NCIM Aanvragen

Op deze site vind u al onze openstaande aanvragen. Via onderstaande button kunt u zich bij ons inschrijven.

Inschrijven

Aanmelden

Je kunt je CV uploaden. Wij nemen contact met je op wanneer we een passende opdracht hebben gevonden.

Upload CV

Contact opnemen

Wanneer je vragen hebt kun je via het contactformulier contact met ons opnemen.

Contact

Aanvraag Id

14060

Datum aanvraag

03-06-2025

Rol

NISP Linux Engineering Services

NCIA, The Hague

Omschrijving

2025-0133, NISP Linux Engineering Services

Duties

The expert contractor’s personnel(s) shall carry out the specific tasks and provide the specific deliverables, as described in the Work Package table(s) below

	WP ID		Work Package Title
	WP1		Port latest released NISP (Oracle Linux) to latest released Oracle Linux 9
	NISP_OL is comprised of software and documentation, which allow the end user to install a secured Oracle Linux 8 onto bare metal, or update an existing installation. Several machine profiles are supported, such as AD member server, standalone server
	ID		Deliverable(s) Description
	D1		Bootable ISO image (compatible with boot from USB keys and BluRay) which allows to install NISP_OL with Oracle Linux 9 following the same or very similar procedures as NISP_OL with Oracle Linux 8.
	D2		Automatic build procedure to build the bootable ISO image from D1.
	D3		Standalone server fresh installation and configuration as Active Directory Member Server.
	D4		Updated documentation and procedures for NISP_OL with Oracle Linux 9 in the following documents: Software Installation Plan System Administration Manual
	D5		Updated information on supported hardware and virtualization environments in the Hardware Guide
	ID		Constraint(s) Description
	C1		Secure Boot shall be supported for installation from media and network.
	C2		Provided procedures must provide the service in an offline environment (no Internet connectivity).
	C3		Documentation source is in DocBook, however oXygen is available for near WYSIWYG editing.
	C4		Revision control used in NISP project is git with gitlab. All source is to be revision controlled.
	ID		Acceptance Criteria
	A1		Deliverables shall pass the full NISP Regression Test Suite, any test case redlines must be approved by test director and leading engineer.
	A2		Any provided code or code changes must pass SonarQube quality evaluation (same settings as rest of NISP project).
WP ID		Work Package Title
WP2		Application of OpenScap Security Rules on NISP Oracle and Redhat Linux 9
NISP_OL is comprised of software and documentation, which allow the end user to install a secured Oracle Linux 8 onto bare metal, or update an existing installation. Several machine profiles are supported, such as AD member server, standalone server.
ID		Deliverable(s) Description
D1		Successful application (remediation) of selected security rules NISP Oracle/RedHat Linux 9.
D2		Successful auditing of selected of security rules to NISP Oracle/RedHat Linux 9.
D3		Documentation of changes to security rules required for successful remediation and rationale for change.
D4		Documentation of changes to security rules required for successful auditing and rationale for change.
D5		Adaptation of security rules to different machine profiles (standalone server, member serve).
ID		Constraint(s) Description
C1		Security Rules from Oracle Linux 8 DISA STIG or Oracle/RedHat Linux 9 SCAP Security Guide.
C2		Provided procedures must provide the service in an offline environment (no Internet connectivity).
C3		Application and auditing of security rules using oscap commands.
C4		Revision control used in NISP project is git with gitlab.
C5		Changes to security rules shall be traced in revision control tool.
ID		Acceptance Criteria
A1		Machine shall pass the full NISP Regression Test Suite after application of security settings, any test case redlines must be approved by test director and leading engineer.
A2		Security settings shall be applied successfully according to documented procedure
A3		Any provided code or code changes must pass SonarQube quality evaluation (same settings as rest of NISP project).

Required qualifications

Contractor’s personnel – MANDATORY Requirements
hold a valid NATO SECRET Security Clearance.
have 3 years expertise relevant to the implementation of that work-package
have thorough knowledge of English, both written and spoken
have 3 years years’ experience with distributed revision control tools (i.e Git and GitLab)
must have passed RHCSA examination or possess equivalent knowledge

Contractor’s personnel – DESIRED Requirements

Prior experience of working in an international environment comprising both military and civilian elements.
Practical experience in defining and applying security profiles (auditing and remediation) with OpenSCAP on RHEL/OL 9
Practical experience in creating RPM packages on RHEL/OL 9
Practical experience creating SELinux policies to confine system services RHEL/OL 9
Practical experience configuring the bootloader on RHEL/OL9 9

Reageren op aanvraag

Naam

e-mail

Telefoon

Opmerking

Voeg CV toe (doc, docx of pdf)