OSS Corporate Capabilities
OSS has invested in our corporate infrastructure and capabilities so that we can effectively and securely support our customers and employees. Our corporate infrastructure begins with the Microsoft Government Community Cloud High (GCC High) environment, an ITAR/EAR compliant DoD-approved CUI Impact Level 5 platform. We utilize GCC High SharePoint Online for all of our corporate functions and documentation management, as well as for our Employee Portal. We utilize the Unanet GovCon ERP for timekeeping and program control, hosted in Unanet’s secure GovCloud environment, which complies with government standards as set forth in the Federal Acquisition Regulation. We have established policies and procedures for creating general ledger accounts, recording of costs (direct, indirect, and unallowable), billing, timekeeping, and monitoring indirect rates, to name a few. OSS utilizes UKG, an enterprise Human Resources Information System (HRIS), that provides payroll, performance management, training, and recruiting capabilities.
OSS Cyber Focus
One of OSS's capability focus areas lies in ensuring robust compliance with regulations, such as the 52.204-21 Basic Safeguarding of Covered Contractor Information Systems (Jun 2016). Beyond that, we have proactively implemented various standards, compliance measures, and corporate systems to offer reliable and secure support to our customers and employees. These include adhering to Defense Federal Acquisition Regulation (DFAR) Cyber National Institute of Standards and Technology (NIST) 800-171 Compliance, engaging in cyber monitoring and assessments in collaboration with Defense Cyber Crimes (DC3), Defense Industrial Base Collaboration Environment (DCISE), National Security Agency (NSA) Cyber Assistance Program (NSCAP), and the Missile Defense Agency (MDA) Cyber Assistance Team (CAT). Our security infrastructure comprises Security Information Event Management (SIEM) and a Security Operation Center (SOC) for effective threat detection. We prioritize vulnerability testing and integration into real-time DoD-assisted threat detection, and to ensure reliable IT support services, we partner with Simple Helix, a professional IT provider offering hardware, software, and network support.
