Overview:
To serve our Veteran, the mission of VA OI&T, Office of Information Security (OIS) is to ensure cybersecurity for Veterans, VA information, VA information systems and infrastructure. OIS will accomplish this while ensuring the resiliency of VA’s cybersecurity infrastructure through proactive monitoring, adaptive response, adherence to Federal requirements and best practices, and the recruitment, retention, and development of a world-class cybersecurity workforce. OIS must continue to evolve its information security program to address existing deficiencies, match the growing and evolving cybersecurity threat landscape, minimize risks from the use of new technologies, address existing deficiencies, and align with Federal cybersecurity strategies and direction. VA Health, Benefits, Memorial, and Corporate business functions that provide services to our Veterans depend on VA’s information systems and information. Protecting these information systems and data is critical to execute VA’s mission to serve our Veterans. OIS manages, oversees and directs VA’s Information Security Program and provides expert products and services in Information Security Strategy, Information Security Policy & Compliance, Cybersecurity Architecture, Cybersecurity Technology and Metrics, Cybersecurity Operations Center, Information Security Risk Management, and Cybersecurity Workforce Development.
To protect Veteran and VA information, OIS is developing a strategic, logical, and tactical level VA Enterprise Security Architecture (ESA) that enables the deployment of new and secure technologies. As part of its strategic direction and in accordance with the Presidential Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure, VA is looking to strengthen the cybersecurity of its information technology (IT) infrastructure and solutions to support and enhance the Department’s mission.
Scope:
To ensure mission success, Discipline Consulting provides Enterprise Security Architect support to define, develop, and implement the various ESA’s required to maintain the confidentiality, integrity, and availability of Veteran and VA information. The support provided shall help VA create, discover, architect (emphasizing the importance of aligning enterprise architecture requirements to security architecture.), document, and assess cybersecurity solutions that will ensure Veteran and VA information will not be subject to unacceptable risk when new technologies and solutions are employed by VA. The expertise needed to satisfy this requirement will span a broad range of technologies, technical challenges and user experience to include: mobile and medical devices, cloud ecosystem, software defined networks, enterprise architecture; application testing and deployment, assess, and define business processes, and systems design.