Professional Services
Information Technology (IT) strategy is essential for shaping and building required capabilities. SIS leverages a mix of both classic and Agile business technology methodologies to support attainment of enterprise goals. The classic methodology is used for functions or business units with stable needs while Agile is applied to areas of the enterprise that are operating in a more dynamic environment. The Agile methodology requires a collaborative and interactive approach with IT personnel working alongside staff from other areas of business during every step of the process. Architecture has a key role to play in this approach as it guides decisions made out technology initiatives. Our goal is to harness resources and capabilities in an enterprise-wide support model based on documented procedures, just-in-time training, and established technical measures.
Our commitment to standardized lifecycle support is evidenced by our CMMI Maturity Level (ML) 3 rating for Services and Delivery as well as our ISO 9001:2015 certification. Our disciplined approach is applied across the following IT functions:
SIS leverages Information Technology Infrastructure Library (ITIL) best practices to ensure superior customer service and response. Encompassing the entire IT lifecycle, SIS integrates processes for planning, delivering, operating, and managing IT to meet, or exceed, service level thresholds and performance measurements. Our approach includes governance, risk, and compliance activities; incorporates management reviews; and features National Institute of Standards and Technology (NIST) definitions, characteristics, and principles. SIS has integrated select components of the Agile, DevOps, and Lean frameworks to quickly deliver new business functionality. We have overcome the cultural differences with ITIL to achieve the value both Agile and DevOps provides while leveraging select components of the Lean framework to drive continual improvement and eliminate wasted effort as it applies to the following service areas:
SIS has adopted the National Institute of Standards and Technology (NIST) Risk Management Framework (RFM) to mitigate security risks. The RMF framework is standards based, technology neutral, and capable of working with DoD and State cybersecurity processes, methodologies, and risk assessment tools. Benefits include a common language, collaboration opportunities, better security within the supply chain and cost efficiency in cybersecurity spending. SIS understands the difference between requirements stated at a high level of abstraction, such as FIPS or FISMA legislation, those developed at the functional level to achieve mission goals such as FIAR, and those that address policy and procedures at the management and operational elements within the organization or the enterprise. We provide the technical sophistication to manage and navigate these nuances so that every change in policy doesn’t result in new herculean efforts to ensure systems are compliance. SIS leverages a standards-based methodology to ensure availability of open source validation tools not requiring government development, best of breed source code and security scanning tools to provide excellent test coverage with minimal manual testing augmentation, quality documentation to facilitate coordination among stakeholders, and certified staff to ensure informed assessments and high quality work products across the following task areas:
SIS has significant experience providing server and desktop support on both non-commercial (private) and commercial DoD authorized cloud-based network infrastructures. This support includes consulting, planning, and design strategies as well as implementation support for Virtualized Systems and Cloud/Cloud-based solutions. We assist with planning and design strategies and serve as subject matter experts (SMEs) during transitions to Cloud platforms. SIS can provide planning and design strategies for cloud/cloud-based solutions, Virtualized systems, Big Data, Analytics, and a Modernized Development Environment (MDE) in accordance with Cloud Computing Policies, Cloud Adoption Criteria, and NIST SP 800 series of controls.