systems and SYSLOG and session reporting via Security Information and Event Management (SEIM) systems. SRT's goal is to provide security first approach to centralized, efficient and cost effective solutions for remote support and administration. Scope of Task Contractor resources are required by the Division of Information System Security Administration and Operations (DISSAO)/Security Administration Branch (SAB)/SRT project. They will ensure availability and stability of the systems, processes, programs and equipment within the SRT project. They will also develop viable processing techniques to solve technical problems and document techniques in a manner that leads to easy implementation and standardization. Administration of SRT environment, associated systems and services Purpose: Management and Administration of SRT systems and services Activities: Configure and extend SRT for SSA's environment. Administer and configure SRT on an ongoing basis to include, establishing security policies, recommending new support options, customizing the client experience, optimizing session data reporting and archival. Developing and implementing support procedures for SRT and agency support personnel to include submission of Knowledge Base (KB) articles through the approved systems. Develop and implement integrations with monitoring, ticketing and SIEM systems (example: Argent, HP Service Center and Splunk respectively). Deploy virtual machines and configure SRT software. Apply regular updates and patches as needed only with authorized approval while adhering to the agency change model to include submitting supporting change management tickets, reporting change status and closing change tickets upon successful completion. Deliverables: The Contractor shall distribute the following deliverables to the Task Manager Within the first 90 days complete detailed Visio drawings of the SRT environment and associated systems and services, complete with IPs, ports and protocols used. Maintain detailed Visio drawings of SRT systems to within 7 days of significant changes, additions or modification to SRT environment and associated systems and services, complete with IPs, ports and protocols used. Every 30 days provide an ongoing summary of recommendations to improve or expand the efficiency or capabilities of SRT. Support of SRT environment, associated systems and services Purpose: Maintain availability of SRT and associated systems and services Activities: Responding to and resolving system level alerts (example: SRT email, Argent SNMP, Splunk email alerts and trouble tickets. Monitor and respond to team email box ^SRT. Review Service Request Forms (SRF) and make recommendations for appropriate service levels accordingly. Conduct onboarding meetings based on approved SRF. Provision users and groups in LDAP according to approved methods. Provide verbal and written guidance to SRT clients based on approved documentation. Document unique use cases and associated client group membership. Deliverables: The Contractor shall distribute the following deliverables to the Task Manager Within the first 90 days provide recommendations for SRT related knowledgebase (KB) entries to provide frontline help desk and SRT personnel documented procedures to guide basic troubleshooting efforts. Every 60 days provide a count of assigned and completed tickets. Every 60 days provide a count of unique email responses to alerts with reference associated tickets generated. Responding to tickets with vendor through vendor support portal and email. Troubleshooting of SRT environment, associated systems and services Purpose: Troubleshoot issues within SRT or associated systems or services Activities: Attend and contribute to troubleshooting sessions, calls or events. Monitor internal tickets (example: CAPRS IM tickets). Respond to client inquiries through SharePoint and email (^SRT). Generate outage reports in approved format. Deliverables: The Contractor shall distribute the following deliverables to the Task Manager On a biweekly basis, provide a high level summary of issues addressed in the past two weeks. Every 30 days provide a count of assigned and completed tickets. Every 30 days provide a count of unique email responses to issues and questions addressed through ^SRT. Hours and Location of Service Full-time support is required within a flexible band of 6am to 6pm, Monday through Friday, excluding Federal Holidays. However, individual schedules shall be set in response to the needs of the Government. All contractor staff must be available during SSA core business hours of 9:30 am - 2:30 pm. Contractor response time to requests for virtual meetings, conference calls, assistance, etc., must not exceed 2 hours. Occasional weekend and off-hour support may be required. SSA will provide advanced notice when possible. Contractors may be required to report for duty during periods of inclement weather and other emergency situations. If a contractor is required to report for duty, the COR or an assigned alternate will personally notify the contractor's Program Manager or an assigned alternate. This could include reporting to an alternate work location. Place of performance is the National Computer Center (NCC) in Baltimore, MD. Pagers and Laptops The contractors may be required to carry a communications device to provide after-hours support. This support is to cover the activities above within an hour of notification. Travel Travel to other sites may be required. The SSA Task Manager may request that contractor personnel attend conferences or work-related training, as necessary. Qualifications 10+ years of experience with IT security, remote support, software deployment, integration of third-party systems. User Support and administration experience with BeyondTrust (formerly Bomgar) Secure Remote Support. Knowledge of networked environment access control systems such as gateways, proxies, firewalls. Experience with Support and Troubleshooting Company Information Headquartered in Tysons Corner, Virginia and founded in 2009, OBXtek is a fast-growing leader in the government contracting field. Our mission is Our People...Our Reputation. Our people are trained professionals who enhance our customers' knowledge and innovation using technology, collaboration, and education. We offer a robust suite of benefits including comprehensive medical, dental and vision plans, Flexible Spending Accounts, matching 401K, paid time off, tuition reimbursement plans and much more. As a prime contractor for 93% of our current work, OBXtek pairs lessons learned across disciplines with industry standard quality practices such as CMMI-Dev Level III, ITIL, 6Sigma, PMI, and ISO. Our rapid growth has been recognized by INC500, the Washington Business Journal, and Washington Technology magazine. OBXtek is an Equal Opportunity Employer and does not discriminate based on race, color, religion, sex, age, national origin, gender identity, disability, veteran status, sexual orientation or any other classification protected by federal, state or local law.
Woodlawn, MD, USA