PL ALTESS Application Modernization and Risk Management Framework Services Presented By: Scott Friend Chad Vance

FOUO 2 A Premier IT Service Provider IT Services Platform We deliver powerful, multi-faceted computing infrastructure, configured to support a global user-base. Our infrastructure serves as the primary mechanism for computing and data storage services available to the Department of Defense and other authorized users. Capability Delivery and Application Modernization We provide world-class information technology services, refactoring, repurposing, and consolidation of legacy applications and systems to align with your business needs. We support new service delivery models, Enterprise Services and Applications, and Component Services and Applications for all mission areas. Cyber Defense We provide enterprise-class physical security and cybersecurity environments for assured protection and federal compliance. Our cybersecurity services are designed to meet and exceed the minimum security as outlined by the Department of Defense and National Institute of Standards in Technology. Standardized Processes We implement standardized operations and processes to meet your critical delivery requirements. Our processes ensure customer engagement, graceful failover, disaster recovery, continuity of operations, service and capability delivery, and load balancing.

Legacy modernization, or software modernization, refers to the conversion, rewriting or porting of a legacy system to a modern computer programming language, software libraries, protocols, and/or compute resources. Modernization options include re-platforming, re-hosting, re-coding, re-architecting, re-engineering, interoperability, replacement and retirement, as well as changes to the application architecture to clarify which option should be selected. Application Modernization Defined 3FOUO

Modernization Tiers FOUO4 Foundational Focus on data collection Interface with Application Owners Define the “As-Is” capability Compile the Technical Modernization Requirements Estimate Costs and LOE Strategic Focus on in-depth modernization activities to align more closely with current business needs. Re-platforming, re-hosting, recoding, re-architecting, re- engineering, interoperability, replacement and retirement. Transitional Focus on compliancy and standardization Perform risk assessment scanning & reporting Perform Application & OE Assessment Provide remediation recommendations Provide Modernization / Migration Cost Estimate Impliment modernization for compliancy and security

Application Assessment Perform vulnerability, IA, and application assessment and provide recommendations for remediation. OE Assessment Review system requirements and provide engineering assessment/recommendations to “right size” the architecture Reassessment Reassess the application once the remediation is complete Technical Assessment Package Gather required system information and develop Technical Assessment Package Remediation Remediate findings in order to meet compliancy and OE standards Migration Ready ALTESS provides a full suite of IT Services for remediation, staging, Cybersecurity, and business management to modernize and maintain in a migration ready state. Application Modernization / Migration Services FOUO 5

Applications follow a Software Development Life Cycle (SDLC) process using an agile approach to ensure standardization, expedite delivery, and manage requirements creep. Application Migration/Management Framework Requirements Definition Security Review Design / Recommendations Remediation Modernization (If Necessary) Quality Assurance Testing Sustain Applications in Ready State User Acceptance Testing FOUO PlanningImplementationSustainment 6

7 Service Level Management – Key to Customer Success Service Level Management is the foundation of a suite of standard processes designed to ensure customer success The Service Level Manager is the voice of the customer and manages services across teams and providers to ensure successful deployment of cloud ready applications The Service Level Manager can coordinate a complete offering of Cloud Support Services Requirements Management Project ManagementChange ManagementRelease ManagementDeployment Cloud Support Services FOUO

Requirements Development Logical Analysis Architectural Design Implementation Integration Verification Transition Validation ALTESS Technical Management Processes Requirements ManagementConfiguration ManagementTechnical Assessment Interface ManagementTechnical Data ManagementDecision Analysis Risk ManagementTechnical Planning ALTESS Technical Management Processes Requirements ManagementConfiguration ManagementTechnical Assessment Interface ManagementTechnical Data ManagementDecision Analysis Risk ManagementTechnical Planning Systems Engineering Services Aligns with Defense Acquisition Guidebook and ISO/IEC 15288:2008 Systems and software engineering -- System life cycle processes CDR SFR PDR SVR TRR SFR – System Functional Review PDR – Preliminary Design Review CDR – Critical Design Review TRR – Test Readiness Review SVR – System Verification Review PlanningImplementationSustainment FOUO 8

PL ALTESS provides enterprise-class physical security and cybersecurity environments for assured protection and federal compliance. Our cybersecurity services are designed to meet and exceed the minimum security as outlined by the Department of Defense and National Institute of Standards in Technology. Foundational cybersecurity services Customer impact review and assessment of Acceptable Use Policies, Non-Disclosure Agreements, change requests, system documentation, and new or updated DoD/Army regulation Coordination of recovery efforts for classified spillages and Personally Identifiable Information or other security incidents Cybersecurity Services 9FOUO

RMF Support Services Provide Cybersecurity Engineering Services to mitigate risk and maintain the security posture of mission systems and applications Ensure customers’ systems incorporate proper security measures Provide technical management of assessment and authorization continuously throughout the life cycle Oversee incorporation of information assurance vulnerability management Detail in Plan of Action and Milestones (POA&Ms) all necessary security actions and issues Ensure the actions and issues of the POA&Ms are addressed on schedule Cybersecurity Services for RMF 10FOUO

11 Contact Us For more information please contact: LTC Toy Frasier, Jr. Acting Product Lead Scott Friend Acting Deputy Chad Vance Chief, Applications Services Division ALTESS Service Desk:

QUESTIONS? FOUO 12

BACKUP FOUO 13

Application Modernization Environment Remediate Modernize Stage ALTESS AAMBO Oversight Relationship Management Reporting Migrat e Asse ss FOUO14

Modernization Tiers FOUO15 Army Migration Business Office (AAMBO) Interface with Application Owners Facilitate the Migration / Modernization process Compile the Technical Assessment Package Provide initial ROM for CBA Service Provider Selection Report Metrics PL ALTESS Execute risk assessment scanning & reporting Report findings and provide remediation services Provide Staging environment for modernization activities Provide modernization services and support migration Conduct Post-Modernization Technical Validation Provide Modernization / Migration Cost Estimate