ECMA SETA Cybersecurity

Background: The Army Enterprise Cloud Management Agency (ECMA) is seeking a contractor to provide Cloud Cybersecurity Systems Engineering and Technical Assistance (SETA) support. ECMA is a field operating agency that reports directly to the Headquarters of the Department of the Army (HQDA) Chief Information Officer (CIO) and provides oversight for all Army cloud processes and activities. The agency operates and enhances three critical Platform Information Technology (PIT) systems: cARMY, CReATE, and cDATA. The attached draft Performance Work Statement (PWS) outlines six major task areas related to Cloud Cybersecurity:

1. Governance
2. Mission Support Security Operations
3. ECMA Information Management Officer (IMO)/Identity Credentialing and Assessment Management (ICAM)
4. RMF Cloud Enablement
5. Security Automation/Application Security Validation Engineer
6. Security Control Assessment Team.

Details: The work details for this contract include:

1. Governance: This task area involves providing support for the development and implementation of governance policies, procedures, and guidelines related to cloud cybersecurity.

2. Mission Support Security Operations: This task area focuses on providing security operations support to ensure the confidentiality, integrity, and availability of cloud systems and data.

3. ECMA IMO/ICAM: This task area involves supporting the ECMA Information Management Officer (IMO) in managing identity credentialing and assessment management processes.

4. RMF Cloud Enablement: This task area includes providing support for the Risk Management Framework (RMF) process in enabling cloud services.

5. Security Automation/Application Security Validation Engineer: This task area involves supporting the development and implementation of security automation tools and conducting application security validation.

6. Security Control Assessment Team: This task area focuses on conducting security control assessments to ensure compliance with cybersecurity requirements.