Contracts

FinTech to support the IRS PESS Program and provide Engineering support including the analysis of software concepts, approaches, and technical requirements. The IRS Procurement for Enhanced Service Solutions (PESS) contract under the Program Management Support Services (PMSS) is a Blanket Purchase Agreement (BPA) and a key component of the IRS's efforts to modernize and improve its operations and services.

The PESS contract is designed to provide the IRS with a wide range of support engineering services, including program and project management, strategic planning, communication and stakeholder engagement, and other critical functions to enhance service delivery to taxpayers.

The IRS IT Modernization Plan includes design and integration of critical improvements to existing and new systems to enhance services and operations for the IRS infrastructure including System and Infrastructure Design.

Infrastructure Review: Conduct a comprehensive assessment of the existing on-premise infrastructure to understand the technical and operational landscape, including hardware, software, data, and services.

Compliance Mapping: Map the current security posture against NIST 800-63-4 requirements to identify gaps. This standard focuses on digital identity guidelines, so special attention should be paid to identity proofing, authentication, and federation.

Architecture Design: Design a cloud architecture that aligns with AWS GovCloud’s capabilities and complies with NIST 800-63-4. This includes planning for secure identity management, access control, and data encryption.

Data Migration: Develop and execute a migration plan for moving data securely from the on-premise environment to AWS GovCloud. Ensure data integrity and minimal downtime during this process.

Service Configuration: Configure AWS services to meet operational needs and compliance requirements. This includes setting up identity and access management (IAM) roles, policies, and encryption methods in line with NIST standards.

Security Controls Implementation: Implement security controls as per NIST 800-63-4, focusing on authentication mechanisms, identity proofing, and federation to ensure secure access to cloud resources.

Documentation: Create detailed documentation on the cloud architecture, security controls, operational procedures, and compliance measures related to NIST 800-63-4.