Search for More Jobs
Forward this job to a friend
Apply by email without Registering
Apply by creating/using account
Please enter your registered email address, and we'll email you a link to reset your password right away.
Scope of Work:
The purpose of this requirement is to acquire several classes of management and enterprise Information Technology (IT) security support services including but not limited to delivery order management, IT Security project management support, IT security policy and compliance support, and IT security outreach and awareness support.
The scope of the NCI ESP is to plan, promote and coordinate the execution of security related activities across the NCI enterprise leading to the goal of protecting confidentiality, integrity, and availability for NCI IT systems and data, as well as the protection of NCI's intellectual property and reputation pertaining to matters of security.
The ESP requires support in two areas:
· Security Policy and Compliance
· Security Outreach and Awareness
The Contractor's Project Manager shall meet with the CO/COR as necessary to maintain satisfactory performance and to resolve other issues pertaining to Government/Contractor procedures. At these meetings, a mutual effort shall be made to resolve any and all problems identified. Action items stemming from these meetings shall be prepared by the Contractor, ownership assigned and timeframe proposed, and furnished to the Government within two (2) workdays of the subject meeting.
The Project Managers must demonstrate knowledge of Project Management Institute methodologies. Knowledge of and experience with the HHS Enterprise Performance Life Cycle
(EPLC) management methodology is highly desirable.
The Project Manager shall:
· Follow the HHS EPLC project management methodology and implement Project Management Institute (PMI) best practices;
· Deliver full project management life-cycle solutions including planning, tracking implementation, and completion of assigned projects and tasks;
· Develop effective plans and minimize changes by setting realistic objectives;
· Facilitate communication and consensus building among various project groups;
· Use NCI provided Commercial of the Shelf (COTS) project management software to track projects;
· Develop and maintain operational plans and procedures and records of status, risks, issues, and completed projects;
· Contribute to performance reporting to CBIIT management; and
· Continuously assess the ongoing performance of programs, processes, and systems to determine the overall effectiveness and efficiency of each to the NCI.
C.5.2.2 Project Management Plans
For significant tasks, the Project Manager shall prepare and deliver Project Management Plans
(PMP) as requested by the COR. PMPs shall generally follow HHS EPLC template content and presentation unless modified and approved by the COR.
PMPs shall, as a minimum include:
· A work breakdown structure (WBS) in MS Project format encompassing planning, tracking, execution, and completion activities for all subtasks and activities;
· Milestones and deliverable due dates;
· Descriptions of the technical approach, organizational resources and management controls employed to meet the cost, performance, and schedule requirements for the task;
· Products and/or methods for producing deliverables, allocation of staff and other resources necessary to produce deliverables, and timelines; and
· Outlines of the risk management and issue management plans to be used.
Minimum Project Management Experience: Ten years' experience managing projects including eight years managing IT security-related projects of a scope and complexity similar to that specified in this statement of work.
Project Management Functional Responsibility: Responsible for overall management of the project. Plans all project activities. Supervises contractor personnel. Assigns contractor duties and schedules. Communicates policies, purposes, and goals of the NCI to subordinates.
Minimum SME Experience: Twelve years of progressive technical experience in the area of Information Systems, with at least ten years of specialized experience in the area of Federal Information Systems Security.
SME Functional Responsibility: Analyzes and/or establishes processes and technologies to ensure comprehensive protection exists on computer systems to prevent unauthorized entry to computer systems or compromise of data integrity or secrecy. Security development for computer systems includes designing, prototyping, implementing, conducting independent verification and validation, and maintaining security for enterprise systems. Performs support activities for security assessment and accreditation activities on IT systems and applications, including review or preparation of required documents (FIPS 199, Risk Acceptance Memos, etc.) security audits (i.e., FISMA), risk assessments, security plans, and system test and evaluations. Develops or reviews security policies, standards and procedures. Provides up-to-date working knowledge in areas such as computer viruses, intrusion detection systems, encryption systems, firewalls, access and authentication technologies, etc. Responsible for vulnerability analysis, and contingency/disaster recovery planning and testing. Provides training to project managers and system owners in FISMA compliance.
Minimum Education: Bachelor's Degree in Computer Science, Information Systems, Electrical Engineering, or other related scientific or technical discipline.
Apply by creating/using account