Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
SAMDAILY.US - ISSUE OF MAY 10, 2020 SAM #6737
SOLICITATION NOTICE

R -- IT Cybersecurity Advisors

Notice Date
5/8/2020 7:03:01 AM
 
Notice Type
Presolicitation
 
NAICS
541519 — Other Computer Related Services
 
Contracting Office
NATIONAL OFFICE - DO/OTA NEW CARROLLTON MD 20706 USA
 
ZIP Code
20706
 
Solicitation Number
2032K820R00016
 
Response Due
12/31/2020 2:00:00 PM
 
Archive Date
01/15/2021
 
Point of Contact
OTA Recruitment Coordinator
 
E-Mail Address
recruitment@ota.treas.gov
(recruitment@ota.treas.gov)
 
Description
U.S. DEPARTMENT OF THE TREASURY OFFICE OF TECHNICAL ASSISTANCE � IT/Cybersecurity Advisors The U.S. Department of the Treasury�s Office of Technical Assistance (OTA) provides technical assistance in over 50 countries in five functional areas: banking and financial services, budget and financial accountability, economic crimes, government debt and infrastructure finance, and revenue policy and administration. OTA is recruiting individuals on a competitive basis to serve as resident (long-term) and/or intermittent (short-term) IT/Cybersecurity Advisors under personal services contracts (PSC).� This recruitment is for assignments globally, requiring significant international travel. Treasury�s technical assistance supports the development of strong financial sectors and sound public financial management in countries where assistance is needed and there is a strong commitment to reform. OTA helps countries develop and implement market-based financial policies and management practices that support growing economies and stable democracies. OTA provides assistance to finance ministries, central banks, and related government institutions in developing and transitional countries on public financial management and financial sector strengthening.� As part of that assistance, OTA projects often include development and implementation of IT systems (e.g. tax information system or treasury/integrated financial management information system), and OTA works with counterparts to build the capacity to develop governance, strategies, risk assessments, controls, protocols, and other measures to protect their information systems. The IT/Cybersecurity Advisor will serve as a technical consultant for counterparts in the development and implementation of effective and secure IT systems and regimes, including to support compliance with international standards and best practices and to strengthen the overall security and resiliency of financial sector information systems.� The Advisor will be expected to support OTA�s work in any of the five program core disciplines based on established work plans and coordinated with the Associate Director(s) and Senior Advisor(s). Qualifications Technical qualifications: Demonstrated experience (10 or more years) and in-depth knowledge with information systems, computer networks, hardware and software systems, which may include: Skill in IT project management, IT strategic development and related budget planning Skill in IT system installation and/or implementing new information systems including ERP systems and re-design or organization of physical data centers Skill in cybersecurity management, assessment and action planning Skill in data warehouse planning and management Skill in database application development Skill in enterprise warehouse management support services Skill in information system audits� Skill in IT tools to assist with fraud investigations Skill in sandbox framework development Skill in structured reporting Skill in the use of applications for the planning, management and control of projects (e.g., project management software such as MS Project, and other apps like MS Excel, MS PowerPoint, MS Publisher, MS Visio, Cisco Webex) Knowledge of IT applications and systems (e.g. operating systems and user interfaces) Knowledge of payment systems, electronic banking, treasury operations, and cash management Knowledge of registry/auction/trading platforms Knowledge of real time gross settlement system Knowledge of registry/auction/trading platforms Knowledge of current frameworks, standards and models for IT governance, design and control (e.g., COBIT 2019, the Risk IT Framework, the Information Technology Assurance Framework (ITAF), and the Business Model for Information Security (BMIS, and ISO Standards such as ISO/IEC 15408-1:2009) Ability to prepare and test disaster recovery and business continuity plans Ability to advise on IT department restructuring Ability to implement new technologies and to evaluate technologies implemented Ability to perform cost-benefit-analyses to determine if the best option is to remediate existing systems or to procure new systems, or a combination of the two options Ability to perform data collection and analysis tasks Ability to plan, develop and implement information security and control frameworks, policies and procedures to promote effective and timely enforcement � Demonstrated experience in Cybersecurity/IT security, in the domains of threat analysis, intelligence, traffic analysis (preferably in the financial sector), with demonstrated ability to differentiate between a significant event, a false positive, and a false negative, ideally with at least one of the following professional certifications: PCI QSA (Payment Card Industry Qualified Security Assessor). Certified Information Systems Security Professional (CISSP) Certification Certified Information Security Manager (CISM) Certification Certified Information Systems Auditor (CISA) Qualified Security Assessor (QSA) EC-Council Certified Ethical Hacker (CEH) EC-Council Licensed Penetration Tester (LPT) Master IACRB Certified Penetration Tester (CPT) Certified Expert Penetration Tester (CEPT) Certified Mobile and Web Application Penetration Tester (CMWAPT) Certified Red Team Operations Professional (CRTOP) CompTIA PenTest+ Global Information Assurance Certification (GIAC) Penetration Tester (GPEN) GIAC Exploit Researcher and Advanced Penetration Tester (GXPN) Offensive Security Certified Professional (OSCP) The candidate shall have technical information about: Remote Access Developing RFP�s for Vulnerability Assessment and Penetration Testing Network Security Assessment Network Security Components Virtual Private Networks (VPNs) VoIP Communications Network � to Include Primary Rate Interface (PRI) Demilitarized zones (DMZ)/perimeter networks Wireless security Knowledge and experience in at least one of the functional areas: revenue policy and administration budget and financial accountability government debt and infrastructure finance banking and financial services economic crimes General qualifications: Excellent written and oral communication skills Self-starter with ability to work independently and with confidentiality Exceptional analytical, critical thinking, and problem-solving abilities. Ability to motivate the client and build consensus Ability to be flexible by changing focus and approaches based on needs of the client Responsibilities & Duties Duties and responsibilities of the Advisor may include: Assisting with IT modernization projects, including in determining and documenting user and reporting requirements, selection of off-the-shelf software solutions, determination of a �build or buy� decision, creation and executing systems tests, selection of technical consultants, and implementing information systems (e.g. tax information system or treasury/integrated financial management information system) with rigorous� security measures in accordance/compliance with international standards for implementing critical financial systems; Conducting, documenting, and reporting baseline assessments of policies, processes and functions related to financial systems IT/cybersecurity; identity and access management; data encryption; data classification; file and database integrity and activity monitoring; and data leakage prevention. The assessment will be in line with relevant international standards, i.e.: COBIT, ITIL, ISO; Building the capacity of counterparts to develop governance, strategies, risk assessments, controls, protocols, and other measures to protect their IT systems; Providing guidance to counterparts on the creation of a policy/plan for controls and governance on all systems and data, creation of a corporate level IT security organization (headed by a Corporate Chief Information Security Officer) with clearly defined responsibilities, and ensuring that outside vendors meet security requirements while engaging the Supreme Audit Agency and Internal Audit functions; Developing business continuity plans to ensure the availability and resiliency of government financial information systems. This includes the identification of security threats and the development of corresponding plans to mitigate such threats and to recover system assets should the threats occur; Assisting with planning and implementing solutions to reach Cultural Change Management objectives; Advising on data management systems to include recommendations on hardware and software to protect sensitive information in those systems; and Providing training on how to conduct IT cyberthreat exercises and the importance of collaboration across the financial system on IT cybersecurity issues. � � Please note:� These are PERSONAL SERVICES CONTRACTOR positions; NOT civil service positions. � U.S. citizenship is required. SALARY: In accordance with program regulations and based on demonstrated salary history, salaries range from $66.05 to $86.92 per hour. Background checks and Security Clearance:� Secret The advisor will work in developing and transitional countries worldwide to support U.S. Treasury and U.S. government economic and national security objectives.� The advisor may be deployed to countries with elevated threat levels, including potentially high/critical threat posts, as determined by the U.S. Government.� Candidates will need to be eligible to obtain and maintain secret level of security clearance. Successful applicants must be able to obtain State Department medical clearance for worldwide travel.�� If selected, the applicant will be required to complete Office of Government Ethics (OGE) financial disclosure forms.�� HOW TO APPLY: Applicants should submit a cover letter and resume by e-mail to: recruitment@ota.treas.gov or by mail to:� Office of Technical Assistance ATTN: Recruitment Coordinator 1750 Pennsylvania Avenue, NW, 8th Floor Washington, DC 20006 If applying by email, submit documents to recruitment@ota.treas.gov ONLY. For consideration, emailed applications must not be sent, or contain a Cc, to any other OTA, IRS, or other government personnel or email address. When e-mailing, the subject line must contain the following: Solicitation 2032K820R00016 � IT/Cybersecurity Advisor � Applicant�s Last Name, First Name. Emails received not containing this subject line will be deemed non-responsive and will not be forwarded to the program office/selection official(s) for consideration. Please be advised that all contractors, if hired, must obtain a Data Universal Number (D-U-N-S).�Only applicants to be interviewed will be contacted.�No phone calls please and no hand carries. �This announcement is open and continuous until December 31, 2020, although selections may be made in advance of that date.�� U.S. Government is an Equal Opportunity Employer
 
Web Link
SAM.gov Permalink
(https://beta.sam.gov/opp/9715dbe44087418db08586021dde14d5/view)
 
Place of Performance
Address: Washington, DC 20006, USA
Zip Code: 20006
Country: USA
 
Record
SN05651508-F 20200510/200508230147 (samdaily.us)
 
Source
SAM.gov Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's SAM Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.