Loading...
The URL can be used to link to this page
Your browser does not support the video tag.
Home
My WebLink
About
CORRESPONDENCE - RFP - 7368 PROFESSIONAL NETWORK ENGINEERING & IMPLEMENTATION (7)
Professional Services SoW City of Fort Collins – Network Access Control (NAC) Pilot Program Prepared For: City of Fort Collins 215 N. Mason St Fort Collins, CO 80522 Bob Singleton bsingleton@fcgov.com (970) 221-6789 Provided by: Global Technology Resources, Inc. 990 S. Broadway, Suite 300 Denver, CO 80209-4274 1-877-603-1984 GTRI.com Fax 1-888-803-6520 Statement of Work <Title> <Subject> © 2015 Global Technology Resources, Inc. All Rights Reserved. All rights are reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form by any means, electronic, mechanical, photocopying, recording or otherwise, without the prior written permission of the document owner or maintainer. SOW00.00.0000 © 2016 Global Technology Resources, Inc. All Rights Reserved. All rights are reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form by any means, electronic, mechanical, photocopying, recording or otherwise, without the prior written permission of the document owner or maintainer. SOW160518 GTRI Statement of Work CoFC NAC Pilot SOW 11.01.2016 © 2016 GTRI, All Rights Reserved | Privileged and Confidential i OPP- Table of Contents 1. Project Overview.....................................................................................................1 1.1. Understanding Your Needs ..................................................................................1 1.2. Project Requirements .........................................................................................1 1.3. Current\Proposed High Level Design.....................................................................1 1.4. Success Criteria.................................................................................................1 1.5. Proposal Terms..................................................................................................1 2. Project Management ................................................................................................2 2.1. Project Initiation ................................................................................................2 2.1.1. Project Kick-off ............................................................................................2 2.2. Project Planning.................................................................................................2 2.2.1. Schedule.....................................................................................................2 2.3. Project Execution...............................................................................................2 2.3.1. Resource Management ..................................................................................2 2.4. Project Control ..................................................................................................2 2.4.1. Project Status ..............................................................................................2 2.4.2. Change Management ....................................................................................2 2.5. Project Close-out ...............................................................................................2 3. Design and Deployment Services...............................................................................3 3.1. Planning and Design...........................................................................................3 3.1.1. Planning Tasks.............................................................................................3 3.1.2. Planning and Design Deliverables ...................................................................3 3.2. Deployment ......................................................................................................3 3.2.1. Deployment Tasks ........................................................................................3 3.2.2. Deployment Deliverables...............................................................................4 4. Assumptions...........................................................................................................5 5. Project Pricing.........................................................................................................6 6. Signature Page .......................................................................................................7 GTRI Statement of Work CoFC NAC Pilot SOW 11.01.2016 © 2016 GTRI, All Rights Reserved | Privileged and Confidential 1 OPP- 1. Project Overview 1.1. Understanding Your Needs WHO: The City of Fort Collins WHAT: The City of Fort Collins has requested GTRI’s assistance with implementing an as needed Network Access Control (NAC) solution for wired network access ports. WHY: The City of Fort Collins would like a solution that provides an as needed basis to protect public accessible conference rooms and a few other special application scenarios, such as PCs in public places. 1.2. Project Requirements Based on discussions and documentation provided by Project Pricing.This pricing is for GTRI to complete the work previously defined in this document. This is a Firm Fixed Priced (FFP) engagement based on the information that has been collected from the Client and the assumptions defined above. If any c, the following requirements were outlined to Global Technology Resources, Inc. (GTRI). Install a NAC solution utilizing Cisco Identity Services Engine (ISE) w/ base licensing Integrate ISE solution into CoFC Network Infrastructure Provide support for NAC to Wired endpoints – o including select conference rooms o including PCs in public places Provide framework to build as needed add-ons to scale 1.3. Current\Proposed High Level Design The City of Fort Collins does not currently have a Network Access Control solution. GTRI has proposed to build a Cisco ISE solution for a NAC pilot program that will provide as needed protection for a CoFC Proof of Concept. The ISE Solution will provide a NAC framework that will allow the City of Fort Collins to scale out and extend their security model. 1.4. Success Criteria Success Criteria should be defined as when the CoFC Proof of Concept configuration has been implemented, tested, validated and signed off on. The Proof of Conception configuration has been defined as provided a NAC solution for select conference rooms and select public facing PCs. 1.5. Proposal Terms This Statement of Work (SOW) serves as confidential written documentation and the basis of understanding for technical integration services to be performed by GTRI for Project Pricing.This pricing is for GTRI to complete the work previously defined in this document. This is a Firm Fixed Priced (FFP) engagement based on the information that has been collected from the Client and the assumptions defined above. If any c (Client). Client understands and acknowledges that the contents of this SOW are confidential as between GTRI and Client and shall not be shared with third parties without the written approval of GTRI. Unless otherwise negotiated, the terms and conditions outlined in the Master Sales Agreement (MSA) govern the work contained herein GTRI Statement of Work CoFC NAC Pilot SOW 11.01.2016 © 2016 GTRI, All Rights Reserved | Privileged and Confidential 2 OPP- excluding Federal and some State and Local agencies. The MSA, located online at www.gtri.com/MSA, is the most current version and may be updated from time to time. GTRI Statement of Work CoFC NAC Pilot SOW 11.01.2016 © 2016 GTRI, All Rights Reserved | Privileged and Confidential 3 OPP- 2. Project Management 2.1. Project Initiation 2.1.1. Project Kick-off GTRI will conduct a project kick-off meeting prior to work commencing to review the project scope, project requirements and objectives, technical approach, communication plan and project schedule. This meeting will be led by the GTRI Project Manager or BU Practice Leader, and include the Client, Project Team, and other stakeholders. 2.2. Project Planning 2.2.1. Schedule GTRI Project Management will provide a project schedule to outline the tasks and timelines required to accomplish the scope. This can be included on the format of MS Project, MS Word, MS Excel or simplified email format. 2.3. Project Execution 2.3.1. Resource Management GTRI Project Management will be responsible for coordinating and directing the project team and resources. 2.4. Project Control 2.4.1. Project Status GTRI Project Manager will provide a project status to the project team and stakeholders during the duration of the project. Depending on the type and duration of the project, this can be conducted at milestone points or regular intervals during the duration of the project (per the project communications plan). This will be in the format of an audio call or physical site meeting and/or a status report. 2.4.2. Change Management GTRI Project Management will control any required changes to the project scope in the format of a Change Agreement. If such requirement is identified, a Change Agreement form will be created to outline the changes in scope and cost prior to commencement of work and approved by client. 2.5. Project Close-out GTRI will conduct a project closure to review all completed tasks and components of the project scope. This will include reviewing any project checklists and or punch lists, testing results and deliverance and review of any included project deliverable documentation as per this SOW. Upon completion of the close-out, GTRI will present the project close and acceptance form to the client for acceptance and hand off the project to GTRI Managed Services if purchased. GTRI Statement of Work CoFC NAC Pilot SOW 11.01.2016 © 2016 GTRI, All Rights Reserved | Privileged and Confidential 4 OPP- This meeting will be led by the GTRI Project Manager or BU Practice Leader, and include the Client POC, Project Team, and other stakeholders. GTRI Statement of Work CoFC NAC Pilot SOW 11.01.2016 © 2016 GTRI, All Rights Reserved | Privileged and Confidential 5 OPP- 3. Design and Deployment Services This section identifies the work that will be performed as part of this project. The project will follow the order of the activities as they are shown below. 3.1. Planning and Design This portion of the project is a detailed planning and design phase that incorporates both a discovery and a design component. During this process all elements that potentially impact project success are examined. Once complete, detailed design recommendations and a project implementation schedule are created that will ensure the proposed solution meets the Client’s requirements. 3.1.1. Planning Tasks Document IP Addressing scheme Document Devices taking part in implementation phase Discuss AD integration Discuss Policy generation and key RBAC role based Authorization Profiles Discuss Authentication methods and options: EAP-TLS, PEAP Discuss different Portal configurations: AD login, Vendor, Guest Discuss PKI infrastructure and certificate exchange Discuss AnyConnect client Rollout Discuss future framework for ISE scenarios Discuss Training plan 3.1.2. Planning and Design Deliverables Below are the deliverables GTRI will provide as part of the planning and design. GTRI will provide documentation as defined in the planning and design tasks GTRI will produce a Pre-Deployment Engineering Report (PDER) detailing the results of the planning and design phase, final solution design and final project schedule GTRI will detail any modifications to the project design, assumptions and costs identified during the planning and design and provide any required project change orders GTRI will create a project schedule and any associated change management approvals for project deployment 3.2. Deployment This section of the SOW covers the work that will be performed during the deployment phase of this project. This covers all phases of the deployment of the solution. 3.2.1. Deployment Tasks GTRI Statement of Work CoFC NAC Pilot SOW 11.01.2016 © 2016 GTRI, All Rights Reserved | Privileged and Confidential 6 OPP- o Install ISE software in HA configuration at CHW and DR sites on existing VM infrastructure o Configure ISE Nodes into Persona Roles o Configure ISE Personas – Policy Administration Node (PAN), Policy Services Node (PSN), Monitoring and Troubleshooting Node (MnT) o Join ISE to AD Infrastructure o Configuration of Service Policies o Configuration of Policy Elements o Configuration of Policy Sets o Configuration of Authentication Policies o Configuration of Authorization Policies o Configuration of Downloadable ACLs o Define Custom Dictionary Attributes o Prepare client traffic (ACL/Routing) o AD preparation assistance – GPO Rollout of Certificates o PKI configuration and certificate exchange o Configure portal for BYOD access o Vlan Configuration to support NAC scenarios o Client agent deployment assistance for up to 3 device types o Configure defined Conference Room switches to support Pilot Program o Configure for only Public facing location PCs to connect in defined areas for Pilot Program 3.2.2.Deployment Deliverables Below are the deliverables GTRI will provide as part of the deployment. GTRI will implement the solution as identified in the SOW GTRI will provide documentation as defined in the deployment tasks GTRI will provide final as-built documentation of the implemented solution GTRI will provide information regarding the verification tests run on the installed components that are a part of the project and the results of those tests GTRI will provide training as outlined in this SOW GTRI Statement of Work CoFC NAC Pilot SOW 11.01.2016 © 2016 GTRI, All Rights Reserved | Privileged and Confidential 7 OPP- 4. Assumptions This section of the SOW covers the assumptions that are made as part of this project. These assumptions include tasks that the Client will agree to perform as part of this project. These assumptions will also include what items are in scope and out of scope for this project. General Assumptions Client will provide GTRI with a single point of contact or key staff necessary for completion of the project. All communications for project details including scheduling, planning and work changes must be communicated from the Client point of contact to the GTRI primary point of contact. Client will provide GTRI with information about their currently deployed IT infrastructure as applicable to this project. The Client will provide information to GTRI about sites of operation, WAN circuits, Network topology, IP Telephony system information, and all IT computing systems. Client will work with GTRI to gather all data necessary for the work to begin on the first day of the project. Client will ensure all appropriate power/environmental requirements are provided to the specific project needs and environmental standards are being met prior to start date. This includes rack space, power and cooling. Client will verify all cabling requirements are completed prior to the beginning of the project. Client will clearly identify, in writing to GTRI and in advance of any Services to be provided, all Client Property that will be placed under control of GTRI during the time in which the Services are provided. This list will be confirmed in writing during the project kickoff meeting and maintained and updated in writing as necessary by Client through the life of the project. Badge access will be provided or dedicated escort made available to expedite implementation GTRI engineer(s) will be able to leverage their own laptop or the Client will provide dedicated loaner equipment for the GTRI engineer(s) to perform their tasks Project Assumptions Client will provide server hardware that meets or exceeds Cisco ISE 2.1 requirements Client will work with GTRI to identify any non-redundant systems and servers, and those services will be specifically referenced in the downtime request communications to the client users. Client and GTRI engineer may determine that upgrades of secondary devices be accomplished at a separate downtime period. Client will coordinate downtime necessary for upgrades. Planning tasks will be performed during normal business hours. All required IOS upgrades needed to meet NAC requirements are client responsibility to be performed prior to start of work. All licensing will be acquired by client Up to 3 client machines will be provided by client for testing Client PKI infrastructure is current and in good working order Client AD infrastructure has the ability to issue Device and User certificates to endpoints GTRI Statement of Work CoFC NAC Pilot SOW 11.01.2016 © 2016 GTRI, All Rights Reserved | Privileged and Confidential 8 OPP- 5. Project Pricing This pricing is for GTRI to complete the work previously defined in this document. This is a Firm Fixed Priced (FFP) engagement based on the information that has been collected from the Client and the assumptions defined above. If any changes are required, the Client will follow GTRI’s Change Order Process to make any necessary adjustments. Below is a breakdown of project billing milestones, which upon completion, authorizes GTRI to issue an invoice for the amount shown. Project Billing Milestone (Invoiced Part No. SV-FFPSOW) Services Price per Milestone Project Milestone (1): Project Initiation $12,195.84 Project Milestone (2): ISE Planning Phase $12,195.84 Project Milestone (3): ISE Deployment $12,195.84 Project Milestone (4): Project Close and Acceptance $4,065.28 Subtotal: $40,652.80 Estimated Travel Expenses - Billed as Actual: $467.21 Total Services Price: $41,120.01 All project pricing is quoted to occur during normal business hours, Monday through Friday, 8am - 5pm, excluding holidays, unless otherwise defined in this statement of work. Engineering time used outside of normal business hours may require a change order detailing the work to be completed and any associated costs for work to be completed outside of normal business hours. All prices are quoted in U.S dollars. Prices do not include tax, freight, or customs charges. The services pricing for this agreement is good for 90 days from the date it is issued. If the proposed start date for the project is greater than 90 days from the creation of this document then this document will potentially need to be revised. GTRI and Client agree that we have read this Statement of Work, its associated Master Sales Agreement, understand them, and agree to be bound by their terms and conditions. BY SIGNING BELOW, YOU ARE AGREEING TO THE MSA WHICH IS INCORPORATED HEREIN BY REFERENCE. Additionally, GTRI and Client mutually agree that a photocopy of this document shall be treated as if it were an original. Client also agrees that the contents of the document are proprietary, privileged and confidential and should not be shared with any other entity outside of GTRI and Client. Requested Project Start Date: GTRI Statement of Work CoFC NAC Pilot SOW 11.01.2016 © 2016 GTRI, All Rights Reserved | Privileged and Confidential 9 OPP- 6. Signature Page Agreed to: Printed Name Date Project Pricing.This pricing is for GTRI to complete the work previously defined in this document. This is a Firm Fixed Priced (FFP) engagement based on the information that has been collected from the Client and the assumptions defined above. If any c Signature Title Printed Name Date Purchase Order #: