Author Archives: sdsolutions

IT Modernization and Application Development for US Tax Reform Implementation

September 2018: SD Solutions, LLC won a contract award to support the implementation of US Government’s 2018 Tax Reform Legislation. The Internal Revenue Service (IRS) will need to update dozens of Legacy IT systems. These updates are needed to accommodate hundreds of newly revised tax
forms. Specifically, this support is needed to implement the 2018 Tax Reform legislation and other IRS initiatives that require modifications to legacy systems. This effort requires the services and support of Project Managers, Business Analysts, System Architects, Software Developers, Subject Matter Experts (SME), Quality Assurance (QA) Analysts and Technical Writers. SD Solutions, LLC will provide benefit to the IRS by also having project level expertise, as well as extensive knowledge of the Current Processing Environment (CPE) and Legacy IRS systems and IRS project(s).

The scope also includes Data Cleansing, Validation, Conversion, and Integration. Specialized experience and expertise include:
. Mutual Authentication
· Disaster Recovery
· Coding and Unit testing
· Security Audit and Analysis
· Enterprise testing
· Risk Management Processes
· Configuration Management Tools
· Automated test tools

The Engineering Services include the support for Submission Process (SP) Pipeline, Information Returns Intake System (IRIS – formerly Affordable Care Act, or ACA Information Returns), Modernized E-File (MeF), Integrated Enterprise Portal (IEP), Foreign Account Tax Compliance Act (FATCA), and Release Level Technical Support (RLTS).

US Dept. of Transportation Awards Acquisition Support and Agile Transformation Contract

June 2017: SD Solutions, LLC won a contract to provide Agile Transformation Services and Acquisition Support Services to US Department of Transportation.

Under this contract, SD Solutions, LLC will provide the following services towards successful procurement of next generation of a large IDIQ and Agile Transformation of the Enterprise IT.

Acquisition Support: End-to-end Support for Procurement Life Cycle activities of a Large IT Acquisition. Develop Acquisition Strategy, Plan, Timelines, Draft SOO/SOW/PWS an provide Source Selection Support, Award and Post Award Support. Use Industry Standards and Modular Contracting Best Practices to provide cradle-to-grave support. Provide Budget and Cost Estimation

IT Modernization: Framework for IT modernization including  legacy systems decommissioning and transition of systems across the organization. Coordination with multiple stakeholders and developing a roadmap for change management and create a culture of innovation.

Agile Transformation: Help OCIO with Agile Transformation of the Enterprise IT and provide subject matter expertise to incorporate modular development best practices into procurement documentation for agile development. Assist OCIO in updating standards, documentation, processes and procedures to develop software using agile development methodology. Develop and implement the approach for legacy systems transition to include decommissioning the legacy systems and provide a framework for IT modernizations in collaboration with all the stakeholders.

Cost Estimation: Provide information giving the Government the ability to develop pricing from Government and industry installations comparable to requirements based on market analysis. Assist with developing integrated cost models from both bottom up and top down

Training: Provide Acquisition and Agile Transformation Coaching and Training

Program Management: PMO Support, Stakeholder Management and Executive Communications

Implementation of Occupational Safety and Health Information System

September 2018: US Department of Homeland Security (DHS) awarded a 5 Year Contract to SD Solutions, LLC to Implement Occupational Safety and Health Information System (OSHIS) to be used at hundreds of airports worldwide.

DHS requires a COTS OSHIS, customized to meet DHS’s specific requirements, to serve as the centralized repository for all safety, health, and workers’ compensation information. This will allow DHS to comply with laws, regulations, policies, and procedures governing Federal OSH and Federal workers’ compensation programs.

The overall scope of the contract includes:

  • Project Management
  • Infrastructure Design, Procurement, Installation, and Hosting
  • Commercial Off  The Shelf (COTS) Deployment
  • Personal ID Verification (PIV) Integration
  • Software Development and Enhancements
  • Integration with Other TSA and DOL Systems
  • Cybersecurity, Information Assurance, and Authority To Operate (ATO)
  • Training
  • Help Desk
  • Operations and Maintenance
  • Database Backup, Recovery
  • Disaster Recovery

SD Solutions, LLC Achieves CMMI DEV v1.3 Maturity Level 3

September 2018: Building upon our Foundation of corporate certifications, which include ISO 9001:2015, ISO 27001:2013, and CMMI SVC ML 2, we went through a rigorous process, implemented procedures, and were successfully appraised of CMMI DEV v1.3 Maturity Level 3.

CMMI is a Capability improvement framework that provides organizations with essential elements of effective processes that ultimately improve their performance.


What our CMMI maturity level 3 rating means for you:

• Our work and processes have received the highest form of third-party validation.
• We manage projects with an established set of practices.
• We’re dedicated to continuous improvement and producing great work that makes a difference.

Process Areas Implemented:

DAR – Decision Analysis and Resolution
IPM – Integrated Project Management
OPD – Organizational Process Definition
OPF – Organizational Process Focus
OT – Organizational Training
PI – Product Integration
RD – Requirements Development
RSKM – Risk Management
TS – Technical Solution
VAL – Validation
VER – Verification



SD Solutions LLC Small Business Prime of the Year

SD Solutions, LLC wins the Small Business Prime Contractor of the Year Award from the US Dept. of the Treasury

May 2017:  SD Solutions, LLC is a SBA Certified 8a and HUBZone Small Business with service offerings in the areas of a) Legacy IT Modernization , b) Cybersecurity and Information Assurance, c) Governance, Program Management, Acquisition and Agile Transformation and c) Business Transformation and IT Services. We take pride in delivering consistent results on time, within budget at highest quality levels using seasoned, certified and cleared resources. Our practice areas are backed by Academic and Industry best practices. We have Exceptional Performance Ratings in CPARS and a competitive GSA IT Schedule 70 price list. We are compliant with ISO 9001:2015, ISO 27000 and CMMI Services 1.3 Maturity Level 2 Processes. SD Solutions, LLC  has a DCAA Accounting System.

Once a year, United States Department of the Treasury’s Office of Small and Disadvantaged Business Utilization (OSDBU), honors a “Small Business Prime Contractor” of the year. This esteemed award goes to a Small Business that excels in various aspects. The Internal Revenue Service (IRS), a Bureau of the Treasury, nominated SD Solutions, LLC as the Small Business Prime Contractor of the Year.

Nine other Small Businesses that excelled in other Treasury Bureaus were also nominated for this award. SD Solutions, LLC was selected as the winner among 10 nominees for  excellence in contract performance in the best interest of the Government, community focus, and creating educational and employment opportunities in underutilized business zones.

In 2016, SD Solutions LLC sponsored a program in partnership with Page County Public Schools and Parents Against Depression Inc (PAD) to help save lives from suicides due to Depression.

In addition, SD Solutions, LLC brought students and staff from high schools in Page County, VA (a designated HUBZone), invited leaders in Cybersecurity (CISO/ISSO/SME) and conducted Virginia Cyber Camp 2016 in Washington, DC. This event was Virginia Governor McAulliffe’s initiative to support challenged divisions. SD Solutions, LLC was proud to sponsor/conduct this event to benefit the students and staff. As of academic year 2016/17, SD Solutions, LLC supported 24 poor students in rural Virginia with scholarship awards towards college education and paid Teaching Assistant jobs to help improve the test scores of students with challenges in specific subjects.


SD Solutions LLC is a ISO 9001:2015, ISO 27001:2013 and CMMI Services v1.3 ML 2 Appraised Organization

SD Solutions, LLC achieves ISO 9001:2015, CMMI Services v1.3 ML-2 and ISO 27001:2013 Certifications

August 2017: As an ongoing commitment to excellence in serving our clients, SD Solutions, LLC implemented ISO and CMMI Standards and Best Practices and successfully received Certifications and Appraisals. During the Spring and Summer of 2017, our staff learned and implemented the processes, plans and procedures for the following standards and successfully demonstrated the practice to the appraisers. The Key Benefits to our Customers are listed below.

ISO 9001:2015 Quality Management System:

SD Solutions LLC ISO 9001:2015 Certified

SD Solutions LLC ISO 9001:2015 Certified

This standard is based on a number of quality management principles including a strong customer focus, the motivation and implication of top management, the process approach and continual improvement. These principles are explained in more detail in the pdf Quality Management Principles. Using ISO 9001:2015 helps ensure that customers get consistent, good quality products and services, which in turn brings many business benefits.
Get an overview of ISO 9001 in this powerpoint presentation.
If you want to know more about the revision of ISO 9001:2015 see our revision page.

The seven quality management principles:

QMP 1 – Customer focus
QMP 2 – Leadership
QMP 3 – Engagement of people
QMP 4 – Process approach
QMP 5 – Improvement
QMP 6 – Evidence-based decision making
QMP 7 – Relationship management

Key Benefits To Our Customers:

Enhanced performance of the organization and its interested parties through responding to the opportunities and constraints related to each interested party
Common understanding of goals and values among interested parties
Increased capability to create value for interested parties by sharing resources and competence and managing quality-related risks
A well-managed supply chain that provides a stable flow of goods and services

CMMI Services v1.3 Maturity Level 2:

The CMMI-SVC model provides guidance for improving the organization’s capability to provide quality services for customers and end users. These best practices will help the organization provide superior service by strengthening weak customer touch points and enhancing the customer experience.

Key Process Areas:

Requirements Management
Work Planning
Work Monitoring and Control
Service Delivery
Measurement Analysis
Configuration Management
Process and Product Quality Assurance

Key Benefits To Our Customers:

Our work and processes have received the highest form of third-party validation.
We manage projects with an established set of practices
We’re dedicated to continuous improvement and producing great work that makes a difference


ISO/IEC 27001:2013:

An Information Security Management Systems (ISMS) is a systematic approach to managing sensitive company information so that it remains secure. It includes people, processes and IT systems by applying a risk management process. Using the family of ISO 27000 standards will help the organization manage the security of assets such as financial information, intellectual property, employee details or information entrusted to you by third parties. ISO/IEC 27001 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization.

Controls and Objectives:

Security Policy
Organization of Information Security
Asset management
Human Resources Security
Physical and Environmental Security
Communications and Operations Management
Access Control
Information Systems Acquisition, Development and Maintenance
Information Security Incident Management
Business Continuity Management

Key Benefits To Our Customers:

Framework Demonstrates Legal and Regulatory Requirements
Repeatable and Sustainable Processes
Reduction in Incidents and Support Costs, More Time Spent on Productivity
Proactive Management of Risk and Staff Awareness and Training

Best value Competitive Prime Contract for Website Development, Content Management and Security Compliance

May 2016: An Independent US Commission awarded SD Solutions, LLC a Competitive, Best value prime contract to redesign its public facing Website, develop a Content Management System and ensure 508 and Security Compliance

Under this contract, SD Solutions, LLC will provide the following services.

  • Registration as required by Federal law for the agency website
  • Hosting at a Federal Compliant hosting vendor
  • Migrate Domain and Contents of Current Website
  • Redesign and develop CMS based on chosen templates
  • Third party snippets
  • Section 508 Compliance
  • Security Compliance
  • Ensure that all content functions on Windows, Macintosh, Linux, and standard mobile and Internet browsers, including:
    o Internet Explorer (all versions that are supported )
    o Firefox (latest version )
    o Google Chrome (latest version )
    o Safari (latest version )
  • Integrate/embed common analytics and customer satisfaction tools such as Google Analytics, WebTrends, or 4Q;
  • Ongoing Updates
  • Training

Tags:, , ,

A US Federal Agency Awards Competitive Prime Contract to Provide Cybersecurity Advisory and FISMA Remediation Services

April 2016: SD Solutions, LLC received “best value” competitive prime contract award from a Small Federal Agency to provide FISMA Remediation and Cybersecurity Advisory Services.

Under this contract, SD Solutions, LLC will work with the CIO and CISO of the agency to provide the following services.

  • Help the agency comply with FY16 FISMA requirements
  • Implement an automated capability to scan and report on hardware and software assets
  • Perform vulnerability scans periodically at the frequency defined in organizational policy and based on management’s assessment of risk
  • Implement recommendations as documented within the Vulnerability Scan Assessment Report and enhance current vulnerability management processes to ensure that cybersecurity weaknesses are identified and remediated in a timely manner
  • Develop Policy and process requiring documented reviews of relevant Statements on Standards for Attestation Engagements (SSAE16) reports for service providers, and guidance surrounding how the reports should be reviewed, including evaluation of reportable conditions and user control considerations (UCCs)
  • Complete the Evaluation of the Fiscal Year 2016 Chief Information Officer Annual Federal Information Security
  • Participate in CyberStat accountability sessions and agency interviews with NSC and DHS for CyberStat face-to-face interviews and coordination with CIO/CISO to discuss the security posture with DHS
  • Complete and maintain the Plan of Action for improving specific cybersecurity capabilities, and provide FY targets and demonstrate progress toward those targets
  • Provide DHS information for Proactive Scans of Public Facing Agency Networks per OMB Memo M-10-28
  • Represent the agency in performing all FISMA reporting to include Quarterly report to CyberScope and Annual reporting
  • Work with agency officials in accordance with Section 301 § 3544 of FISMA, to submit an annual report to OMB, the Committees on Oversight and Government Reform and Science, Space, and Technology of the House of Representatives, the Committees on Homeland Security and Government Affairs and Commerce, Science, and Transportation of the Senate, the appropriate authorization and appropriations committees of Congress, and the Comptroller General, by the due date establish by OMB and DHS
  • Represent the agency to answer questions on the FISCAM evaluation as well as complete the written report to be entered into CyberScope


IRS Awards Multi-year, Competitive Prime Contract to Provide Services in 11 Task Areas including IT Strategy, Governance, Program Management, Cybersecurity and IT Services

April 2016 – Internal Revenue Service awarded a multi year, competitive prime contract to provide services under 11 Task Areas including IT Strategy, Governance, Program Management, Cybersecurity and IT Services.

SD Solutions, LLC will be assisting the IRS in the following areas.

Governance and Strategic Program Management. Development of reliably crafted and implemented results oriented strategies that move from strategic planning to strategic managing. The following types of work under are provided under this CLIN:

• Enterprise Governance, Roadmaps  and Strategic Planning
• Program governance and reporting
• Executive reporting
• Data analysis and recommendations
• Program advisement
• Plan, facilitate and lead executive level program meetings

Cyber Security and Infrastructure Support. Provide complete and comprehensive support for cyber security services and Information Assurance (IA) programs that assess and implement integrated solutions for physical, technical, operations, personnel, computer and communication security requirements, including disaster recovery assessment. The following types of work under are provided under this CLIN:
• Cyber security
• Network & critical infrastructure protection
• Linux RHEL and JBoss Support
• Support of Implementation of Enhanced Security Controls
• Information assurance
• Identity & access management
• Federal Information Security Management Act Compliance Support
• Certification & accreditation
• IT Modernization
• Legacy Systems Decommissioning and Transition
• Enterprise security
• Disaster recovery
• Security Engineering Guidance
• Independent Assessments and Recommendations for Security Controls
• Security Architecture and Design Support

Program and Project Management Support. The scope includes expertly managing scope, cost and schedule with appropriate planning and staffing to meet the program’s objectives. The following types of work under are provided under this CLIN:

• Provide reports, facilitate meetings, and prepare presentations
• Communication planning and support
• Project resource planning and oversight
• Risk evaluation
• Concept and operation document support
• Project interface support

Applications Development. Insertion of relevant and extensive experience related to developing and maintaining applications and websites. The following types of work under are provided under this CLIN:

• Software and database development
• Website and web-based applications
• Website redesign and maintenance
• Software library administration and maintenance
• Mobile application development
• Social media applications
• Portal maintenance and support
• Desktop/Client server application development & maintenance
• Section 508 compliance

Operations and Maintenance. Delivery of proven methods that provides a higher percentage of first-call resolution; creation of repeatable processes and properly documenting and communicating those processes; minimized support costs with increased levels of user satisfaction. The following types of work under are provided under this CLIN:

• Network & critical infrastructure protection
• Patch management
• Virtualization with OS hardening
• Domain and server management
• Configuration management
• Disaster recovery support
• Help/service desk support
• Desktop imaging
• Desktop installs
• Application installs and upgrades
• Configuration management
• End user support
• Knowledge base management
Systems Integration and Helpdesk. Provide the technical services necessary to design, operate, and maintain enterprise-wide systems with solutions that address security and affordability requirements in every major segment of the network environment (network applications, middle-ware, LAN, and WAN) to ensure appropriate functionality, performance, manageability and compatibility. The following types of work under are provided under this CLIN:

• Test Lab Services
• Workstation Refresh
• Server Virtualization
• Network Management
• Help desk, and end-user support

Provide actionable technology solutions based on real-world experience such as defining an Agile path for application development, enterprise lifecycle training, conducting market research, developing a strategy for secure communications and compiling an inventory of security compliance tools/applications. The following types of work under are provided under this CLIN:

• Agile Development Methodology
• Enterprise Resource Planning (ERP) Consulting
• Data Warehousing and Business Intelligence
• Linux Consulting
• Microsoft product consulting

Tactical Project Management. Building on the results of lessons learned the contractor will conduct gap and scenario analysis of when and how the insertion of improved processes can be implemented. The following types of work under are provided under this CLIN:

• Project planning
• Project risk management
• ELC Management and reporting
• Acquisition management
• Logistics support
• Business process re-engineering
• Gap analysis
• Best practice alignment
• Requirements management

Communications. Provide targeted messaging for each audience that is credible, relevant, visionary and differentiated. The following types of work under are provided under this CLIN:

• Message development
• Program identity and associated branding
• Communications campaigns
• Leadership communications
• Employee communications
• End-user communications

Change Management. Amidst internal and external barriers effectively addresses the people issues that can often derail an initiative. Develop and execute change management strategies that support awareness, behavioral change and aligned incentives. The following types of work under are provided under this CLIN:

• Stakeholder analysis
• Benefits analysis
• Change strategy development
• Linking messaging and benefits to strategy
• Identification and addressing of resistance to change
• Identification and utilization of catalysts for change
• Development and execution of change management plans and tactics
• Stakeholder communications
• Data collection, focus groups and other surveying of stakeholders

Learning and Development. Develop and provide services that promote individual and team effectiveness and executive development. The following types of work under are provided under this CLIN:

• Needs analysis
• Development of learning solutions (on-the job training, user manuals and quick guides, job-aides, on-line courses, instructor led training, etc.)
• Coaching and mentoring
• Team building
• Problem solving workshops development and facilitation
• Training services

SD Solutions LLC Tech Gala Nite

Nomination for Innovation in K-12 Education!

May 2017: Congratulations to SD Solutions, LLC Team for the nomination for innovation in K-12 Education Category at Shenandoah Valley Tech Council (SVTC). Great work by our employee Patrick Graybeal with innovative solutions on multiple formats to enrich classroom teaching experience with Guidance from Eric Johnston (PCHS Math Teacher) and Kathy Chrisman(Supervisor). We are looking forward to strengthening our ongoing collaboration since 2013 with Donna Whitley-Smith (Superintendent) and Eric Benson (Director of Instruction) at Page County Schools, VA towards expanding educational and professional opportunities for students. Thanks to Nicky Swayne (CEO of SVTC)  for a great event!