Federal Civilian

Customer:
United States Department of the Treasury –
Bureau of the Fiscal Service
Category:
Federal Civilian
Period of Performance:
September 2014 – July 2016
Place of Performance:
Parkersburg, WV; Washington, D.C.
Status:
Completed
Project Description:
The Bureau of the Fiscal Service contracted with Iron Flame to provide expert support to deliver and/or oversee the delivery of a secure user interface for the My Retirement Account (MyRA) application.
What We Did:
Risk Management; Secure Code Review; Cybersecurity; Information Assurance; IT Audit

Back to Top


Customer:
Federal Mediation & Conciliation Service –
Records Management
Category:
Department of Defense
Period of Performance:
January 2012 – June 2012
Place of Performance:
Kobul, Afghanistan; Crystal City, VA; Washington, D.C.
Status:
Completed
Project Description:
Iron Flame was tasked with developing a vital records program to identify and protect those records that specify how FMCS will operate in case of emergency or disaster, those records vital to the continued operations of the Agency during and after an emergency or disaster, and those records needed to protect the legal and financial rights of the Government and of the persons affected by its actions.

What We Did:Project Management, Document Management, Digitization, Records Management.

Back to Top


Customer:
Department of Transportation –
Pipeline Hazardous Material Safety Administration
(PHMSA)
Category:
Federal Civilian
Period of Performance:
April 2012 – May 2013
Place of Performance:
Washington, D.C.
Status:
Completed
Project Description:
Iron Flame was tasked to assist with supporting the PHMSA ISSO in developing IT Security policies and procedures to support FISMA compliance by conducting Certification and Accreditation exercises, conducting risk assessments, performing vulnerability assessments of PHMSA networks and servers, managing and handling security incidents, and managing PHMSA’s Plan of Actions and Milestones reporting and remediation.
What We Did:
Exhibit 300; Risk Management, Penetration Testing, Accreditation and Authorization (A&A), FISMA, Privacy, Configuration Management, Security Plan, Plan of Actions and Milestones (POA&M) Management, Patch and Vulnerability Management.

Back to Top

Customer:
US Department of General Services Administration (GSA)
Catalog of Federal Domestic Assistance (CFDA)
Category:
Federal Civilian
Period of Performance:
April 2012 – May 2013
Place of Performance:
Washington, D.C.
Status:
Completed
Project Description:
Iron Flame was tasked to facilitate the resolution of CFDA Help Desk inquiries; where appropriate, within twenty-four (24) hours or one (1) business day. Our Help Desk staff leverages GSA’s Right Now interface used by the Federal Service Desk to manage Tier 1 through 3 help desk services. Our Help Desk Support Staff uses Iron Flame’s Issue Tracking Log where all Tier 3 issues are logged and managed to completion.
What We Did:
Help Desk Management; Business Requirements; Quality Assurance; software application Design and Development, Information Gathering

Back to Top


Customer:
United States
Department of Homeland Security
(DHS)
Category:
Federal Civilian
Period of Performance:
April 2009 – May 2011
Place of Performance:
Arlington, VA
Status:
Completed
Project Description:
Provides IT Security expertise to the Department of Homeland Security (DHS) in support of their Operations and Maintenance efforts. TNG provides Executive Leadership in managing Accenture’s Security Operations Team, which is a mini Security Operations Command Center for the high-profile DHS US – Visit program.
What We Did:
Cybersecurity; PKI Management; Security Operations Center (SOC) Management; Secure Code Review; Datacenter Migration; System Security Plan; Risk Assessment Report; Configuration Management Plan; Security Controls Assessment; Vulnerability Scan Report; Plan of Action & Milestones (POA&M) Report; Contingency Plan; FIPS 199 Security Categorization Report; Automated Information System Rules of Behavior; and Risk Management Plan.

Back to Top

Customer:
United States
Department of Veterans Affairs
Category:
Federal Civilian
Period of Performance:
April 2008 – May 2009
Place of Performance:
Arlington, VA
Status:
Completed
Project Description:
Statement of Work: As a sub-contractor to Oak Grove Technologies, TNG provides IT Security expertise to the Department of Veterans Affairs’ (VA) Executive Leadership Team for the entire continuum of security certification and accreditation activities. TNG is responsible for planning, designing/building, and implementing security controls that properly align government standards (NIST) with the VA’s security requirements and directives to develop documentation that supports the certification and accreditation of the VA’s information systems. TNG also works with VA Senior Management to assist in the development of departmental Information Technology (IT) security policies and procedures.
What We Did:
Cybersecurity; System Security Plan; Risk Assessment Report; Configuration Management Plan; Security Controls Assessment; Vulnerability Scan Report; Plan of Action; Milestones (POA&M) Report; Contingency Plan; FIPS 199 Security Categorization Report; Automated Information System Rules of Behavior; and Risk Management Plan

Back to Top

Customer:
United States
Department of Veterans Affairs
Category:
Federal Civilian
Period of Performance:
October 2007 – June 2008
Place of Performance:
Washington, D.C.
Status:
Completed
Project Description:
Statement of Work:TNG’s services were procured by the Department of Veterans Affairs – Office of Enterprise Development to provide data management support services. TNG’s mission consisted of the following tasks:
Design, develop and implement OneVA service-oriented architecture in support of data sharing and identity management services.
Data access for Department of Defense (DoD) data (including consolidation of DoD interfaces)
Data access for intra-administration data (including view capability)
Design, develop and implement inter-administration identity management
Design, develop and implement DoD/VA Identity Management (Common Population)
What We Did:
Cybersecurity; System Security Plan; Risk Assessment Report; Configuration Management Plan; Security Controls Assessment; Vulnerability Scan Report; Plan of Action & Milestones (POA&M) Report; Contingency Plan; FIPS 199 Security Categorization Report; Automated Information System Rules of Behavior; and Risk Management Plan.

Back to Top


Customer:
United States
Department of Veterans Affairs
Category:
Federal Civilian
Period of Performance:
January 2006 – June 2008
Place of Performance:
Washington, D.C.
Status:
Completed
Project Description:
TNG provides IT Security expertise to the Department of Veterans Affairs’ (VA) Executive Leadership Team for the entire continuum of security certification and accreditation activities. TNG is responsible for planning, designing/building, and implementing security controls that properly align government standards (NIST) with the VA’s security requirements and directives to develop documentation that supports the certification and accreditation of the VA’s information systems. TNG also works with VA Senior Management to assist in the development of departmental Information Technology (IT) security policies and procedures.
What We Did:
Cybersecurity; System Security Plan; Risk Assessment Report; Configuration Management Plan; Security Controls Assessment; Vulnerability Scan Report; Plan of Action & Milestones (POA&M) Report; Contingency Plan; FIPS 199 Security Categorization Report; Automated Information System Rules of Behavior; and Risk Management Plan

Back to Top


Customer:
Federal Housing
Finance Board
Category:
Federal Civilian
Period of Performance:
June 2005 – June 2005
Place of Performance:
Washington, D.C.
Status:
Completed
Project Description:
Statement of Work: TNG to perform a series of security vulnerability scans on the Federal Housing Financing Board’s network. As a certified reseller of Retina` TNG used the Retina Vulnerability Scan Tool to assess FHFB’s network vulnerabilities.
What We Did:
Vulnerability Assessment Reports; Penetration Testing

Back to Top