Data At Rest Encryption (DARE) Strategy for Modernization Services - GSA eBuy Solicitation

Background
The Internal Revenue Service (IRS) Information Technology, (IT) Enterprise Services (ES), Technology Strategy Management (TSM) Infrastructure Platform Strategy & Services Program Management Office (PMO) requires program management & technical support services with pervasive encryption services to protect IRS data-at-rest via encryption. Recent data loss events across the federal government highlight the need for additional protections of sensitive data to ensure the IRS can continue its mission of revenue collection while protecting taxpayer privacy. The DARE program is focused on critical enterprise repositories in data center systems such as those hosted on servers and mainframes, using centralized storage such as shared file systems, storage networks, and backup/replication methods, and database applications such as Oracle, International Business Machines (IBM) DB2 database, and Structured Query Language (SQL) server. The program excludes data-at-rest in client-side devices including laptops drives, mobile phones, and local storage media.

Work Details
The contractor shall support the development of the DARE strategy to protect the IRS Data from future cybersecurity threats and coordinate with IRS employees and other vendor human resources. This includes providing necessary project management support, DARE strategy support, technical integration, and transition support. Specific tasks include developing a comprehensive analysis and report on current and future cybersecurity threats to the IRS’ data-at-rest, data-in-transit, and data-in-use; conducting an analysis and presentation based on any new NIST, OMB, or other federal organizations cyber data security recommendations; developing architecture for IBM Mainframe modernization from z14 to z16, IBM cloud migration of on-premises data, Unisys Mainframe migration and modernization; delivering a DARE and integration implementation plan and project plan or schedule for eight Tier 1 IBM Mainframe application systems; providing documentation of requirements, scope, risks, issues, details on software and hardware licenses; developing a training program to help EOps handle the daily maintenance of the implemented encryption and integration for each application.

Period of Performance
The period of performance of this order shall be for a base period of twelve (12) months from date of award and one (1) twelve (12) month option period. The anticipated start date is September 29, 2023.

Place of Performance
All work under this Order shall be performed at the Contractor’s site and the following IRS locations: New Carrollton Federal Building, 5000 Ellin Road, Lanham MD 20706; Enterprise Computing Center Martinsburg (ECC-MTB), 250 Murall Drive, Kearneysville, WV 25430; Enterprise Computing Center – Memphis (ECC-MEM), 5333 Getwell Road, Memphis, TN 38118.