Notice ID:Ā AIP_3003217
DFAS is currently seeking input from industry pertaining to personnel to conduct Operation & Management (O&M) of the DRAS-M IL-5 cloud hosted tenant infrastructure.
The DFAS Payroll Services (PS) Directorate provides critical support in the execution of the DFAS mission of providing accurate and timely payments to 2.9 million military retirees and their eligible surviving beneficiaries. The Defense Retired and Annuitant Pay System (DRAS) information system provides provide accurate and timely Pay services for Military service members, retirees and annuitants. To improve the overall quality of DoD financial management through modernization, elimination of redundancies and consolidation of mainframe submodules of the current legacy DRAS hosted mainframe system, the resulting DRAS-Modernization (DRAS-M) information system will be hosted within a commercial Cloud Service Provider (CSP).
DRAS-M Tenant Environment
Secure Cloud Computing Architecture (SCCA): DFAS is a Dept of Defense organization and DFAS DRAS-M is an Impact level 5 information risk, and all security controls need to be implemented for Default Deny, Auditing and Incident Response. A standard approach for boundary and application hosted in commercial cloud environments is mandated that include Agency use of a Cloud Access Point, currently in the DFAS Blue Cloud Environment, a Virtual Data Center Security Stack, a Virtual Data Center Managed Services, and an ability to implement the DoD Trusted Cloud Credential Manager, ICAM. DFAS DRAS-M can achieve a cost savings and decreased cyber risk through leveraging of existing and tested āLanding Pageā for the DFAS Blue Cloud Environment. The required Cyber Security Service Provider (CSSP) is DFAS CSSP. The current agency cloud instance has an environment with firewalls, load balancing, development, test and production enclaves and it houses the DFAS CSSP Sentinel environment.
High Level DRAS-M Architecture. The DRAS-M leverages a DoD contract for commercially hosted, GovCloud, DoD IL-5 complaint tenant architecture. The separate DRAS-M Tenant connects to the DoD NIPRnet from behind DFAS BCAP and agency landing page, and consists of interconnected subscription supporting 6 virtual ā¦
The VNET will host Java applications with Oracle backends databases accessed via front facing Web servers, supported through Infrastructure as Code (IaC) and DevSecOps process and its internal hosted code repository. Infrastructure will implement a combination of Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS) to implement appliances such as servers, file storage, workstations, routers, firewalls, switches, web caching and bandwidth compression devices, Intrusion Detection Systems (IDS), Intrusion Prevention System (IPS), and other equipment documented in a Detailed Design Document available following contract award. Network connectivity is provided utilizing Transmission Control Protocol / Internet Protocol (TCP/IP) suite via the NIPRNet. DFAS employees and contractors will utilize DFAS owned equipment which connects to the NIPRNet, and DRAS-M Privileged users will access the DRAS-M Tenant via virtual desktops hosted within the CSPā tenant to manage the environment. The DRAS-M ISSM is responsible for conducting the Incident Response within the DRAS-M Tenant, but the DFAS Cyber Security Service Provider (CSSP) is the CSSP of record and will be involved in coordination of cyber events at the agency level ā¦
The anticipated period of performance shall be for one (1) Base Year of 12 months and four (4) option years of 12 months each.
Not Yet a Premium Partner/Sponsor? Learn more about the OS AI Premium Corporate and Individual Plans here. Plans start at $295 annually.