Note: Candidates MUST have an active IRS clearance
Can not consider anyone without the clearance
Statement of Work:
The Senior Security Specialist shall provide security specialist support for the following activities at the Computing Center, this support includes the following but is not limited to:
1. The Contractor shall have in depth knowledge of REXX programming language.
2. The Contractor shall move application programmed in REXX from Detroit Computing Center to Martinsburg Computing Center,
3. The Contractor shall perform in depth analyses to identify, evaluate, and prepare reports or recommendations for new or improved goals, products and services controls or procedures.
4. The Contractor shall provide technical assistance regarding security measures, safeguards, and requirements.
5. The Contractor shall review and analyze audit trail (SMF data records) and/or security reports and identify and initiate investigations of security incidents.
6. The Contractor shall trouble shoot and resolves users problems.
7. The Contractors shall implement new security features on new systems and
applications.
8. The Contractor shall review security change on upgrade to hardware/software.
9. The Contractor shall review security interfaces with various software products.
10. The Contractor shall apply National Office Directives to local applications systems.
11. The Contractor shall meet with oversight teams.
12. The Contractor shall prepare monthly status reports for management
13. The Contractor shall documents all procedures.
14. The Contractor shall demonstrate all procedures to government personnel
15. The Contractor shall provide any (and all) training necessary for the knowledge transfer process (ie crating training documents, writing technical manuals, and recommending formalized training programs).
16. The Contractor shall perform other TIER I duties (including RACF Administration and maintenance/support to the DSAS system) as needed. Contractor should have some (in depth knowledge) knowledge of the REXX (or similar/comparable) language and DB2 concepts.
17. The Contractor shall develop access Matrix for an estimated 2000 dataset profile(s) against 800 group profile(s).
18. The Contactor shall develop and document the Standard Operating Procedures (SOP) for the access matrix.
Responsibilities:
To design, code and implement a user id administration tool to meet or exceed the new system requirements
Current System:
Is a TSO/ISPF based application coded in REXX and very limited COBOL. A DB2 database is used to store this application's data and QMF forms are used to display most requested out. Candidate must be able to retrieve some requirements from this code. Each copy of the application can manage one RACF database.
New System requirements:
1) This system must be able to manage multiple RACF databases and be able to
assure that all user information is unique between the RACF databases.
a. A user may be defined in one RACF database and not another. All user security information must be unique between RACF databases to assure that a user id can be defined the exact same way in all RACF databases at different times should the need arise.
2) This system must be able to support the MVS and USS components of z/OS.
Examples:
a. If a user's RACF default group is changed. The system must be able to
change GIDs for all user related USS directories.
b. Build shared HFS and ZFS files for a user id as needed
3) System design should be flexible to allow the addition of digital certificates at a
later date.
4) This system must delete user ids after 90 days of inactivity and perform all appropriate cleanup activities for the user id.
a. In addition to implied requirements from requirements 1 and 2, digital certificate cleanup may be needed.
5) A secure password reset and password delivery system needs to be developed.
6) Role based security should be assumed.
Skills:
REXX
DB2
RACF
SMF