Organizational Structure of the Social Security Administration

SSA Organizational Manual: Chapter S4 - The Office of the Chief Information Officer

  1. Mission
    1. The Office of the Chief Information Officer (OCIO) directs the conduct of systems and operational integration and strategic planning processes, and the implementation of a comprehensive systems configuration management, database management and data administration program. Initiates software and hardware acquisition for SSA and oversees software and hardware acquisition procedures, policies and activities. Directs the development of operational and programmatic specifications for new and modified systems, and oversees development, validation and implementation phases. In addition, as the Chief Information Officer (CIO) participates as a member of the Federal CIO Council. The CIO is the focal point for SSA’s application of the Clinger-Cohen Act IT management reforms. Responsibility includes managing SSA’s IT investment process and assessing the performance of the agency’s major IT investments. Administers SSA’s records management program and serves as the liaison with the National Archives and Records Administration and General Services Administration on records issues. Manages and directs SSA’s overall information systems security program.
  2. Organization
    1. The Chief Information Officer (S4)
    2. The Deputy Chief Information Officer (S4)
    3. The Immediate Office of The Chief Information Officer (S4C)
      1. The Enterprise Architecture and Innovation Staff (S4C-6)
    4. The Office of Enterprise Information Systems (S4S)
    5. The Office of Systems Architecture (S4V)
    6. The Office of Benefit Information Systems (S4W)
    7. The Office of Disability Information Systems (S4X)
    8. The Office of IT Financial Management and Support (S44)
    9. The Office of Information Security (S47)
    10. The Office of Digital Transformation (S48)
    11. The Office of Systems Operations and Hardware Engineering (S49)
  3. Functions
    1. The Chief Information Officer (S4) is directly responsible to the Commissioner for carrying out the OCIO mission and providing general supervision to the major components of OCIO. In addition the CIO is a member of the Federal CIO Council. The CIO is the focal point for SSA’s application of the Clinger-Cohen Act IT management reforms.
    2. The Deputy Chief Information Officers (S4) assist the Chief Information Officer in carrying out his/her responsibilities and perform other duties as the Chief Information Officer may prescribe. The Deputy Chief Information Officers serve as the Acting CIO in the absence of the CIO. In addition, the Deputy Chief Information Officers are responsible for overseeing IT Operations and IT Modernization, including business community support, developing software systems, and maintaining the agency’s IT infrastructure and network.
    3. The Immediate Office of The Chief Information Officer (S4C) provides The Chief Information Officer and the Deputy Chief Information Officers with management support on the full range of their responsibilities including human capital planning, IT succession, employee engagement, communications, management assistance, staffing/recruitment, performance management, classification/organization management, space/facilities/property management, travel management, labor relations, procurement/micropurchasing, assignment and correspondence tracking, etc.
      1. The Enterprise Architecture and Innovation Staff (S4C-6), who reports to the CIO, provides leadership and direction for developing SSA’s Enterprise Architecture (EA) program and enterprise approach to how SSA explores, develops, and integrates new technology and IT solutions. Directs the development of and assures the standards and procedures are followed to improve the agency’s programmatic, administrative and management information systems environment. Works to lead the agency in incubation projects to provide future capabilities to support the business needs now and into the future.
    4. The Office of Enterprise Information Systems (OEIS) (S4S) designs, develops and maintains SSA’s mission critical earnings, enumeration, administrative and customer information systems, enterprise services and applications. OEIS collaborates with business stakeholders to identify and understand business cases/needs and define system requirements. Responsibilities include the technical design, bimodal development and implementation of new systems and modifications to existing systems, software application validation, user acceptance testing, and post-implementation reviews. OEIS also evaluates the effect of proposed legislation, policies, regulations and management initiatives to determine the technical impact on these systems, including the procurement of commercial software products, as required. The broad systems areas for which OEIS is responsible include: enumeration (SSA) and verification, customer information, enterprise services, earnings establishment, corrections and employer data, death processing, integrity review and audit, anti-fraud, communications, financial processing and accounting, human resources and payroll, online validation and testing, a variety of workload control and tracking applications, and internal and external data exchanges.
    5. The Office of Systems Architecture (OSA) (S4V) identifies the strategic information technology (IT) resources needed to support SSA business processes and operations and the transition processes for researching, demonstrating and implementing new technologies in response to the agency’s strategic vision. The office directs Data Administration/Data Management to help assure data quality and consistency across the agency’s programmatic, administrative and management information systems. Data Administration/Data Management develops and executes architectures, policies, practices and procedures that properly manage the full data lifecycle needs of the enterprise to assure data is shareable, reusable and described at the enterprise level. The office directs SSA’s database integration activities to improve the administration of the agency’s programmatic, administrative and management information databases and to implement modern database management systems technology. OSA promotes awareness and adoption of new practices in software development by playing an active role in the implementation and use of the Modern Development Environment, mentoring existing and new software developers, implementing best practices and methodologies and augmenting software development activities. OSA directs a comprehensive information technology architecture program to modernize the agency’s IT applications and infrastructure. The office designs, develops and implements the architectures used to manage the storage and routing of document images along with the retention information for these electronic images as they relate to official agency records. OSA plans and directs multi-platform enterprise software development facilities to support applications development and validation personnel. The office designs, develops, implements and maintains automated test methods, test data systems and test utilities used to provide test data management and batch execution services for software testing in the test environment. OSA directs the agency’s implementation and management of Service Oriented Architecture (SOA). OSA manages the Help Desk Initiatives Support Services (HDISS) contract. The HDISS contract provides technical resources and support for SSA’s standard desktop and laptop software to all SSA employees and contractors through the SSA Technology Assistance Center (STAC); desktop support and network administration to the Office of the Commissioner and various other executive-level offices; and technical assistance to the SSA developers in the design and development of applications using web-based software tools through Web Engineering Support Services.
    6. The Office of Benefit Information Systems (OBIS) (S4W) is responsible for programmatic and management information systems which support the Nation’s Retirement and Survivors Insurance (Title II), Supplemental Security Income (Title XVI) and Medicare (Title XVIII) initial claims, post-entitlement, payments, audit, integrity review, Treasury operations and notice implementations. OBIS designs, develops, analyzes, coordinates and implements new and modernized application systems and services software to meet SSA’s automation needs in the broad area of Title II and Title XVI programmatic processes for such areas as earnings, eligibility/entitlement, redeterminations, pay/computations and debt management/recovery. OBIS is also responsible for the design, development, analysis, implementation and maintenance of application software and services supporting the Medicare program (Title XVIII). OBIS evaluates the effect of proposed legislation, policies, regulations and management initiatives to determine the impact on the applications and services supported by the organization. OBIS collaborates with internal and external stakeholders across the business systems and contractor communities to deliver innovative information technology (IT). OBIS ensures compliance with applicable software development standards and actively strives to improve agility, working with the Chief Technology Officer and other stakeholders in adopting innovative technologies, methodologies and processes. OBIS supports the stakeholder community through effective communications, configuration control and release planning. The organization ensures timely notification of planned and unforeseen outages, responsiveness in restoring services and due diligence in addressing data anomalies in an automated fashion when practicable.
    7. The Office of Disability Information Systems (ODIS) (S4X) directs, develops, implements and maintains systems that support the agency’s new and modified Disability and health insurance programs. ODIS is also responsible for post-entitlement activities associated with the Disability Program. ODIS is responsible for the all phases of the systems development lifecycle. These responsibilities include determining the business needs and detailed requirements, identifying automation solutions for user needs, analyzing existing computer applications, preparing, designing and developing software, testing systems, implementing security standards, documenting systems, accepting systems on behalf of SSA’s user community, implementing and installing new and modified systems and conducting post-installation evaluation. ODIS is responsible for long-range planning and analyses to define new and improved systems processes in support of agency needs and maintains a comprehensive, updated and integrated set of software programs. ODIS implements systems required by new legislation, regulations and SSA policy directives.
    8. The Office of IT Financial Management and Support (OITFMS) (S44) supports the Chief Information Officer (CIO) in planning and executing sound Information Technology (IT) investments for the agency, maximizing accountability, compliance, and value for the agency’s IT investments. OITFMS supports the CIO with the full range of his/her responsibilities as they relate to Capital Planning and Investment Control (CPIC) including IT planning, resource allocation, budget, cost/performance management, compliance, and reporting to higher-level monitoring authorities. The office supports the CIO in carrying out his/her financial and management activities. OITFMS provides overall management of the planning, development and execution of the IT Systems Budget for the agency and the Administrative Budget for the Office of the Chief Information Officer. The office develops policies and guidelines for the exercise of the CIO budget responsibility, and evaluates and appraises the manner in which CIO carries out these responsibilities. The office is responsible for IT training, internal controls, audits, contract management, software development lifecycle processes, Records Management and management of the Information Technology Investment Process. OITFMS supports development of the agency Information Resources Management (IRM) Strategic Plan and ensures that it aligns with the Agency Performance Plan. OITFMS manages a comprehensive, technical and project management training program to ensure OCIO staff can meet technological challenges and regulatory requirements. The office is responsible for providing oversight and guidance on audit programs directed at SSA, directs the OCIO Executive Assurance program ensuring internal controls are in place to meet prescribed guidance, as well as developing and maintaining OCIO Continuity of Operations Planning (COOP) documentation. OITFMS administers SSA’s Records Management program and serves as the liaison with the National Archives and Records Administration and General Services Administration on records issues. OITFMS provides a governance structure to implement, direct, and oversee implementation of the OCIO Enterprise Risk Management (ERM) program in support of the agency ERM.
    9. The Office of Information Security (OIS) (S47) is responsible for developing, managing and directing SSA’s IT security program. OIS develops, manages and provides oversight of functions for agency-wide IT security policies and procedures. OIS’ robust IT security program includes: providing security and PII awareness training and serving as liaison to components and systems developers; protecting the confidentiality, integrity and availability of SSA’s computer systems and information; identifying and implementing risk-based security controls; conducting compliance reviews and tracking security metrics to gauge compliance and effectiveness. OIS is also responsible for analyzing risks, vulnerabilities and trends to identify threats; identifying solutions to mitigate threats; and identifying appropriate risk mitigation strategies to support SSA’s evolving technology and business processes. These processes include a comprehensive penetration-testing program of both internal- and external-facing systems, reviewing application code for vulnerabilities before it is released to the production environment; and reporting on vulnerabilities in previously deployed applications and infrastructure. OIS is further responsible for the agency’s Identity, Credential and Access Management program. In this role, OIS is tasked with the design, development and deployment of security software to protect SSA systems through the authorization of access requests and logical access to SSA systems. The office also serves as the central Security Administrator for access to mainframe systems as the centralized Component Security Officers for OCIO components. Additionally, OIS is responsible for reporting the agency’s IT security posture to higher monitoring authorities including the Office of Management and Budget (OMB), the Department of Homeland Security (DHS), the Government Accountability Office (GAO) and other outside oversight organizations. OIS prepares various internal reports for Executive review and oversight as well. The office also interprets new guidance and recommendations from OMB and the National Institute of Standards and Technology and other applicable guidance. OIS is responsible for assessing risk to IT systems and its Security Assessment and Authorization program, which conducts risk assessments and compliance reviews of both on-going operations and new applications. OIS is responsible for reengineering both the Audit Trail System and the Comprehensive Integrity Review Program system. The office is the SSA lead for the Continuous Diagnostic and Mitigation program, which is mandated by DHS to improve the security posture of all Federal Executive Departments and Agencies. OIS operates SSA’s Security Operations Center (SOC), which is responsible for monitoring the agency’s network of potential intrusions and other software and hardware vulnerabilities 24 hours a day, 7 days a week. The SOC investigates and coordinates the correction of found vulnerabilities in cooperation with local Systems Administrators. Finally, OIS serves as the overall agency lead for IT incident and breach response; in this role, the Chief Information Security Officer serves as the Incident Commander and coordinates SSA’s response to any IT incidents.
    10. The Office of Digital Transformation (ODT) (S48) is a customer-focused, service-oriented organization within the Office of the Chief Information Officer. This office collaborates with agency business components and software engineering components within the OCIO to support the practical resolution of business needs through technology in a teamwork environment. ODT is primarily responsible for product/program/project management for the agency’s IT investments, which includes but not limited to SSA entitlement applications, SSA enterprise software and cross-cutting applications that support the agency’s core mission workloads. ODT enhances the end-user experience of SSA’s systems by applying proven user-centered design methods. This office manages the development and implementation of standards via the software development lifecycle as well as the agile lifecycle processes providing methods and procedures for software planning, tracking, requirements, design, development, validation and change control. This office provides a product/program/project management governance structure through the implementation of OCIO Quality Assurance Controls.
    11. The Office of Systems Operations and Hardware Engineering (OSOHE) (S49) directs, manages, and coordinates the planning, implementation, operation, and maintenance of SSA’s computer systems operations, enterprise Information Technology (IT) infrastructure and application services. OSOHE is accountable for designing, building, testing, delivering, operating, and managing the enterprise IT environment which resides within the agency’s data centers, and which is comprised of the computing, network, telecommunications, storage infrastructures and service delivery platforms. OSOHE monitors and provides 24x7 IT operations support for enterprise applications for the entire agency including DCO, Office of Hearings Operations (OHO), DDSs, OQP, OIG, OGC, etc. In addition, OSOHE monitors and maintains all computer storage and network assets and all electronic services residing at SSA’s data centers. OSOHE maintains infrastructure related to batch, integration testing, IT Security infrastructure, change management, database, print operations, Service Level Agreements (SLA) and infrastructure facility usage. The office performs governance activities associated with change and release management for applications and systems software, capacity planning, performance testing and the delivery of infrastructure services to “guarantee” a highly available environment (99.95% uptime) for Internet, SSN verification workloads, Business-to-Government and Government-to-Government data exchanges. OSOHE consists of fifteen divisions, the Network Operations Center (NOC), and six Remote Operations Communication Centers (ROCCs). It develops the specifications, executes the system implementation, and operates an in-house IT help desk to provide support, training and customer service to over 65,000 SSA employees, 30,000 DDS state employees, and 10,000 Industry Partners. The Office is responsible for Continuity of Operations Planning (COOP) at the target failover site to include site-identification, planning, and restoration of permanent services from the failed center. OSOHE is responsible for execution of the Disaster Recovery Plan, failed site-damage assessment and recovery of assets. The office is accountable for 24x7 operations stability, availability and security of the agency’s IT infrastructure and environment.

Subchapter S4S - Office of Enterprise Information Systems

  1. Mission
    1. The Office of Enterprise Information Systems (OEIS) designs, develops, and maintains SSA’s mission critical earnings, enumeration, administrative and customer information systems, enterprise services and applications. OEIS collaborates with business stakeholders to identify and understand business cases/needs and define system requirements. Responsibilities include the technical design, bimodal development and implementation of new systems and modifications to existing systems, software application validation, user acceptance testing, and post-implementation reviews. OEIS also evaluates the effect of proposed legislation, policies, regulations and management initiatives to determine the technical impact on these systems, including the procurement of commercial software products, as required. OEIS collaborates other components within the Office of the Chief Information Officer to support the practical resolution of business needs through technology in a teamwork environment. The broad systems areas for which OEIS is responsible include enumeration (SSN) and verification, customer information, enterprise services, earnings establishment, corrections and employer data, death processing, integrity review and audit, anti-fraud, communications, financial processing and accounting, human resources and payroll, online validation and testing, a variety of workload control and tracking applications, and internal and external data exchanges.
  2. Organization
    1. The Associate Commissioner for Enterprise Information Systems (S4S)
    2. The Deputy Associate Commissioner for Enterprise Information Systems (S4S)
    3. The Immediate Office of the Associate Commissioner for Enterprise Information Systems (S4S)
    4. The Division of Financial and Administrative Systems (S4SC)
    5. The Division of Data Exchange (S4SE)
    6. The Division of Earnings Systems (S4SG)
    7. The Division of Technical Support and Anti-Fraud (S4SH)
    8. The Division of Enumeration and Death Systems(S4SL)
    9. The Division of Communication (S4SM)
  3. Functions
    1. The Associate Commissioner for Enterprise Information Systems (OEIS) (S4S) is directly responsible to a Deputy Chief Information Officer for carrying out the OEIS mission and providing general supervision to the major components of OEIS.
    2. The Deputy Associate Commissioner for Enterprise Information Systems (OEIS) (S4S) assists the Associate Commissioner in carrying out his/her responsibilities and performs other duties as the Associate Commissioner may prescribe.
    3. The Immediate Office of the Associate Commissioner for Enterprise Information Systems (OEIS) (S4S) provides the Associate Commissioner and Deputy Associate Commissioner with administrative staff assistance, senior technical advice, planning and customer relations support on the full range of their responsibilities.
    4. The Division of Financial and Administrative Systems (S4SC)
      1. Elicits and documents user, business and functional requirements and performs analysis, design, development, testing, validation, maintenance and implementation functions for Administrative, Financial and Human Resources applications and products.
      2. Provides comprehensive automated solutions to support SSA’s administrative activities.
      3. Evaluates and reports the technical impact of legislative proposals, regulations and policy changes on existing financial/budget, human resources, and payroll software applications and architecture, and determines whether new development or modified software is required. Evaluates the potential application of Commercial-off-the-Shelf and Government-developed-off-the-Shelf software.
      4. Develops technical design specifications and software programs to satisfy user needs as defined in requirements documentation.
      5. Plans and conducts unit tests of newly-developed financial/budget, human resources, and payroll software applications systems and modifications to existing systems against user defined requirements and performance criteria.
      6. Develops and maintains a comprehensive, updated and integrated set of technical documentation and systems flowcharts.
    5. The Division of Data Exchange (S4SE)
      1. Manages, analyzes, elicits and captures requirements, validates and responds to information request/controls related to the applications and processes associated with verifications and data exchanges.
      2. Designs, develops and implements new or redesigned software to meet SSA’s automated data processing needs in the area of verifications and data exchanges.
      3. Produces automated solutions to provide internal and external data exchanges and verifications.
      4. Evaluates and reports the technical impact of legislative proposals, regulations and policy changes on existing verification and data exchange software applications and determines whether new development or modified software is required.
      5. Develops verification and data exchange software programs to satisfy user needs as defined in requirements documentation.
      6. Plans and conducts unit tests of newly-developed verification and data exchange systems and modifications to existing systems against user defined requirements and performance criteria.
      7. Develops and maintains a comprehensive, updated and integrated set of verification and data exchange technical documentation and systems flowcharts.
      8. Administers new and ongoing Social Security Number (SSN) verification and data exchange requests from private organizations, employers, prisons, and law enforcement agencies, as well as State, Federal and International agencies for:
        1. SSN
        2. Name
        3. Date of Birth
        4. Death
        5. Citizenship
        6. Income
        7. Resource
        8. Beneficiary
        9. Incarceration
      9. Analyzes and supports document imaging, electronic document management and electronic document workflow technologies related to SSA workflow processes.
      10. Provides long-range planning and analyses to define new improved processes that meet the requirements of pending legislation, policies and regulations.
      11. Supports analytical, business design, requirements and validation for viewing and/or manipulating documents housed in image repositories as well as the capture and indexing of scanned or faxed documents for storage into an image repository.
      12. Directs the design and implementation of an architecture that will sufficiently meet NARA guidelines for proper management of the agency’s official electronic records.
      13. Provides leadership and oversight of the Data Exchange product.
    6. The Division of Earnings Systems (S4SG)
      1. Analyzes user needs, defines requirements, develops system design specifications, develops, unit tests, validates, and implements new, modified, or redesigned software systems to satisfy user needs and meet SSA’s automated data processing needs in the broad area of employer wage reporting, wage data storage, earnings corrections, earnings maintenance, earnings user, and earnings management information.
      2. Produces automated solutions to provide summarized and detailed earnings data to internal and external customers.
      3. Evaluates legislative proposals, regulations and policy changes; reports the technical impact to existing earnings software applications and architecture, and determines whether new development or modified software is required.
      4. Develops and maintains a comprehensive, updated and integrated set of earnings systems technical documentation and systems flowcharts.
      5. Captures a 1% sample of work history for all issued SSNs for use in statistical studies, trustee reports and SSA publications.
    7. The Division of Technician Support and Anti-Fraud (S4SH)
      1. Evaluates and reports the technical impact of legislative proposals, regulations and policy changes on audit and anti-fraud software applications and architecture, and determines whether new development or modified software is required.
      2. Develops audit, internal controls, and integrity review, software programs to satisfy user needs as defined in requirements documentation.
      3. Plans and conducts unit tests of newly-developed customer engagement.
      4. Collects and maintains auditable events (transactions and queries) from employees and the public to support the agency’s ability to prevent, deter, detect, and investigate instances of waste, fraud and abuse.
      5. Provides for the query and retrieval of auditable events for the purpose of detecting and investigating potential instances of waste, fraud and abuse.
      6. Develops and applies selection criteria for transactions and queries generated by employees and the public to support the agency’s ability to prevent, deter, detect and investigate instances of waste, fraud and abuse.
      7. Selects cases for further review and investigation to detect and deter waste, fraud and abuse of SSA programs.
      8. Develops and maintains the standard test methodology for validation efforts. This fully documented methodology is composed of three distinct phases: Pre-Validation, Validation and Post-Validation activities.
      9. Elicits and documents user, business and functional requirements and provides analysis for Benefit Applications.
      10. Designs, develops, validates and implements software to meet the needs of public inquiries and appointments for teleservice centers and field offices.
      11. Supports employer telephone processes to provide quick access to SSA records, facts, policies, procedures and reference material on earnings correction issues.
    8. H. The Division of Enumeration and Death Systems (S4SL)
      1. Analyzes user requests, develops requirements, validates and responds to information requests/controls for enumeration and death projects.
      2. Defines SSA-approved user needs and requirements based on business needs for automated data processing services pertaining to enumeration and death.
      3. Designs, develops and implements public-facing and technician based software to issue Social Security Numbers (SSNs) and provide original and replacement SSN cards to eligible recipients.
      4. Develops enumeration and death management information application systems and performs data extracts.
      5. Produces automated solutions to capture, process, and appropriately share death information.
      6. Evaluates and reports the technical impact of audits, FOIA requests, legislative proposals, regulations and policy changes on existing enumeration and death software applications and databases.
      7. Provides leadership and oversight of the IT modernization Enumeration and Death products.
    9. The Division of Communication (S4SM)
      1. Develops notices relating to a beneficiary’s eligibility and entitlement to benefits under:
        1. Title II (Federal Old-Age, Survivors, and Disability Insurance Benefits),
        2. Title VIII (Special Benefits for Certain World War II Veterans),
        3. Title XVI (Supplemental Security Income), and
        4. Title XVIII (Health Insurance for the Aged and Disabled) of the Social Security Act.
      2. Develops and supports global agency notice initiatives including debt management notices, manual notice processing applications, and the generation of notices in various output formats.
      3. Develops and provides the technical infrastructure, software, current and future communications architecture and programming for the Communications Product to support the delivery and formatting of manual and automated SSA notices in various output formats (e.g., print, Braille, Data CD, Audio CD, Large Print, etc.) for Program Service Centers and Field Offices.
      4. Develops, supports, and provides the technical infrastructure and software that supports notice language development and maintenance activities, language search facility, language repositories, and the automated mailing of SSA’s most frequently requested pamphlets to the public.
      5. Analyzes and evaluates legislative proposals, regulations and policy requirements and changes to Title II, Title XVI, and Title XVIII processes as changes relate to notice communications; reports on the impact to Title II, Title XVI, and Title XVIII processes, as well as on short- and long-range plans.
      6. Intercedes on behalf of the users with other OCIO components to resolve Title II, Title XVI, and Title XVIII system discrepancies related to notice processes.
      7. Coordinates with our business partners in SSA central and field offices and with other Federal and State agencies to ensure the efficiency and effectiveness of program information needs and overall systems support.

Subchapter S4V - Office of Systems Architecture

  1. Mission
    1. The Office of Systems Architecture (OSA) (S4V) identifies the strategic information technology (IT) resources needed to support SSA business processes and operations and the transition processes for researching, demonstrating and implementing new technologies in response to the agency’s strategic vision. The office directs Data Administration/Data Management to help assure data quality and consistency across the agency’s programmatic, administrative and management information systems. Data Administration/Data Management develops and executes architectures, policies, practices and procedures that properly manage the full data lifecycle needs of the enterprise to assure data is shareable, reusable and described at the enterprise level. The office directs SSA’s database integration activities to improve the administration of the agency’s programmatic, administrative and management information databases and to implement modern database management systems technology. OSA promotes awareness and adoption of new practices in software development by playing an active role in the implementation and use of the Modern Development Environment, mentoring existing and new software developers, implementing best practices and methodologies and augmenting software development activities. OSA directs a comprehensive modern software support program focused on evaluating, teaching and implementing modern software development technologies, architectures and practices within the OCIO. The office designs, develops and implements the architectures used to manage the storage and routing of document images along with the retention information for these electronic images as they relate to official agency records. OSA plans and directs multi-platform enterprise software development facilities to support applications development and validation personnel. The office designs, develops, implements and maintains automated test methods, test data systems and test utilities used to provide test data management and batch execution services for software testing in the test environment. OSA directs the agency’s implementation and management of Service Oriented Architecture (SOA). OSA manages the Help Desk Initiatives Support Services (HDISS) contract. The HDISS contract provides technical resources and support for SSA’s standard desktop and laptop software to all SSA employees and contractors through the SSA Technology Assistance Center (STAC); desktop support and network administration to the Office of the Commissioner and various other executive-level offices; and technical assistance to the SSA developers in the design and development of applications using web-based software tools through Web Engineering Support Services.
  2. Organization
    1. The Associate Commissioner for Systems Architecture (S4V)
    2. The Deputy Associate Commissioners for Systems Architecture (S4V)
    3. The Immediate Office of the Associate Commissioner for Systems Architecture (S4V)
    4. The Division of Enterprise Architecture and Data Administration (S4VA)
    5. The Division of Database Systems (S4VB)
    6. The Division of Enterprise Software Engineering Infrastructure (S4VC)
    7. The Division of Testing Services (S4VH)
    8. The Division of Enterprise Software Architecture (S4VK)
    9. The Division of Business Intelligence and Data (S4VM)
  3. Functions
    1. The Associate Commissioner for Systems Architecture (S4V) is directly responsible to a Deputy Chief Information Officer for carrying out the OSA mission and providing general supervision to the major components of OSA.
    2. The Deputy Associate Commissioners for Systems Architecture (S4V) assist the Associate Commissioner in carrying out his/her responsibilities and perform other duties as the Associate Commissioner may prescribe.
    3. The Immediate Office of the Associate Commissioner for Systems Architecture (S4V) provides the Associate Commissioner and Deputy Associate Commissioners with senior technical support; management assistance; technology leadership and planning; resource oversight and management; support for legislation and other initiatives on the full range of their responsibilities; and develops, directs and maintains the OSA COOP program, including periodic testing and training.
    4. The Division of Enterprise Architecture and Data Administration (S4VA)
      1. Works with SSA technical staff to define application, data and infrastructure architectures.
      2. Develops and maintains enterprise data models and other documentation that define SSA’s existing and planned (target) data architectures.
      3. Provides guidance to SSA IT projects and proposals to ensure their alignment with the Enterprise Data Architecture.
      4. Reviews higher monitoring authority reporting requirements and directs the development and maintenance of documentation to respond to those requirements.
      5. Provides technical support, oversight and automation for SSA’s technology Software Governance and Compliance initiatives including Enterprise Software Engineering Tools (ESET) Management activities and SharePoint.
      6. Works with business components to identify and coordinate enterprise-wide technology and data architectural needs.
      7. Directs the development of CIO-wide data administration policies, procedures and standards for the specific phases of the lifecycle development process and development of methods to assure the quality of systems products.
      8. Directs the integration of data and process models, as well as software designs. Tests new ideas in a laboratory environment and offers potential solutions to the agency for implementation.
      9. Directs the development of requirements for standardizing data collection, storage and use across application areas.
      10. Provides data administration program expertise, management direction and oversight for crosscutting segments for all SSA systems initiatives, legislative initiatives or projects involving the initiation, interpretation and/or the implementation of programmatic, administrative and management information systems.
      11. Provides data administration and services as well as a variety of high-level coordinative, analytical, consultative and advisory services to SSA as a whole relative to highly visible and complex systems initiatives.
      12. Develops and maintains the Data Management architecture, including the Data Resources Management System and other components of the official enterprise repository of data and metadata for SSA systems.
      13. Directs the establishment of automated documentation products and analytical products to support software engineering and database integration.
      14. Provides direction in identifying techniques and tools that support data resource management as well as evaluating new data resource technology to the SSA environment.
      15. Oversees the suite of software engineering tools that must be controlled and supported by centralized mechanisms, the Enterprise Software Engineering Tools (ESET) Management Board. While any tool used to produce software can be described as a software engineering tool, only those tools determined to need central support are Enterprise Software Engineering Tools. One of the most important tasks controlled by this process is making those determinations.
      16. Provides Global Reference Table (GRT) support which includes maintaining the GRT Architecture, GRT Portal, GRT Registration Process and value set tables as defined by policy owners/sponsors and directs development of access services for reuse and to ensure accurate use of GRTs.
      17. Supports the Source Code Process which generates code that provides access to SSA’s programmatic master files and IDMS databases, maintains data integrity of IDMS databases and provides CICS screen mapping for SSA programmatic application areas.
      18. Supports enterprise SharePoint governance, administration and user support.
      19. Supports enterprise Web Content Management System (WCMS) Governance.
    5. The Division of Database Systems (S4VB)
      1. Develops and maintains the Master Data Access Method (MADAM) and DB2 software that manages SSA’s major Master Files, providing overall management to those files.
      2. Develops and maintains the Application Programming Interface (API) to the major Master Files.
      3. Performs database design, database administration, and technical support of the major Master Files, SSA’s enterprise databases and other enterprise persistent data stores using commercial and open source database management systems and other data storage and retrieval products.
      4. Serves as systems architects in the design, construction and implementation of enterprise database and enterprise persistent data infrastructures.
      5. Performs the backup and recovery of SSA’s enterprise databases, ensuring compliance with SSA’s Database Backup and Recovery Executive Assurance/Internal Control.
      6. Configures and provides ongoing operational support to ensure the high availability and disaster recovery of SSA’s enterprise database infrastructures.
      7. Implements, maintains and provides operational support for SSA’s enterprise data acquisition infrastructure.
      8. Provides direct support for the acquisition, validation and configuration of database management systems and database administration support software.
      9. Directs the design and development of new or modified software for accessing SSA databases and files used in information technology processes; and directs the selection and implementation of commercial packages for this purpose.
      10. Provides Procedural Database Administrator (DBA) support as experts in database and SQL tuning.
      11. Provides direction in the design, development and implementation of applications support software to the extent it facilitates interaction between databases and applications software.
      12. Directs the development of project plans reflecting the tasks, schedules and resource requirements necessary to implement database management and enterprise persistent data stores as designated by SSA’s software development standards and best practices.
      13. Conducts assessment activities to identify vulnerabilities with SSA’s enterprise data store infrastructures; and ensures that these infrastructures comply with appropriate secure configuration guidelines such as US Government Compliance Baselines (USGCB).
      14. Provides 24x7 365-day emergency on call support for SSA’s production enterprise databases.
    6. The Division of Enterprise Software Engineering Infrastructure (S4VC)
      1. Manages the multi-platform Enterprise Software Engineering Facility (ESEF) environment which includes Mainframe, Client Server/Web (Internet/Intranet) platforms, Server/Workstation and mobile computing configurations, transaction processing software configurations (e.g., CICS, WMQ), multi-platform source code management, WebSphere (z/OS and Solaris) to provide an integrated set of automated tools, techniques and services in support of SSA’s application development and validation community.
      2. Administers and maintains software engineering facilities which provide a wide range of hardware and software platforms for developers and validators of Client/Server and Web-based (Internet/Intranet) applications. For Windows-based systems, facilities include development and validation environments and a walk-in testing center, the Windows Development Facility (WDF). For UNIX, facilities include development and validation environments housed in the UNIX Testing Center (UTC). For both Windows and UNIX, provides tools environments including software development and validation tools. For mainframe systems (z/OS – CICS, Batch, WebSphere, WMQ), facilities include development and validation environments with required tools/services.
      3. Administers and maintains ESEF environment servers, workstations, and mobile devices for the software engineering components in OCIO. This includes both hardware and software configurations used by application software engineers and their management. Provides centralized Site LAN Coordinator (SLC) services, training and governance to the ESEF SLC community. Coordinates the management of electronic mail for the OCIO community.
      4. Manages the Help Desk Initiatives Support Services (HDISS) contract. The HDISS contract provides technical resources and support for SSA’s standard desktop and laptop software to all SSA employees and contractors through the SSA Technology Assistance Center (STAC); desktop support and network administration to the Office of the Commissioner and various other executive level offices; and technical assistance to the SSA developers in the design and development of applications using web-based software tools through Web Engineering Support Services.
      5. Provides technical guidance for developers of multi-platform programmatic and management information applications throughout each phase of the systems development lifecycle including design, development, validation, integration, production and maintenance and provides infrastructure support for development and validation.
      6. Provides automated software code management facilities including configuration management, quality control and library migration for all ESEF multi-platform software development and validation activities.
      7. Provides assistance to users of the ESEF environment by staffing a Help Desk that performs real time monitoring, automated call tracking, and technical assistance in the use of the ESEF software/hardware infrastructure. Disseminates technical information relative to the ESEF software/hardware infrastructure and chairs a quarterly ESEF User Group Meeting attended by software developers and validators.
      8. Serves as liaison between the ESEF user community and the staffs managing and operating the ESEF mainframe facilities to ensure that user needs are being met and that all operating system and vendor software is fully tested before implementation to avoid adverse impact on ESEF users.
      9. Conducts performance evaluation, monitoring and capacity planning for ESEF environment hardware and software to ensure that appropriate service levels are continuously maintained. Projects future capacity needs to meet software development goals and projects.
      10. Conducts testing and performance impact analysis of new or upgraded mainframe software engineering tools before they are installed in the ESEF environment to ensure optimum ESEF performance.
      11. Manages the ESEF multi-platform storage environment (tape, DASD on distributed platform and mainframe). Manages SAN storage and backup for UNIX and Windows.
      12. Coordinates and conducts multi-platform disaster recovery testing of the ESEF.
      13. Administers and maintains a multi-platform WebSphere infrastructure to support the development and validation stages of the lifecycle.
      14. Provides Windows development, validation, and tools environments to support a managed lifecycle for Windows-based software.
      15. Designs, develops, maintains and oversees automated software migration methods to ensure segregation of duties in the software development, validation, integration and production stages of the lifecycle, under the Federal Financial Management Improvement Act of 1996 (FFMIA).
      16. Installs, tests, implements and, sometimes procures, third party productivity tools to support the multi-platform development and validation stages of the software development lifecycle. Manages the maintenance of this software to ensure that it is up to date. Assists users to utilize the tools effectively.
      17. Administers and maintains an infrastructure for an External Testing Environment (ETE) for testing other agency and vendor applications that interact with production applications.
      18. Supports Proofs-of-Concepts (POCs).
    7. The Division of Testing Services (S4VH)
      1. Designs, develops, implements and maintains automated test methods, techniques and procedures, test files, test databases, and tester productivity tools used in the systems-level functional and user acceptance testing of SSA’s programmatic, administrative, and management information systems.
      2. Builds test systems that simulate the target production system within the parameters of SSA’s Enterprise Software Engineering Facility using in-house and commercially available software development tools and products.
      3. Executes and controls systems-level functional tests of programmatic, administrative, and management information systems; ensures that the correct software versions are under test; and provides appropriate test output for evaluation and systems acceptance and certification.
      4. Designs, develops, implements and maintains automated test case design tools for regression testing of mainframe and web-based (Intranet) applications.
      5. Develops and manages the environment in which functional testing occurs.
      6. Acts as the Business Owner of the Validation Planning System to support the mandatory requirement to create Validation Plans for SSA-developed software.
      7. Develops and maintains a Validation Database (VDB) and the Enterprise Test Data Management System (ETDMS) which provide a coordinated collection of data selected from production records, sanitized and used as test cases to fill specific testing requirements.
      8. Develops and maintains software that sanitizes incoming Federal Tax Information and Personally Identifiable Information (FTI/PII) stored in the ETDMS and VDB.
      9. Develops, executes and monitors software and processes to enable the coordinated backup, restore, conversion and accretion of Validation test data.
      10. Develops and maintains JUDGE (i.e., JAWS Using a Data Generated Environment), a utility that makes CICS screens compatible with the JAWS screen reader, used by the visually impaired staff. This provides an alternative to expensive screen redesign and application changes.
    8. The Division of Enterprise Software Architecture (S4VK)
      1. Serves as the agency focal point for technologies related to document imaging, electronic document management and records management.
      2. Manages the repositories responsible for housing unstructured data such as images, documents, digital recordings plus other types of multimedia.
      3. Provides the capability to view and/or manipulate documents housed in image repositories supported by SSA.
      4. Provides the capability to capture and index scanned or faxed documents for storage into an image repository.
      5. Directs the design and implementation of the architectures needed to efficiently manage and provide access to document images.
      6. Provides direction in the design, development and implementation of applications that support software to facilitate interaction between document imaging and applications software.
      7. Develops the infrastructure to support the architecture for management of the agency’s official electronic records.
      8. Designs and develops the software needed to place any official agency electronic record under the control of a records management system.
      9. Responsible for the strategic direction for OCIO Service-Oriented Architecture (SOA).
      10. Develops, communicates and executes SOA governance activities and standards.
      11. Responsible for coordination of activities necessary to support and integrate SOA activities throughout OCIO.
      12. Provides SOA-related consulting support to OCIO projects, offering practical assistance and guidance in applying SOA best practices, processes and utilizing SOA tools.
      13. Responsible for development of select enterprise services.
      14. Responsible for the implementation of enhancements to the SOA design.
      15. Responsible for the OCIO Framework.
      16. Responsible for the development activities for the User Experience Framework (UEF).
      17. Responsible for the development of Enterprise Services and Application Programming Interfaces using Mode-2/modern techniques.
      18. Responsible for evaluating, teaching and implementing modern software development technologies, architectures and practices within the OCIO.
      19. Promotes use of Modern Development Environment by mentoring existing and new software developers, implementing best practices and methodologies, and augmenting software development activities.
      20. Responsible for introducing new technology and practices to improve OCIO’s overall ability to perform software engineering with the goal of reducing the overhead and bloat associated with releasing software.
      21. Responsible for providing enterprise-level guidance on modern Software Engineering Architectures to provide a best practices approach for developing software applications at SSA.
    9. The Division of Business Intelligence and Data (S4VM)
      1. Designs, develops, and implements new or redesigned systems in the broad areas of business intelligence, work measurement, and cost analysis.
      2. Responsible for the business intelligence architecture and data warehouse development and maintenance in support of agency systems.
      3. Maintains the business intelligence repository, which houses data definition, calculations, and transformation and business rules in support of business intelligence applications.
      4. Designs, develops and implements systems associated with office and organizational information and select enterprise web services.
      5. Evaluates and reports the technical impact of legislative proposals, regulations and policy changes on existing business intelligence, work measurement, and cost analysis software applications and architecture, and determines whether new development or modified software is required.
      6. Develops business intelligence, work measurement and cost analysis software programs to satisfy user needs as defined in requirements documentation.
      7. Plans and conducts unit tests of newly-developed business intelligence, work measurement and cost analysis systems and modifications to existing systems against user defined requirements and performance criteria.
      8. Develops and maintains a comprehensive, updated and integrated set of business intelligence, work measurement and cost analysis technical documentation and systems flowcharts.
      9. Provides technical support consultation and assistance to end-users and developers in the use of business intelligence reporting, extract transformation load (ETL), and mapping software. Directs the development of support procedures to monitor user problem resolution and the implementation of software upgrades.
      10. Provides technical support, consultation and assistance to end-users and developers in the use of Data Analytics and Big Data
      11. Manages, analyzes, elicits and captures requirements and validates and responds to information requests/controls related to the applications and processes associated with:
        1. Business Intelligence (BI)
        2. Data Analytics
      12. Responds to Business Intelligence (BI), data analytics, and management information (MI) requests (using data from SSA Master Files and Enterprise data sources) at the Executive, Congressional, Programmatic and Administrative levels.
      13. Provides Business Intelligence (BI) solutions to facilitate data-driven decisions through advanced data analytics.
      14. Provides Management Information (MI) solutions, data capture and reporting across SSA business lines.

Subchapter S4W - Office of Benefit Information Systems

  1. Mission
    1. The Office of Benefit Information Systems (OBIS) is responsible for programmatic and management information systems which support the Nation’s Retirement and Survivors Insurance (Title II), Supplemental Security Income (Title XVI) and Medicare (Title XVIII) initial claims, post-entitlement, payments, audit, integrity review, Treasury operations and notice implementations. OBIS designs, develops, analyzes, coordinates and implements new and modernized application systems and services software to meet SSA’s automation needs in the broad area of Title II and Title XVI programmatic processes for such areas as earnings, eligibility/entitlement, redeterminations, pay/computations and debt management/recovery. OBIS is also responsible for the design, development, analysis, implementation and maintenance of application software and services supporting the Medicare program (Title XVIII). OBIS evaluates the effect of proposed legislation, policies, regulations and management initiatives to determine the impact on the applications and services supported by the organization. OBIS collaborates with internal and external stakeholders across the business systems and contractor communities to deliver innovative information technology (IT). OBIS ensures compliance with applicable software development standards and actively strives to improve agility, working with the Chief Technology Officer and other stakeholders in adopting innovative technologies, methodologies and processes. OBIS supports the stakeholder community through effective communications, configuration control and release planning. The organization ensures timely notification of planned and unforeseen outages, responsiveness in restoring services and due diligence in addressing data anomalies in an automated fashion when practicable.
  2. Organization
    1. The Associate Commissioner for Benefit Information Systems (S4W)
    2. The Deputy Associate Commissioner for Benefit Information Systems (S4W)
    3. The Immediate Office of the Associate Commissioner for Benefit Information Systems (S4W)
    4. The Division of SSI Processing Systems (S4WA)
    5.   The Division of Payments and Debt Recovery Processing (S4WB)
    6. The Division of Title II Claims and Online Solutions (S4WC)
    7. The Division of Post Entitlement, Infrastructure and Cyclicals (S4WE)
    8. The Division of Workload Support and Business Intelligence (S4WG)
    9. The Division of Title II Computations, Eligibility and Medicare (S4WJ)
    10. The Division of SSI and Representative Payee (S4WK)
  3. Functions
    1. The Associate Commissioner for Benefit Information Systems (S4W) is directly responsible to a Deputy Chief Information Officer for carrying out the OBIS mission and providing general supervision to the major components of OBIS.
    2. The Deputy Associate Commissioner for Benefit Information Systems (S4W) assists the Associate Commissioner in carrying out his/her responsibilities and performs other duties as the Associate Commissioner may prescribe.
    3. The Immediate Office of the Associate Commissioner for Benefit Information Systems (S4W) provides the Associate Commissioner and Deputy Associate Commissioner with administrative staff assistance, technology leadership, planning and customer relations support on the full range of their responsibilities.
    4. The Division of SSI Processing Systems (S4WA)
      1. Responsible for analysis, requirements, design, development, testing, validation, implementation and maintenance of software and services for Title XVI (Supplemental Security Income) and Title VIII Special Veterans Benefits (SVB) systems.
      2. Serves as customer liaison for Title XVI and Title VIII SVB related workloads.
      3. Evaluates and determines impact of legislative regulation and policy changes affecting Title XVI program and Title VIII SVB processes and systems.
      4. Supports the Title XVI business processes by facilitating the collection and standardization of input data, accurate association and processing of the data, Title XVI beneficiaries, Business Intelligence, interface and exchange with SSA programmatic systems and outside agencies.  
      5. Participates in the development, coordination and execution of the SSA plan to fulfill programmatic system initiatives to support Title XVI Initial Claims and Post-eligibility processes as well as Title VIII SVB processes.  
    5. The Division of Payments and Debt Recovery Processing (S4WB)
      1. Plans, analyzes, designs, develops, tests, validates, coordinates, implements and maintains new or revised software to meet SSA’s automated data processing needs in the area of data gathering, database establishment and maintenance for programmatic initial claims and post-entitlement actions.  
      2. Analyzes, designs, develops, implements and maintains software to edit transactions, produce payment and debt management information, and provide Treasury data.  
      3. Plans, analyzes, designs, develops and implements new or revised software to control and prioritize transactions for the nightly Title II update operation.  
      4. Designs, develops, and implements new or redesigned software required to support Title II and Title XVI record updates for Payments and Accounting, Post-Payment activities, and Debt Management.
      5. Facilitates the electronic receipt and processing of individual auto-enrollments and mass direct deposit changes from the Department of Treasury on behalf of financial institutions.
      6. Performs user needs analysis and develops detailed functional requirements for SSA’s payment and debt management systems. Participates in liaison activities with other SSA components and Federal agencies to determine feasibility of solutions and determine development and implementation activities.
    6. The Division of Title II Claims and Online Solutions (S4WC)
      1. Plans, analyzes, designs, develops, tests, validates, coordinates, implements and maintains software and services for Title II (RSI) initial claims and post-entitlement systems processing. This includes the broad areas of specialized support for data collection/intake, claims processing/adjudication (including manual processing of exceptions) and software to facilitate entitlement to Title II benefits. This further includes events related to establishing an electronic lead and appointment and processing of court ordered garnishments and tax levies.
      2. Develops and maintains a comprehensive, updated and integrated set of system documentation, functional requirements or user stories, test/validation plans and source code for Title II programmatic applications.
      3. Participates in the planning, analysis, design, development, maintenance and coordination of the overall approved SSA plans for fulfilling short-term and long-range programmatic system development (Information Technology Investment Process (ITIP) Plans) as they relate to Title II 2 initial claims and post-entitlement, and benefit related internet government-to-citizen systems. This includes determining, classifying and ranking systems needs of all SSA components, and recommending final priorities for approval.
      4. Collaborates with various stakeholders and end users to evaluate legislative proposals, regulations, and policy changes affecting the Title II initial claims and post-entitlement, and benefit related eServices systems.
      5. Plans, analyzes, designs, develops and maintains software to deliver eGovernment services to SSA’s customers in accordance with the Agency’s Strategic Plan (ASP). 
      6. Serves as liaison with Federal and State IT partners (e.g., Office of Child Support Enforcement, and State Child Support or Garnishment Bureaus, etc.) to plan the development, data exchanges and software necessary to implement programmatic changes.
      7. Documents and maintains standards and guidelines for the Modernized Systems Operations Manual (MSOM), Program Operations Manual System (POMS) or other PolicyNet documentation in support of technician processing.
    7. The Division of Post Entitlement, Infrastructure and Cyclicals (S4WE)
      1. Plans, analyzes, designs, develops, tests, validates, coordinates, implements and maintains new or redesigned software to meet SSA's automated and modernized data processing needs in the broad area of Title II (Retirement and Survivors), Post Entitlement systems and Cyclical work based on legislation, earnings, eligibility/entitlement, insured status, and changes in Primary Insured Amount. Functionality includes facilitating the collection, standardization and processing of input data for Title II beneficiaries via different business functions, the collection of Title II metrics, and the Title II data interaction/exchange with SSA programmatic systems, external agencies and Field Office and Processing Services Centers via Query and Local Programming support as well as the maintenance and proper disposition of mission critical Title II processing data.
      2. Provides the analysis and automation necessary to affect SSA critical cyclical work such as the annual Cost of Living Adjustment for Title II recipients, the bi-annual Automatic Earnings Reappraisal Operation (AERO) and the tri-annual Earnings Enforcement Operation (EEO).
      3. Provides analytical and programmatic support for automated and modernized data processing services for Post Entitlement and Title II Redesign systems as well as analytical support for the generation of SSA-1099/1042 Benefit Statements and payment computation cyclical work.
      4. Develops and maintains comprehensive and integrated system documentation and functional requirements, test/validation plans and source code for Title II programmatic and cyclical applications. Documents and maintains standards and guidelines for the Modernized Systems Operations Manual (MSOM), Program Operations Manual System (POMS) or other PolicyNet documentation in support of technician processing.
      5. Leads and participates in Planning and Analysis elicitation sessions, documents user and detailed functional systems requirements, develops validation test plans, scenarios and scripts and performs comprehensive validation in support of Title II.
    8. The Division of Workload Support and Business Intelligence (S4WG)
      1. Provides analysis, design, software development, testing, validation, implementation and maintenance support for Title II Workload and Business Intelligence systems.
      2. Participates in the development, maintenance and coordination of the overall approved SSA plans for fulfilling short- and long-term programmatic systems development, as prescribed by the Information Technology Investment Process (ITIP) and Agency Priority Initiatives, in support of Title II Initial Claims, Post-entitlement, Business Intelligence, Management Information systems, and Title II programmatic initiatives for Initial Claims and Post-entitlement updates.
      3. Designs, develops, coordinates and implements new or redesigned software to meet SSA’s automated and modernized data processing needs in the broad areas of specialized support for Title II Management Information Systems and Master File Queries. This includes development and maintenance of workload control listings, reports, and queries for both Initial Claims and Post-entitlement, the capturing and distribution of work measurement and processing time information, and the integrity of the Title II Management Information data.
      4. Provides Workload support for Field Office/ and Payment Center Workload Management and Control.
      5.  Designs, develops, coordinates and implements new or redesigned software to meet SSA’s automated and modernized data processing needs in the area of various Master Beneficiary Record (MBR) Selections, data exchanges and external interfaces with partner agencies. 
      6.  Coordinates component-wide software release migration through the Development, Validation, Training, and Integration environments and supports Post-Implementation Review with various OCIO partners.
      7. With the use of modernized software engineering testing practices, provides Automated Testing support, and plans and conducts unit testing of newly developed systems and software modifications to existing systems, to ensure alignment with user-defined requirements and performance criteria.
    9. The Division of Title II Computations, Eligibility and Medicare (S4WJ)
      1. Plans, analyzes, designs, develops, tests, validates, maintains and implements software and services for Title II (RSI) and Title XVIII (Medicare) systems processing. This includes programmatic processes for such areas as eligibility/entitlement, earnings and computations.
      2. Plans and conducts unit tests of newly developed Title II and Title XVIII systems software and modifications to existing systems software against user-defined requirements and performance criteria. Develops and maintains a comprehensive, updated and integrated set of system documentation, functional requirements or user stories, test/validation plans and source code for Title II and Title XVIII (Medicare) programmatic applications.
      3. Participates in the planning, analysis, design, development, maintenance and coordination of the overall approved SSA plans for fulfilling short-term and long-range programmatic system development (Information Technology Investment Process (ITIP) Plans) as they relate to Title II and Title XVIII (Medicare).
      4. with various stakeholders and End Users to evaluate legislative proposals, regulations, and policy changes affecting Title II and Title XVIII (Medicare).
      5. Serves as a liaison with several SSA partners including the Centers for Medicare/Medicaid Services, Office of Treasury, Railroad Retirement Board and Internal Revenue Service to plan the development, data exchanges and software necessary to implement programmatic changes.
      6. Documents and maintains standards and guidelines for the Modernized Systems Operations Manual (MSOM), Program Operations Manual System (POMS) and/or other PolicyNet documentation in support of technician processing.
    10. Division of SSI and Representative Payee (S4WK)
      1. Analyzes, develops requirements, designs, develops, tests, validates, implements, and maintains applications and processes associated with the Title XVI (Supplemental Security Income) and Representative Payee systems.
      2. Serves as customer liaison for Supplemental Security Income (SSI), and Representative Payee systems.
      3. Evaluates and determines impact of legislative proposals, regulations, and policy changes affecting SSI, and Representative Payee processes and systems.
      4. Participates in the development, maintenance, and coordination of the overall approved SSA plan for fulfilling short and long-term programmatic system initiatives, as prescribed and prioritized by the agency in support of Title XVI initial claims and post-eligibility and Representative Payee systems.

Subchapter S4X - Office of Disability Information Systems

  1. Mission
    1. The Office of Disability Information Systems (ODIS) is responsible for the design, development, PROD Support, and maintenance of information technology requirements to meet SSA’s Disability Program needs including the electronic Disability process, the hearings/appeals process, and post-entitlement activities associated with the Disability Program. ODIS directs, develops, coordinates and implements new or redesigned software to meet SSA’s automation needs for such areas as field office, disability determination services (DDS), hearings, and appeals disability case processing and notices; continuing disability reviews (CDRs), disability quality assurance, agency electronic forms, electronic disability evidence: access, acquisition, analysis and display; disability management information, online access for the disability claimant to forms and records and office of general counsel case processing. ODIS is responsible for all phases in the systems development lifecycle. These responsibilities include determining the business needs and detailed requirements, identifying automated solutions for user needs, analyzing existing computer applications, preparing recommendations, software design and development, testing systems, and implementing security standards. ODIS is responsible for long-range planning and analyses to define new and improved systems processes in support of agency needs and maintains a comprehensive, updated and integrated set of software programs. ODIS implements systems required by new legislation, regulations and SSA policy directives.
  2. Organization
    1. The Associate Commissioner for Disability Information Systems (S4X)
    2. The Deputy Associate Commissioner for Disability Information Systems (S4X)
    3. The Immediate Office of the Associate Commissioner for Disability Information Systems (S4X)
    4. Division of Disability Hearing & Appeals, Analysis and Quality (S4XA)
    5. Division of Disability Evidence Acquisition (S4XE)
    6. Division of Disability Online Access and Analysis (S4XH)
    7. Division of Disability Electronic Folder Processing (S4XJ)
    8. Division of Disability Hearings and Appeals Processing (S4XK)
    9. Division of Disability Case Processing System (S4XL)
  3. Functions
    1. The Associate Commissioner for Disability Information Systems (ODIS) (S4X) is directly responsible to a Deputy Chief Information Officer for carrying out the ODIS mission and providing general supervision to the major components of ODIS.
    2. The Deputy Associate Commissioner for Disability Information Systems (S4X) assists the Associate Commissioner in carrying out his/her responsibilities and performs other duties as the Associate Commissioner may prescribe.
    3. The Immediate Office of the Associate Commissioner for Disability Information Systems (S4X) provides the Associate Commissioner and Deputy Associate Commissioner with administrative staff assistance, planning and customer relations support on the full range of their responsibilities, oversight of the Information Technology (IT) budget and management of Federal IT contracts that support the State Disability Determination Services.
    4. Division of Disability Hearing and Appeals, Analysis and Quality (S4XA)
      1. Plans, analyzes, designs, develops, unit tests and implements new or redesigned software to meet SSA Disability Program needs. Also, evaluates programmatic information and data requirements, writes functional specifications, procedures, instructions and standards (including security and fraud detection) for the Disability program.
      2. With the technical assistance of other OCIO components, plans and conducts unit tests of newly-developed systems and modifications to existing systems against user-defined requirements and performance criteria. Certifies that the changes are in conformance with functional specifications and with Agency regulations, policies, and procedures.
      3. Participates in the development, maintenance and coordination of the overall approved SSA plans for fulfilling short-term and long-range programmatic system development as they relate to Disability.
      4. Develops and maintains a comprehensive, updated and integrated set of system documentation, source code for programmatic software and requirements specifications of systems changes against user requirements and performance criteria.
      5. Resolves systems discrepancies and performance issues for all SSA and DDS offices, Federal and State. The State DDS systems interface with SSA central systems. The division is responsible for unit testing of applications software that exchanges the required Disability data between the offices involved.
      6. Builds software in accordance with agency and Federal standards including CMM and Section 508 compliancy.
      7. Plans and creates integrated, automated functional validation test scripts for new Disability systems as well as modifications to existing systems against user-defined requirements and performance criteria.
      8. Certifies system changes are in conformance with functional specifications and agency regulations, policies, and procedures.
    5. Division of Disability Evidence Acquisition (S4XE)
      1. With the technical assistance of other OCIO components, plans and conducts unit tests of newly-developed systems and modifications to existing systems against user-defined requirements and performance criteria. Certifies that the changes are in conformance with functional specifications and with Agency regulations, policies, and procedures.
      2. Plans, analyzes, designs, implements and evaluates programmatic systems data requirements, functional specifications, procedures, instructions and standards (including security and fraud detection) in conformance with SSA’s software engineering environment for Health IT (HIT), Electronic Records Express (ERE), and Disability Management Information (MI).
      3. Performs development, maintenance and coordination of the overall approved SSA plans for fulfilling short-term and long-range programmatic system development as they relate to Health IT, electronic medical evidence analysis, and content verification.
      4. Builds software in accordance with agency and Federal standards including CMM and Section 508 compliancy.
      5. Develops and maintains a comprehensive, updated and integrated set of system documentation, source code for programmatic software and requirements specifications.
      6. Designs, develops and maintains computer systems that collect, process and distribute Management Information for Health IT (HIT) and Electronic Records Express (ERE).
      7. Evaluates legislative proposals, regulations and policy changes affecting Health IT (HIT) and Electronic Records Express (ERE). Reports on the impact to those processes as well as on the short- and long-range plans.
      8. Works with representatives of other OCIO components to resolve system discrepancies and errors reported by users related to existing Evidence Acquisition processes.
      9. Plans and conducts unit testing of newly-developed systems and modifications to existing systems against user-defined requirements and performance criteria.
      10. Plans and conducts integrated, end-to-end, regression and system-wide automated and manual functional validation tests for new Disability systems as well as modifications to existing systems against user-defined requirements and performance criteria.
    6. Division of Disability Online Access and Analysis (S4XH)
      1. Plans, analyzes, designs, develops, unit tests, implements and evaluates programmatic data requirements, functional specifications, procedures, instructions and standards (including security and fraud detection) in conformance with SSA’s software engineering environment for Disability and Medical Continuing Disability Review systems, Online Access for the Disability Claimant to records, analysis of evidence as well as the management information to support these applications.
      2. Plans and conducts unit testing of newly-developed systems and modifications to existing systems against user-defined requirements and performance criteria.
      3. Performs programmatic support for automated data processing services for Continuing Disability Review and Online Access for the Disability Claimant and analysis of evidence.
      4. Participates in the development, maintenance and coordination of the overall approved SSA plans for fulfilling short-term and long-range programmatic system development as they relate to Continuing Disability Review, Online Access for the Disability Claimant and the analysis of evidence. This includes determining, classifying and ranking systems needs of all SSA components, and recommending final priorities for approval.
      5. Develops and maintains a comprehensive, updated and integrated set of system documentation and requirements specifications of systems changes against user requirements and performance criteria and certifies that changes are in conformance with specifications for assigned areas of responsibility.
      6. Evaluates legislative proposals, regulations and policy changes affecting Disability and Continuing Disability Review Online Access for the Disability Claimant and evidence analysis software. Reports on the impact to those processes as well as on the short- and long-range plans.
      7. Certifies system changes are in conformance with functional specifications and agency regulations, policies, and procedures.
    7. Division of Disability Electronic Folder Processing (S4XJ)
      1. Plans, analyzes, designs, develops, unit tests, implements and evaluates programmatic data requirements, functional specifications, procedures, instructions and standards (including security and fraud detection) in conformance with SSA’s software engineering environment for field office disability applications, the electronic folder, electronic forms and management information to support disability applications. .
      2. Collaborates with the business community to develop information requirements and procedures and serves as the liaison for Disability-related workloads.
      3. Plans and conducts unit tests of newly-developed systems and modifications to existing systems against user-defined requirements and performance criteria. Certifies that the changes are in conformance with functional specifications and with Agency regulations, policies, and procedures for field office disability applications, the electronic folder, electronic forms and management information to support disability applications.
      4. Participates in the development, maintenance and coordination of the overall approved SSA plans for fulfilling short-term and long-range programmatic system development as they relate to Disability.
      5. Develops and maintains a comprehensive, updated and integrated set of system documentation, source code for programmatic software and requirements specifications of systems changes against user requirements and performance criteria for field office disability applications, the electronic folder, electronic forms and management information to support disability applications.
      6. Builds software in accordance with agency and Federal standards including CMM and Section 508 compliancy for field office disability applications, the electronic folder, electronic forms and management information to support disability applications.
      7. Plans and creates integrated, automated functional validation test scripts for new systems as well as modifications to existing systems against user-defined requirements and performance criteria for field office disability applications, the electronic folder, electronic forms and management information to support disability applications.
      8. Certifies system changes are in conformance with functional specifications and agency regulations, policies, and procedures for field office disability applications, the electronic folder, electronic forms and management information to support disability applications..
    8. Division of Disability Hearings and Appeals Processing (S4XK)
      1. Plans, analyzes, designs, develops, unit tests, implements and evaluates programmatic data requirements, functional specifications, procedures, instructions and standards (including security and fraud detection) in conformance with SSA’s software engineering environment for Hearings, Appeals, Litigation, and Disability.
      2. Plans and conducts unit testing of newly-developed systems and modifications to existing systems against user-defined requirements and performance criteria.
      3. Participates in the development, maintenance and coordination of the overall approved SSA plans for fulfilling short-term and long-range programmatic system development as they relate to Hearings, Appeals, Litigation, and Disability. This includes determining, classifying and ranking systems needs of all SSA components, and recommending final priorities for approval.
      4. Evaluates legislative proposals, regulations and policy changes affecting Hearings, Appeals, Litigation, and Disability software. Reports on the impact to those processes as well as on the short- and long-range plans.
      5. Works with representatives of other OCIO components to resolve system discrepancies and errors reported by users related to existing Hearings, Appeals, Litigation and Disability processes.
      6. Plans and creates integrated, automated functional validation test scripts and manual testing for new Disability systems as well as modifications to existing systems against user-defined requirements and performance criteria.
      7. Certifies system changes are in conformance with functional specifications and agency regulations, policies, and procedures.
    9. Division of Disability Case Processing System (S4XL)
      1. Evaluates infrastructure and programmatic data requirements to develop and execute validation and master test plans in support of the Disability Case Processing System (DCPS).
      2. Plans and conducts integrated, end-to-end, regression and system-wide automated and manual functional validation tests for new Disability systems as well as modifications to existing systems against user-defined requirements and performance criteria.
      3. Certifies system changes are in conformance with functional specifications and agency regulations, policies, and procedures for the Disability Case Processing System.
      4. Plans, analyzes, designs, develops, implements, and evaluates programmatic data requirements, functional specifications, procedures, instructions and standards (including security and fraud detection) in conformance with SSA’s software engineering environment.
      5. Plans and conducts unit tests of newly-developed systems and modifications to existing systems against user-defined requirements and performance criteria for DCPS. This relies on user-defined requirements conforming with agency regulations, policies, and procedures.
      6. Develops and maintains a comprehensive, updated, and integrated set of system documentation, source code for programmatic software and requirements specifications for the Disability Case Processing System.
      7. Plans, analyzes, designs, implements, and evaluates programmatic information and data requirements, functional specifications, procedures, instructions, and standards (including security and fraud detection) in conformance with SSA’s DCPS engineering environment.
      8. Plans, analyzes, designs, and implements new or redesigned software to meet DCPS needs. Also, evaluates programmatic information and data requirements, writes functional specifications, procedures, instructions, and standards (including security and fraud detection) for the Disability program, including service to the Disability case processing sites.
      9. Plans and conducts unit testing of newly-developed systems and modifications to existing systems against user-defined requirements and performance criteria for DCPS.
      10. Participates in the development, maintenance, and coordination of the overall approved SSA plans for fulfilling short-term and long-range programmatic system development as they relate to Disability Program case processing. This includes determining, classifying, and ranking systems needs of SSA components and recommending final priorities for approval.
      11. Supports individual State Disability Determination Service Disability case processing offices by developing user test plans and providing direct assistance during the testing and production phases for DCPS. Also, evaluates DDS site development requests with the objective of integrating site efforts into overall SSA automation plans.
      12. Evaluates legislative proposals, regulations, and policy changes affecting Disability software. Reports on the impact to those processes as well as on the short- and long-range plans.
      13. Works with representatives of other OCIO components to resolve system discrepancies and errors reported by users related to existing Hearings, Appeals, Litigation, and Disability processes for the Disability Case Processing System.

Subchapter S44 - Office of IT Financial Management and Support

  1. Mission
    1. The Office of IT Financial Management and Support (OITFMS) supports the Chief Information Officer (CIO) in planning and executing sound Information Technology (IT) investments for the agency, maximizing accountability, compliance, and value for the agency’s IT investments. OITFMS supports the CIO with the full range of his/her responsibilities as they relate to Capital Planning and Investment Control (CPIC) including IT planning, resource allocation, budget, cost/performance management, compliance, and reporting to higher- level monitoring authorities. The office supports the CIO in carrying out his/her financial and management activities.
    2. OITFMS provides overall management of the planning, development and execution of the IT Systems Budget for the agency and the Administrative Budget for the Office of the Chief Information Officer. The office develops policies and guidelines for the exercise of the CIO budget responsibility, evaluates and appraises the manner in which CIO carries out these responsibilities. The office is responsible for IT training, internal controls, audits, contract management, software development lifecycle processes, Records Management and management of the Information Technology Investment Process.
    3. OITFMS supports development of the agency Information Resources Management (IRM) Strategic Plan and ensures that it aligns with the Agency Performance Plan. OITFMS manages a comprehensive, technical, and project management training program to ensure OCIO staff can meet technological challenges and regulatory requirements.
    4. The office is responsible for providing oversight and guidance on audit programs directed at SSA, directs the OCIO Executive Assurance program ensuring internal controls are in place to meet prescribed guidance, as well as developing and maintaining OCIO Continuity of Operations Planning (COOP) documentation. OITFMS administers SSA’s records management program and serves as the liaison with the National Archives and Records Administration and General Services Administration on records issues. OITFMS provides a governance structure to implement, direct, and oversee implementation of the OCIO Enterprise Risk Management (ERM) program in support of the agency ERM.
  2. Organization
    1. The Associate Commissioner for IT Financial Management and Support (S44)
    2. The Deputy Associate Commissioner for IT Financial Management and Support (S44)
    3. The Immediate Office of the Associate Commissioner for IT Financial Management and Support (S44)
    4. The Division of Budget, Enterprise Strategy and Training (S44A)
    5. The Division of Investment Management and Enterprise Services (S44C)
  3. Functions
    1. The Associate Commissioner for IT Financial Management and Support (S44) reports to the Deputy Chief Information Officer and is responsible for carrying out the OITFMS mission and providing general supervision to the major components of OITFMS.
    2. The Deputy Associate Commissioner for IT Financial Management and Support (S44) assists the Associate Commissioner in carrying out his/her responsibilities and performs other duties as the Associate Commissioner may prescribe.
    3. The Immediate Office of the Associate Commissioner for IT Financial Management and Support (S44) provides the Associate Commissioner and Deputy Associate Commissioner with management support on the full range of their responsibilities including senior technical support, resource oversight, personnel management, financial/budget management, Continuity of Operations Planning, project planning, contracting, training, program management assistance, etc.
    4. The Division of Budget, Enterprise Strategy and Training (S44A)
      1. Provides the full range of analytical and advisory support to the Deputy Chief Information Officer (CIO) in his/her role of planning and executing sound investments on all IT and non-IT budget matters and OCIO resources.
      2. Directs the planning, development, analysis and implementation of the agency's IT Budget, Training Budget, and the OCIO Administrative Budget formulation and execution processes among the agency and OCIO components respectively.
      3. Develops the IT Systems Budget for the agency, develops the Administrative Budget for OCIO, prepares detailed budget submissions and develops monitoring and tracking systems. Provides staff support and advises the CIO and agency executives regarding resource utilization, competing priorities, and other spending issues.
      4. Monitors IT procurements, systems lifecycle costs, reimbursable costs, other objects expenditures, FTE utilization, and OCIO personnel time expenditures. Provides staff support and advises the Deputy Chief Information Officer regarding the administration of the administrative budget including FTE/FTP ceilings, FTE work year utilization, overtime and other objects, allocations and spending. Develops OCIO allocations and monitors the utilization for relocation costs, lump sum payments, retention and recruitment bonuses, and monetary awards.
      5. Provides OCIO components with budget allocations, spending guidelines, and customer service support on staffing, relocation, overtime and other objects issues, including mandatory agency contracts for printing, scanning, and production of accessible notices; reviews/prepares funding recommendations for CIO; and serves as a point of contact for ALL agency components requesting IT resources.
      6. Prepares various exhibits supporting the agency’s budget request, providing answers to questions regarding the budget and answering to other authorities such as the Office of Inspector General (OIG), Government Accountability Office (GAO), Office of Management and Budget (OMB) and Congressional budget staff.
      7. Reviews agency-wide component input to the IT Budget Formulation Call and OCIO-wide component input to the Administrative Budget Formulation Call; advises CIO regarding competing priorities and recommends funding levels. Serves as the point-of-contact for agency components requesting IT resources.
      8. Assists agency components in the development and execution of the IT acquisition plan with DCFBM/OAG; monitors project funding; processes IT Funding Change Requests for CIO approval; revises agency procurement plans with DCBFM/OAG; coordinates Social Security Online Accounting and Reporting System (SSOARS) project funding changes with DCBFM/OFPO; and coordinates agency-level IT budget changes with DCBFM/OB.
      9. Coordinates the OCIO response to the annual DCBFM reimbursable budget call for reimbursable needs, reviews reimbursable bills and approves requisitions for reimbursable specific work.
      10. Maintains and operates the OCIO training facilities.
      11. Manages course/curriculum, budget and student data for technical and project management training.
    5. The Division of Investment Management and Enterprise Services (S44C)
      1. Leads SSA’s Capital Planning and Investment Control (CPIC) Guide development and documentation. The CPIC Guide is a comprehensive view of SSA’s IT governance influences, policies, procedures and tools.
      2. Serves as the SSA IT Liaison with OMB and the Federal CIO Council, primarily responsible for monitoring, assigning and ensuring compliance with external IT governance communications.
      3. Manages SSA IT preparation efforts for OMB-led FedStat and PortfolioStat. FedStat (agency wide, with IT elements) and PortfolioStat (SSA IT enterprise) reviews to check the health of the entire agency and the IT enterprise in accordance with both guidance and administration priorities.
      4. Coordinates and ensures accurate IT reporting and benchmarking, such as for President’s Management Agenda (PMA) Benchmarks and the quarterly Integrated Data Collection (IDC).
      5. Leads Post-Implementation Reviews (PIRs) on behalf of the CIO.
      6. Implements IT governance guidance, legislation, policy and mandates for the CIO in coordination with IT Budget, IT Investment Process (ITIP) and other SSA CPIC groups.
      7. Works closely with the OCIO Associate Commissioner-level offices and the OCIO Budget Staff to implement ITIP decisions.
      8. Leads development of Exhibit 300s (Major IT Business Cases), Exhibit 52 (IT Portfolio Reporting) and OMB IT investment reporting on the Federal IT Dashboard.
      9. Leads the Earned Value Measurement (EVM) initiative following appropriate OMB and other Federal guidelines.
      10. Provides leadership in the development of guidance and processes to support business case development, including Cost Benefit Analysis (CBA), Return on Investment (ROI) and approaches for the measurement of less tangible outcomes.
      11. Provides IT program and project teams with appropriate contractor support and planning, execution and reporting guidance based on internal and external requirements.
      12. Acquires, manages, and assesses performance of contractor support resources used throughout OCIO in support of agency IT initiatives and approves associated vendor invoices.
      13. Serves as the principal communication point for contractors, OAG and customers of the contracts managed.
      14. Manages the agency’s suite of enterprise-wide support services contracts; for example, the ITSSC, BITSSC, SAAS, ESS, SOSS, Microsoft Support Services, IBM Proprietary Support Services and Computer Associates Support Services, etc., coordinating efforts across components (e.g., Office of Budget, IT Budget, OAG and OGC), as required, to process contract compliant orders in accordance with agency priorities.
      15. Manages a modern multi-media center for the agency. Schedules and provides technical support for meetings, conferences, teleconferencing/videoconferencing, vendor product demonstrations, remote electronic meetings, etc.

Subchapter S47 - Office of Information Security

  1. Mission
    1. The Office of Information Security (OIS) (S47) is responsible for developing, managing and directing SSA’s IT security program. OIS develops, manages and provides oversight of functions for agency-wide IT security policies and procedures. OIS’ robust IT security program includes: providing security and PII awareness training and serving as liaison to components and systems developers; protecting the confidentiality, integrity and availability of SSA’s computer systems and information; identifying and implementing risk-based security controls; conducting compliance reviews and tracking security metrics to gauge compliance and effectiveness. OIS is also responsible for analyzing risks, vulnerabilities and trends to identify threats; identifying solutions to mitigate threats; and identifying appropriate risk mitigation strategies to support SSA’s evolving technology and business processes. These processes include a comprehensive penetration-testing program of both internal- and external-facing systems, reviewing application code for vulnerabilities before it is released to the production environment; and reporting on vulnerabilities in previously deployed applications and infrastructure. OIS is further responsible for the agency’s Identity, Credential and Access Management program. In this role, OIS is tasked with the design, development and deployment of security software to protect SSA systems through the authorization of access requests and logical access to SSA systems including strong authentication for public access to our online services. The office also serves as the central Security Administrator for access to mainframe systems for the Chief Information Officer components. Additionally, OIS is responsible for reporting the agency’s IT security posture to higher monitoring authorities including the Office of Management and Budget (OMB), the Department of Homeland Security (DHS), the Government Accountability Office (GAO) and other outside oversight organizations. OIS prepares various internal reports for Executive review and oversight as well. The office also interprets new guidance and recommendations from OMB and the National Institute of Standards and Technology and other applicable guidance. OIS is responsible for assessing risk to IT systems and its Security Assessment and Authorization program, which conducts risk assessments and compliance reviews of both on-going operations and new applications. OIS is responsible for reengineering both the Audit Trail System and the Comprehensive Integrity Review Program system. The office is the SSA lead for the Continuous Diagnostic and Mitigation program, which is mandated by DHS to improve the security posture of all Federal Executive Departments and Agencies. OIS operates SSA’s Division of Security Operations (DSO), which is responsible for monitoring the agency’s network of potential intrusions and other software and hardware vulnerabilities 24 hours a day, 7 days a week. The DSO investigates and coordinates the correction of identified vulnerabilities in cooperation with local Systems Administrators. Finally, OIS serves as the overall agency lead for IT incident and coordinates with the Chief Privacy Officer who has agency-wide responsibility for breach response, notification and remediation; in this role, the Chief Information Security Officer serves as the Incident Commander and coordinates SSA’s response to any IT incidents.
  2. Organization
    1. The Associate Commissioner for Information Security (S47)
    2. The Deputy Associate Commissioners for Information Security (S47)
    3. The Immediate Office of the Associate Commissioner for Information Security (S47)
    4. The Division of Security Integrity (S47A)
    5. The Division of Security Operations (S47B)
    6. The Division of Compliance and Assessments (S47C)
    7. The Division of Security Applications (S47E)
    8. The Division of Security Customer Service (S47G)
    9. The Division of Security Engineering (S47H)
  3. Functions
    1. The Associate Commissioner for Information Security (S47) is directly responsible to the Deputy Chief Information Officer, for carrying out the OIS mission and providing general supervision to the major components of OIS.
    2. The Deputy Associate Commissioner for Information Security (S47) assists the Associate Commissioner in carrying out his/her responsibilities and perform other duties as the Associate Commissioner may prescribe.
    3. The Immediate Office of the Associate Commissioner for Information Security (S47) provides the Associate Commissioner and Deputy Associate Commissioners with senior technical support; management assistance; technology leadership and planning; resource oversight and management; support for legislation and other initiatives on the full range of their responsibilities; and develops, directs and maintains the OIS COOP program, including periodic testing and training.
    4. The Division of Security Integrity (S47A) mission is to provide data security as a customer service to ensure SSA meets policies, procedures and standards for the confidentiality, integrity and availability of information and resources in all environments.
      1. Administer access to the SSA network (TOP SECRET, Systems Access Management (SAM), etc.).
      2. Assist component management and project staff in assessing and resolving possible system access issues.
      3. ESEF Security Infrastructure and Configuration Management ESEF Personnel Actions (HSPD-12, HRMIS).
      4. Support security access needs for OCIO FO and Office of Commissioner staff.
      5. Sponsor of the agency’s programmatic audit trail system (ATS), Comprehensive Integrity Review Program (CIRP) and Reengineered CIRP (R-CIRP).
      6. Develop programs to extract data, analyze data and provides deliverable to internal agency customers in support of MI and fraud investigation assistance service requests.
    5. The Division of Security Operations (S47B) continuously assess threats and vulnerabilities to Social Security Administration’s information systems to effectively respond to incidents and reduce potential damage from such events. The Division of Security Operations (DSO) will perform strategic analysis, issue warnings/alerts, and coordinate response and recovery efforts related to threats against the agency information systems.
      1. Provide timely technical assistance to operators of agency information systems regarding security incidents, including guidance on detecting and handling information security incidents.
      2. Compile and analyze information about incidents that threaten information security.
      3. Inform operators of agency information systems about current and potential information security threats and vulnerabilities.
      4. The DSO will also provide remediation efforts to recover from an incident.
      5. As new systems and applications are introduced to the agency network environment, the DSO will perform an assessment of these systems. The analysis will include an assessment of the system’s ability to comply with agency security configuration guidelines and polices. This will also include a comparison of the security controls in place, best practices, mitigations or compensating controls that may be in place.
      6. Part of these assessments will also include performing vulnerability scans and penetration tests.
      7. The DSO runs the agency network compliance monitoring processes. This includes running regular scheduled scans of the agency networking environment and associated systems. These monitoring processes ensure that agency systems are configured per agency configuration and security guidelines.
      8. We continuously monitor various news and security sites. As new events are released, they will be assessed to determine impact to the agency and compensating controls that are in place.
      9. The DSO maintains and operates the agency network intrusion detection systems. These systems include both network based and host based systems. These systems monitor for, and generate alerts on, unauthorized or malicious activity. These alerts will be analyzed and, if required, remediation process will be taken to mitigate the threats that are detected.
    6. The Division of Compliance and Assessments (S47C) has the responsibility and authority to administer and assess the agency's suite of security controls and safeguards in place to protect agency data from improper disclosure, modification or destruction. Other significant information security tasks within the division include:
      1. Leading external compliance reviews with domestic and international exchange partners to evaluate security controls they must implement and maintain to protect information the agency provides.
      2. Employing the agency’s security authorization and assessment (SA&A) process.
      3. Leading the risk assessment process to understand project security needs and risk mitigation.
    7. The Division of Security Applications (S47E) administers and maintains the agency-wide Identity, Credential and Access Management (ICAM) program; and develops security applications needed to effectively govern access to our IT resources. Other significant information security tasks within the division include:
      1. Interpreting and implementing the Identity, Credential, and Access Management (ICAM) policies and regulations for the agency.
      2. Ensuring that SSA complies with all Federal identity management mandates, such as Homeland Security Presidential Directive 12 and the Federal Information Processing Standards 201.
      3. Managing the agency Access Control program.
      4. Assisting project teams in determining access requirements, testing and evaluating access control concerns for programmatic application releases.
      5. Emerging and maintaining automated applications to aid in the processing of Top Secret access changes for all SSA applications.
      6. Performing security validation testing and other analytical support services in an effort to maintain effective and aggressive implementation schedules, develop quality software products, and ensure seamless large-scale deployment.
      7. Administering the Electronic Personal Enrollment Credential System (EPECS) and the Systems Access Management (SAM).
      8. Assisting in the remediation of agency audit findings related to access control through policy adoption, procedural revision, and automation.
      9. Serving as the Program Management Office (PMO) providing project management and lifecycle support, policy guidance, and technical assistance for Agency-wide ICAM projects.
      10. Developing secure, scalable, usable, flexible, automated, and standards-driven enterprise platforms with dependable authentication and authorization models enduring robust performance.
    8. The Division of Security Customer Service (S47G) has responsibility and authority for the coordination, creation, issuance, and maintenance of information security policies, standards, and procedures. Other significant information security tasks within the division include:
      1. Writing strategies and policies that protect and secure sensitive information and personally identifiable information (PII) collected and maintained on behalf of the agency.
      2. Conducting annual information security awareness training and role-based training for individuals with significant information security responsibilities.
      3. Addressing information security policy and PII questions.
      4. Executing a variety of social engineering campaigns to safely introduce personnel to current cyber threats, mitigate vulnerabilities, and reduce the agency’s risk of compromise.
      5. Developing platform security configuration baselines for platforms and devices.
      6. Coordinating the assessment and deployment of Microsoft Security Bulletins.
      7. Providing full-scale project management for specific OIS projects.
      8. Documenting security business processes.
      9. Providing strategic planning and resource estimating support.
      10. Coordinating various audits at the OIS, OCIO, and Agency levels.
      11. Performing International Travel Risk Assessments.
      12. Managing the OIS Continuity of Operations Plan.
    9. The Division of Security Engineering (S47H) effectively evaluates the impact of emerging security technologies and evolving threats to the agency's enterprise infrastructure; to design, develop and support agency security architectures; and to provide security guidance for agency infrastructure changes as well as technical expertise and resources in support of agency security policies. The Division of Security Engineering (DSE) administers security incident reporting and trending. Other significant information security tasks within the division include:
      1. Carrying out regulatory compliance monitoring and reporting through the creation and maintenance of Continuous Diagnostics and Mitigation (CDM) dashboards.
      2. Advancing the agency’s Information Security Program by administering the Software Authorization Program to ensure critical agency source code is frequently scanned for vulnerabilities, conducting daily agency-wide penetration tests, and leading agency cyber incident reporting and trending initiatives.
      3. Testing emerging technologies and confirm they can be integrated securely into agency infrastructures.

Subchapter S48 - Office of Digital Transformation

  1. Mission
    1. The Office of Digital Transformation (ODT) (S48) is a customer-focused, service-oriented organization within the Office of the Chief Information Officer. This office collaborates with agency business components and software engineering components within the Office of the Chief Information Officer to support the practical resolution of business needs through technology in a teamwork environment. ODT is primarily responsible for product/program/project management for the agency’s IT investments, which includes but not limited to SSA entitlement applications, SSA enterprise software and cross-cutting applications that support the agency’s core mission workloads. ODT enhances the end-user experience of SSA’s systems by applying proven user-centered design methods. This office manages the development and implementation of standards via the software development lifecycle as well as the agile lifecycle processes providing methods and procedures for software planning, tracking, requirements, design, development, validation and change control. This office provides a product/program/project management governance structure through the implementation of OCIO Quality Assurance Controls.
  2. Organization
    1. The Associate Commissioner for Digital Transformation (S48)
    2. The Deputy Associate Commissioner for Digital Transformation (S48)
    3. The Immediate Office of the Associate Commissioner for Digital Transformation (S48)
    4. The Division of Program and Project Management (S48A)
    5. The Division of User Experience and Accessibility (S48B)
    6. The Division of Project Governance and Quality Assurance (S48C)
    7. The Division of Digital Identity (S48E)
    8. The Division of Digital Customer Experience (S48G)
  3. Functions
    1. The Associate Commissioner for Digital Transformation (S48) reports to the Deputy Chief Information Officer and is responsible for carrying out the ODT mission and providing general supervision to the major components of ODT.
    2. The Deputy Associate Commissioner for Digital Transformation (S48) assists the Associate Commissioner in carrying out his/her responsibilities and performs other duties as the Associate Commissioner may prescribe.
    3. The Immediate Office of the Associate Commissioner for Digital Transformation (S48) provides the Associate Commissioner and Deputy Associate Commissioner with management support on the full range of their responsibilities including senior technical support, resource oversight, personnel management, financial/budget management, Continuity of Operations Planning, project planning, contracting, training, program, management assistance, etc.
    4. The Division of Program and Project Management (S48A)
      1. Provides project management leadership for OCIO projects.
      2. Coordinating project efforts leading analysts, developers and testers through the SDLC and/or agile lifecycle.
      3. Division of Program and Project Management Project Managers serve as the central point of contact for stakeholders as well as other OCIO components.
      4. Provides program management (OMB 300) oversight.
      5. Provides software process improvement services.
      6. Provides leadership for the FAC P/PM governance, training and execution.
      7. Maintains project risk management via risk registers and mitigation strategies.
    5. The Division of User Experience and Accessibility (S48B)
      1. Designs the user experience for SSA’s Internet and Intranet web applications using the User-Centered Design process to meet user and business needs.
      2. Conducts customer research, provides iterative screen design and usability testing for new and existing (enhanced) systems.
      3. Performs heuristic evaluations of applications.
      4. Creates and designs conceptual models and performs task flow analysis.
      5. Creates interface standards for consistent customer experience.
      6. Serves as an advocate for the end user throughout the software design process.
      7. Provides agency-wide support for Section 508 compliance and works to ensure that our electronic technology is accessible to people with disabilities.
      8. Develops and maintains the agency’s Section 508 policy, processes, compliance reporting procedures, and guidance necessary to ensure SSA Information and Communications Technology (ICT) are accessible to people (both employees and members of the public) who are blind, have low vision, have hearing impairments, have difficulty speaking, and who have low mobility.
      9. Provides project support to ensure new applications and application updates incorporate Section 508 requirements and accessibility design principles.
      10. Provides testing services for OCIO and non-OCIO projects (applications, mainframe, documents, infrastructure and hardware).
      11. Provides Section 508 and accessibility training for project teams, developers, document authors, procurement officials, and purchasers of information and communications technology. Training is conducted through in-person classes, video on demand, and written guidance/procedures.
      12. Manages the Section 508 complaints process.
      13. Participates in inter-agency collaboration and community efforts to share information, establish best practices and harmonize processes and methods.
    6. The Division of Project Governance and Quality Assurance (S48C)
      1. Develops and maintains IT policies including IT Project Management, the agency’s Configuration Management Directive and Software Change Management policy, the System Development Lifecycle and Agile Lifecycle for projects.
      2. Provides guidance and oversight to the OCIO organization on the development of improved and continuing project management, software development and systems engineering practices.
      3. Provides process orientation for project managers, team members and sponsor representatives.
      4. Provides process analysis, re-engineering and web development in support of the Systems Training, Requirements Engineering and Systems Process Improvement (SPI) initiatives.
      5. Provides Lifecycle documentation to internal and external auditors on request.
      6. Provides development and technical support for the OCIO SharePoint and internal webpages.
      7. Coordinates ODT planning activities, support for project managers with the Investment Management Tool (IMT), estimating and other Customer Relationship Representative (CRR) functions.
      8. Supports software measurement via function point analysis.
    7. The Division of Digital Identity (S48E)
      1. Provides strategic direction on the digital identity product.
      2. Leverages subject matter expertise in design thinking and data science to ensure customer-focused experience, and confirms business and technical acceptability of the digital identity product.
      3. Ensures the agency follows authentication guidance from the Office of Management and Budget (OMD) and authentication technical standards from the National Institute of Standards Technology.
      4. Sets authentication strategy and partners with other agency offices to develop authentication processes.
      5. Investigates industry trends to learn about new technology that can help strengthen the agency’s authentication techniques.
      6. Provides project management, oversight and direction on all digital identity related efforts.
      7. Responsible for the analysis, development and testing responsible for authentication and registration services that ensure secure interaction with SSA’s systems for our civilian, business, and government users.
      8. Responsible for the development of secure, scalable, and standards-driven authentication and authorization enterprise platforms and services.
      9. Responsible for the transition from legacy authentication methods.
    8. The Division of Digital Customer Experience (S48G)
      1. Provides product management and oversight for enterprise IT products associated with customer service delivery across all assisted and self-service channels, including My Social Security (Online Experience), Customer Engagement (Technician Experience), Caller Experience (IVR), and Visitor Experience (VIP).
      2. Coordinates cross-agency customer discovery and design thinking activities to identify solutions to improve the customer experience for both agency customers and the employees that serve them, while supporting business needs and performance goals.
      3. Collaborates with business to define, communicate, and execute strategy for implementing identified IT solutions.
      4. Implements scalable and reusable IT solutions that promote consistency and visibility of customer service actions across service channels.
      5. Provides technical analysis, development, and production support for IT software systems aligned with the product line mission.
      6. Identifies and implements measures to ensure product is meeting business and customer expectations; identifying areas of improvement and opportunity.
      7. Plans and improves the products based on feedback provided by customers and business metrics through continuous iteration.

Subchapter S49 - Office of Systems Operations and Hardware Engineering

  1. Mission
    1. The Office of Systems Operations and Hardware Engineering (OSOHE) directs, manages, and coordinates the planning, implementation, operation, and maintenance of SSA’s computer systems operations, enterprise Information Technology (IT) infrastructure and application services. OSOHE is accountable for designing, building, testing, delivering, operating, and managing the enterprise IT environment which resides within the agency’s data centers, and which is comprised of the computing, network, telecommunications, storage infrastructures and service delivery platforms. OSOHE monitors and provides 24x7 operations support for enterprise applications for the entire agency including DCO, DCDAR, DDSs, OQP, OIG, OGC, etc. In addition,
    2. OSOHE monitors and maintains all computer storage and network assets and all electronic services residing at SSA’s data centers. OSOHE maintains infrastructure related to batch, integration testing, IT Security infrastructure, change management, database, print operations, Service Level Agreements (SLA) and infrastructure facility usage. The office performs governance activities associated with change and release management for applications and systems software, capacity planning, performance testing and the delivery of infrastructure services to “guarantee” a highly available environment (99.95% uptime) for Internet, SSN verification workloads, Business-to-Government and Government-to Government data exchanges.
    3. OSOHE consists of fifteen divisions, the Network Operations Center (NOC), and six Remote Operations Communication Centers (ROCCs). It develops the specifications, executes the system implementation, and operates an in-house IT help desk to provide support, training and customer service to over 65,000 SSA employees, 30,000 DDS state employees, and 10,000 Industry Partners. The office is responsible for Continuity of Operations Planning (COOP) at the target failover site to include site-identification, planning, and restoration of permanent services from the failed center. OSOHE is responsible for execution of the Disaster Recovery Plan, failed site-damage assessment and recovery of assets. The office is accountable for 24x7 operations stability, availability and security of the agency’s IT infrastructure and environment.
  2. Organization
    1. The Associate Commissioner for Systems Operations and Hardware Engineering (S49)
    2. The Deputy Associate Commissioner for Systems Operations and Hardware Engineering (S49)
    3. The Immediate Office of the Associate Commissioner for Systems Operations and Hardware Engineering (S49)
    4. The Division of Batch Operations and Production Control (S49A)
    5. The Division of Information Systems Security Administration and Operations (S49B)
    6. The Division of Integration and Environmental Testing (S49C)
    7. The Division of National Network Services and Operations (S49E)
    8. The Division of Online Systems and Database Operations (S49G)
    9. The Division of Systems Performance and Service-Level Management (S49H)
    10. The Division of Systems User Services and Facilities (S49J)
    11. The Division of Client/Server Infrastructure (S49K)
    12. The Division of Integrated Telecommunications Management (S49L)
    13. The Division of Internet/Intranet Application Services (S49M)
    14. The Division of Mainframe Systems Software (S49N)
    15. The Division of Network Engineering (S49P)
    16. The Division of Resource Management and Acquisitions (S49Q)
    17. The Division of Systems Storage Management (S49R)
    18. The Division of Infrastructure Services (S49S)
  3. Functions
    1. The Associate Commissioner for Systems Operations and Hardware Engineering (S49) is directly responsible to a Deputy Chief Information Officer for carrying out the OSOHE mission and providing general supervision to the major components of OSOHE.
    2. The Deputy Associate Commissioner for Systems Operations and Hardware Engineering (S49) assists the Associate Commissioner in carrying out his/her responsibilities and performs other duties as the Associate Commissioner may prescribe.
    3. The Immediate Office of the Associate Commissioner for Systems Operations and Hardware Engineering (S49) provides the Associate Commissioner and Deputy Associate Commissioner with senior technical support; management assistance; technology leadership and planning; resource oversight and management; recruitment, administrative and information management; research support; and other initiatives on the full range of their responsibilities.
    4. The Division of Batch Operations and Production Control (S49A)
      1. Manages SSA’s batch processing operations by working jointly with developers throughout the Systems Lifecycle to efficiently plan, coordinate, test, schedule, and process the agency’s batch production workloads.
      2. Oversees the agency’s processes to update and synchronize databases, generate notices and payments, and print and mail SSN cards efficiently and timely.
      3. Serves as the user interface and provides technical support for data exchanges between SSA and external trading partners.
      4. Provides customers with a wide range of batch operations services including: Testing and analysis, Automated Scheduling, Batch Production Monitoring and Schedule Control, Print Mail Services (SSN card and Notice Production), Data Exchange Services, and Post-Batch Implementation Analysis.
      5. Responsible for the planning, coordination, analysis and tracking of batch releases and changes.
      6. Responsible for analyzing, developing, and testing mainframe, Client Server control-M schedules, and batch integration testing for production batch workloads to ensure data center standards are met.
    5. The Division of Information Systems Security Administration and Operations (S49B)
      1. Responsible for supporting the IT security operations infrastructures that protect the agency’s resources and data and facilitate systems operations.
      2. Collaborates with the Office of Information Security on the operation of security controls and safeguards to protect the agency network, devices, applications and data.
      3. Responsible for the acquisition, co-evaluation, deployment, operations, and maintenance of new and advanced protections within SSA’s infrastructure.
      4. Responds to and coordinates IT audits in the security, management and contracting arenas.
      5. Proactively maintains contingency plans for SSA’s Data Center mission-critical IT operations.
    6. The Division of Integration and Environmental Testing (S49C)
      1. Ensures that all application, configuration, and systems changes across all platforms are documented, coordinated, and tested resulting in a complete integration into the production environment.
      2. Maintains change policies and manages internal software controls.
      3. Responsible for exploring, testing, evaluating and refining the integration process in collaboration with others to examine new methods like Agile and DEV/OPS.
      4. Supervises the integration-testing environment to support a rapidly increasing stream of applications being released into the agency’s production environment.
      5. Responsible for two functions (testing and release to production) within the Construction phase of the New Project Lifecycle.
      6. Responsible for a myriad of functions such as automated testing, infrastructure testing, configuration management and release coordination, client server software migration, software testing, application and system software migration and implementation.
    7. The Division of National Network Services and Operations (S49E)
      1. Maximizes and communicates enterprise IT availability with 24x7 monitoring, help desk services and problem management leadership.
      2. Provides program management of the Data Center’s operations and for the Network Operation Center (NOC) operations, which are primarily responsible for maintaining telecommunication network connectivity between all sites connected to the SSA network with the goal of maximizing network availability.
      3. The six Remote Operations Communications Centers (ROCCs) are responsible for resolving site severity-1 incidents and providing on-site infrastructure equipment support within the Payment Center buildings.
      4. Receives and documents all incidents related to any hardware, software and network issues for SSA.
      5. Provides concise, accurate and informative communications to SSA’s user community to ensure they are aware of outages and maintenance affecting SSA’s systems in a timely manner.
      6. Provides 24x7, 365 days a year proactive monitoring, tier 1 and 2 technical support, problem determination and customer support for all critical network and telecommunications infrastructure devices throughout the agency.
      7. Monitors, tracks, and trends various daily operational, performance standard, process compliance, and preventative support and trend reports.
      8. Develops the criteria, executes the system implementation, and operates an in-house IT support help desk for SSA employees, DDS state employees, and industry partners to provide support, training and customer service.
      9. Ensures measurable World Class Service for all customers by applying compassion, oversight, performance standards, and technology to deliver services within and throughout the OCIO, using service and operating level agreements developed through collaboration.
    8. The Division of Online Systems and Database Operations (S49G)
      1. Procures, installs, modifies and tunes all online/batch Teleprocessing Monitor Systems Software, Database Management System and vendor support products on Mainframe and Distributed Platforms.
      2. Configures and maintains the mainframe integration and production environments for CICS, WebSphere MQ and database systems including DB2, Oracle and IDMS.
      3. Responsible for the evaluation, installation, and maintenance of monitoring software used by SSA’s mainframe and distributed environments.
      4. Monitors and troubleshoots all of the online and batch application and database system IT environment 24x7 in support of the agency’s mission critical programmatic workloads.
      5. Evaluates, installs, maintains, monitors and operates the agency’s online and Database Management System software used by SSA’s mainframe and distributed environments.
      6. Configures and integrates application software for both the pre-production and production phases of SSA’s Lifecycle.
    9. The Division of Systems Performance and Service-Level Management (S49H)
      1. Ensures systems capacity is utilized effectively and efficiently and accurately predicts and plans for SSA’s future IT capacity needs.
      2. Provides mainframe problem determination and capacity studies, configuration and workload/workflow analysis, stress testing analysis, and metrics data collections and reporting.
      3. Responsible for a range of network functions such as wide-area network capacity studies, sizing recommendations, modeling studies, and network performance data administration.
      4. Provides Windows and UNIX performance data collection, utilization analysis, reporting and capacity modeling and participates in network procurement activities.
      5. Serves as principal executive liaison for telecommunications and systems operations to counterpart offices in the DDSs, Office of Hearings Operations (OHO), OQP and regional offices.
      6. Serves as liaison to external business partners for infrastructure related to batch, integration testing, IT Security, change management, database, print operations, Service Level Agreements (SLA), and infrastructure facility usage.
      7. Provides capacity planning guidance to SSA’s web developers by testing the performance of SSA’s internet and intranet applications.
      8. Monitors mainframe functions and the accessibility of SSA’s internet and intranet applications and coordinates enterprise workload availability and problem reporting.
    10. The Division of Systems User Services and Facilities (S49J)
      1. Provides for planning, installation and management of white space supporting the IT infrastructure in the SSA data centers.
      2. Administers the introduction and growth of SSA’s electronic imaging and image management/image serving capabilities.
      3. Installs, plans and supports SSA’s imaging infrastructure, faxing, high-speed and casual scanning in the DDSs, OHO, PSC, and field offices.
      4. Provides agency enterprise monitoring for UNIX and Windows.
      5. Installs and supports Change, Asset and Problem Reporting System (CAPRS) for IT change and problem management and IT service and request catalog.
      6. Provides support for Output Print environment including Enterprise Print Architecture (EPA) and agency-wide notice processing.
      7. Provides OCIO NCC facilities management liaison support for space management, renovations and NCC building related activities.
      8. Responsible for managing a centralized inventory for the agency’s ITS and telecommunications equipment.
    11. The Division of Client/Server Infrastructure (S49K)
      1. Plans, evaluates, implements, conducts continuing assessments and engineering analyses through comprehensive Research and Development (R&D), pilots, and Proofs of Concept (POCs).
      2. Manages the number, as well as the capacity, of servers in SSA’s field operations, develops environments to ensure and enhance greater reliability through virtualization technologies to provide greater performance from IT investments, and consolidates IT equipment into OHE.
      3. Designs, develops, implements, and supports SSA’s enterprise and distributed client/server computing infrastructure including: enterprise directory, name resolution and remote connectivity services, servers, desktops, assistive technology, printers, infrastructure management, server and desktop virtualization.
      4. Responsible for standard image configuration for all users of the agency’s mandated desktops (workstations and laptops): Field Offices (FOs), Teleservice Centers (TSCs), Processing Service Center-Office of Quality Performance (PSC-OQP), Office of Disability Adjudication and Review (DAR), Disability Determination Services (DDSs), Employees with Disabilities (EWDs), and Knowledge Workers (KWs).
      5. Manages and supports the desktop operating system, which includes building and maintaining desktop images.
      6. Categorizes and catalogs Commercial Off-the-Shelf (COTS) desktop tools.
      7. Maintains Assistive Technology desktop software and systems that enhance learning, working, and daily living for persons with disabilities.
      8. Manages the remaining physical enterprise application servers in the Client/Server Application Computing Platform (CSACP).
      9. Responsible for the configuration and support of the non-Microsoft COTS desktop tools (e.g., Adobe Reader).
      10. Researches new emerging technologies, configures and integrates the Assistive Technology Software with SSA infrastructure, and provides day-to-day support to all SSA EWDs and all deployed Assistive Technologies.
      11. Responsible for design, development, management and support of the System Center Configuration Manager (SCCM), Cross-platform server monitoring and alerting Systems Center Operations Management (SCOM) infrastructures. Conducts engineering and testing of expanded platforms for applications.
      12. Responsible for the design, development, management and support of agency production virtualization environments, including the Data Center Virtual Infrastructure (DCVI) and Virtual Desktop Infrastructure.
      13. Responsible for the design, development, engineering, and management of SSA’s Enterprise Network Services, which include: Active Directory (Production and Integration, Group Policy Management MS Domain Name Service (DNS), Universal Network Information eXchange (UNIX) Berkeley Internet Name Domain (BIND) DNS, Dynamic Host Configuration Protocol (DHCP), Windows Internet Naming Service (WINS), Virtual Private Network (VPN), and Network Policy Server (NPS) Radius/Wireless.
      14. Provides base image support for Application Member Servers (AMS) typical to ODAR and state DDS offices.
      15. Coordinates the Change Control Board (CCB) process through Technical Review for client/server changes.
      16. Responsible for providing, implementing, and supporting SSA’s Virtual Branch Office standard configurations in over 1,700 FOs, Regional Offices (ROs), Headquarters (HQ), Processing Centers, and TSCs.
    12. The Division of Integrated Telecommunications Management (S49L)
      1. Implements and maintains national telephone platform, including Voice over Internet Protocol (VoIP) and softphone solutions.
      2. Provides administrative site change relocation services for voice, video, data, workstation, server, Homeland Security Presidential Directive-12 Interactive Video Training (HSPD-12 IVT), and multi-vendor network components.
      3. Plans and manages the strategic and tactical direction of the SSA voice-communications and voice-data integration programs.
      4. Provides technical and analytical support for the National 800 Number, among other communications initiatives and programs.
      5. Provides and manages voice communications systems hardware, software, services, and ancillary equipment for SSA nationwide.
      6. Provides support and manages the Interactive Video Teletraining infrastructure to support the agency’s distance learning program nationwide.
      7. Directs the acquisition, operations, maintenance, retention, and disposal of voice communications systems and services SSA-wide.
      8. Develops and administers voice communications Information Technology Service (ITS) contracts.
      9. Administers Federal Telecommunication System (FTS) 2000 General Services Administration (GSA) provided services SSA-wide and represents SSA in all related negotiations within SSA and with General Services Administration (GSA) vendors and carriers.
      10. Serves as the SSA focal point for voice communications capacity planning.
      11. Manages SSA-wide programs for imaging, video, facsimile, satellite, radio, and emergency communications.
      12. Manages SSA HQ voice systems and the acquisition of data circuits.
      13. Serves as SSA-level liaison with Federal, state, other government agencies, and private-sector entities on voice communications and voice-data integration.
      14. Manages the development and application of emerging voice communications technology within SSA.
      15. Manages technical solutions for “800” and toll-free services SSA-wide.
    13. The Division of Internet/Intranet Application Services (S49M)
      1. Designs and supports the SSA Unified Communications environment (including video services such as teleconferencing, Video on Demand (VOD), webinars, email, VPN, cell phones, etc.).
      2. Manages the telecommunications operations complexes located at the Central Office, ROs, TSCs, and SSA field sites.
      3. Responsible for delivering 99% overall availability to the user community of four major infrastructures: Intranet, Electronic Messaging, Groupware, and Data Exchange, by meeting the technical milestones as defined within the “OHE Architecture Plan.”
      4. Analyzes, designs, and implements hardware and/or vendor software in support of electronic messaging (including email, groupware, Collaboration), Windows web-based application, web servers, production file transfer and data exchange.
      5. Develops or selects, evaluates, modifies, installs, implements and maintains software and/or hardware systems in support of data exchange, electronic messaging, groupware, collaboration, and application and web servers.
      6. Analyzes requirements for new systems and ensures computing capacity provides for sufficient functionality.
      7. Integrates and validates test design and execution of all major hardware, software, configuration, release, version and maintenance levels.
      8. Manages communications software changes.
      9. Serves as the SSA-level technical liaison with Trading Partners to conduct the exchange of data.
      10. Implements Internet/Intranet policies, objectives, plans, and methods for achieving the SSA mission.
      11. Interfaces with SSA Network (SSANet) users to determine the impact of new applications and workloads, supports user liaison, and systems development activities of other SSA components in resolution of technical and operational problems.
      12. Performs Level 3 hardware and software support and problem determination for the Internet and Intranet infrastructure including electronic messaging, web, and data exchange.
      13. Provides the development and maintenance necessary to operate, maintain, and upgrade the Electronic Messaging Infrastructure, providing a reliable and secure means to communicate via email and real-time communications.
      14. Provides engineering services for Data Exchange architectures and their supporting software utilities, which provide file transfer solutions for various Training Partners accessing SSA’s mainframe environment through Internet VPN or Security File Transfer Protocol (SFTP) connections.
    14. The Division of Mainframe Systems Software (S49N)
      1. Implements new mainframe roles in hosting SSA’s Internet and Intranet applications.
      2. Ensures mainframe capacity to service SSA workloads.
      3. Responsible for installing and maintaining the mainframe, mid-range operating systems, and software products used by employees throughout SSA every day.
      4. Maintains vendor products that enhance the mainframe operating system.
      5. Ensures availability and reliability of critical software systems, which automatically control and monitor many of SSA’s data processing functions to allow SSA to provide excellent service to its customers.
      6. Provides stable and reliable mainframe systems environments by staying current and up-to-date with the latest releases of systems software running on the SSA mainframes to ensure the highest availability.
      7. Responsibility for installing and maintaining z/OS WebSphere on the mainframe, On-Demand and Content Manager software, and iSeries hardware and software in the NCC and the Second Support Center (SSC).
      8. Provides stable and available z/OS WebSphere and iSeries environments to ensure that agency software is current and free from defects to allow SSA to provide superior services to its customers.
      9. Installs and maintains numerous COTS software products on SSA’s test and production mainframe systems, keeping products up-to-date and compatible with SSA’s ever-changing system environments.
    15. The Division of Network Engineering (S49P)
      1. Plans and maintains the infrastructure for growth in the deployment of the agency’s Internet, Intranet, and Extranet infrastructures.
      2. Plans, tests, maintains, and deploys the network hardware, software, and monitoring tools that support SSA’s networks.
      3. Ensures reliability of data, voice, and video communications at all times, and assists the end-user community in gaining access to network services.
      4. Serves as customer advocate with external service providers.
      5. Provides, administers, and maintains network connectivity between SSA data centers and External Business Partners (state, Federal, and partner agencies).
      6. Provides, administers, and maintains network connectivity between SSA’s network and DDS sites.
      7. Provides, administers, and maintains mainframe, network, and firewall device connectivity between SSANet and Electronic Business Process (EBP)/DDS sites.
      8. Responsible for network design and operational support of SSANet for the Baltimore HQ Campus, NCC, and SSC Buildings (excluding the Data Centers), Falls Church ODAR Headquarters, and Commissioner’s Local Area Network (LAN) Wireless Infrastructure and Unified Communications.
      9. Responsible for network design and operational support of SSANet for the National Support Center (NSC), and SSC Data Centers, DC-to-DC Backbone links, Software Development Plan (SDP) Database Isolation Switches (DBIS), Demilitarized Zone (DMZ), and System Zero Laboratory.
      10. Responsible for network design and operational support of SSANet including LAN/Wide Area Network (WAN) Routing and Switching including security, SDPs, Remote Operation Communication Centers (ROCCs), EBP, PSCs, ROs, TSCs, DDSs, FOs, Foreign Service Posts (FSPs), and Wireless Infrastructure, but excluding Campus and Data Centers.
      11. Reports network historical performance, administers Cisco Prime, and maintains and implements functionality of SSANet’s application switch infrastructure.
    16. The Division of Resource Management and Acquisitions (S49Q)
      1. Ensures the integration of requirements development, budgeting, governance processes, application of comprehensive risk management planning, and accounting for the scale of complexity between infrastructure projects and programs.
      2. Communicates and advocates for infrastructure acquisitions with decision makers and stakeholders, formulates and presents the OSOHE IT budget. Executive is responsible for OSOHE Office of Management and Budget (OMB) 300, and Earned Value Measurement Systems (EVMS) programs.
      3. Provides acquisition services for all OSOHE mainframe infrastructure activities, including re-competition and transition to new contracts.
      4. Manages the development of OSOHE Special Expense Items (SEIs) and formulates the annual IT Budget.
      5. Supports contract and fiscal administration for OSOHE Software and Hardware maintenance contracts.
      6. Serves as Contracting Officer’s Technical Representative (COTR) for Information Technology Services re-competition and ongoing maintenance contracts.
      7. Directs and coordinates OSOHE planning, budget, and acquisition activities for IT hardware and software maintenance services.
      8. Manages all OSO/OHE Operational Budget tasks and approves all OSOHE requisitions.
      9. Processes the majority of OSOHE micro purchases.
      10. Supports the three Infrastructure OMB-300 Portfolios by providing monthly-earned value measurement analysis and reporting for the three Portfolios, and supports the Portfolio Program Managers in the preparation of OMB-300 submissions.
      11. Responsible for monitoring the execution of the OSOHE ITS budget, directing the renewal process for existing contracts, providing centralized certification and authorization of vendor invoices.
      12. Supports appropriate management and Project Officers on contract and fiscal administration for the agency’s Software and Hardware maintenance contracts.
      13. Develops and maintains budget reports to assist components on ITS expenditures and balances.
      14. Continues, extends, and optimizes the agency’s computers, networks, telecommunications, storage, and service delivery platforms to maintain service levels, reduce technology debt, and leverage economies of scale.
      15. Works with other OCIO components to determine and define the agency’s infrastructure hardware, software, and end-user device needs.
      16. Configures, tests and supports new hardware configurations, vendor software products, and microcode updates.
      17. Evaluates and recommends acceptance of new hardware.
    17. The Division of Systems Storage Management (S49R)
      1. Manages, plans, delivers state-of-the-art data storage, storage management, and storage options provided in the SSA IT architecture on all server platforms to include monitoring, troubleshooting, and updating systems storage infrastructures to provide highly available, fault tolerant data protection.
      2. Ensures risk reduction throughout the infrastructure lifecycle, retiring hardware (and dependent software/operating systems) as it ages by replacing it timely, responsibly, and efficiently.
      3. Budgets for and procures tape resources including media, Automated Cartridge Systems (ACS), Virtual Tape Libraries, and encryption Key Management Systems (KMS).
      4. Monitors, maintains, and reports tape environment status, including all tape resources, processes, job flows, and inventories. Designs infrastructure, coordinates installation, and analyzes performance and utilization of tape resources at the agency. Oversees offsite secure storage and vaulting operations for critical data resources.
      5. Identifies and resolves operational issues with media, devices, library control and tape management systems processes, encryption KMS cluster, and allocation errors.
      6. Supports SSA’s Disaster Recovery (DR) efforts by ensuring critical data are available and accessible and sufficient tape resources are available for production processing.
      7. Researches, analyzes, acquires, and implements software systems which control storage space management and performance operations, and enhances the administration of storage resources through expert systems and automation.
      8. Implements and maintains System Managed Storage (SMS) within the production complexes.
      9. Coordinates with DASD Pool Managers to project agency requirements for physical mainframe data storage (direct access, tape, optical, microfiche/film, etc.) and manages tactical allocation of storage resources to applications development components.
      10. Provides data backup and recovery services for SSA’s major databases of client information on mainframe and Intelligent WorkStation (IWS)/LAN platforms.
      11. Directs the integration of new mainframe storage technology into the NCC environment.
      12. Manages the data recovery at SSA’s “hot site” facility during trials and in the event of a severe data loss.
    18. The Division of Infrastructure Services (S49S)
      1. Provides infrastructure services spanning UNIX mid-tier, virtualized x86, public cloud, and on-premise cloud technology that will support all lifecycle environments.
      2. Provides Linux OS enterprise services and governance.
      3. Provides Internet/Intranet application software support.
      4. Provides infrastructure automation platforms, services, and governance.
      5. Runs a container-based Platform-as-a-Service offering for automated deployment and management of applications.
      6. Develops and governs Docker container images and configurations.
      7. Develops and governs a centralized and unified Service Portal offering that allows for self-provisioning of infrastructure and infrastructure services.
      8. Assists in the cataloging, onboarding, integration, and governance of external cloud services and SaaS offerings.
      9. Provides the technical contract services, budgeting, and billing services for infrastructure services.
      10. Supports the traditional UNIX/Linux infrastructures.
      11. Provides engineering services for UNIX and Linux Systems, which are available to support the agency’s needs and provide a secure platform for public access through SSA.gov.