Combat Coder Site Support

Performance Work Statement for Air Force Distributed Common Ground System Combat Coder Program __________ Prepared by AFLCMC/C3IA 750 Third Street Robins Air Force Base, GA 31098 REVISION SUMMARY Revision Date Description Affected Pages/Para. Initial Table of Contents Table of Contents 2 1.0 Description of Services 3 1.1 Objective(s) 4 1.2 Benefit to United States Air Force 5 1.3 Background 5 2.0 Services Summary 5 3.0 Government Property 6 3.1 Contractor Responsibility 6 3.2 Government Property to be Provided 6 3.3 Base Support 6 3.4 Reporting of Government Property 6 3.5 Loss of Government Property 7 3.5.1 Definition of Loss of Government Property 7 3.5.2 Reporting Loss of Government Property 7 3.6 Return or Retention of Government Property 7 4.0 Technical Requirements 7 4.1 Period and Place of Performance 7 4.1.1 Contract/Order Period of Performance 7 4.1.2 Place of Performance 7 4.2 Contract Data Requirements List(s) (CDRL) 8 4.2.1 Quality of CDRL Deliverable 9 4.2.2 Receipt of CDRL Deliverable 10 4.3 Program Management and Administrative Support 10 4.3.1 Risk Management 10 4.4 Engineering Services 11 4.4.1 Software Development Life Cycle (SDLC) Activities 11 4.5 Personnel Qualifications: 12 4.5.1 Lead Software Engineer 12 4.5.2 Senior Software Engineer 12 4.5.3 Cybersecurity Engineer 12 4.5.4 General Requirement 12 4.6 Holidays and Facility Closings 12 4.7 Travel 13 5.0 General Information 13 5.1 Continuation of Mission-Essential Services During a Crisis 13 5.1.1 Designation of Services as Mission-Essential 13 5.1.2 Mission-Essential Contractor Services Plan 13 5.2 Security Requirements 14 5.2.1 Protection of Controlled Unclassified Information 14 5.2.2 Covered Defense Information 14 5.2.3 Security Regulations 15 5.2.4 Operations Security (OPSEC) 16 5.2.5 Communications Security (COMSEC) 16 5.2.6 Security Clearance 16 5.2.7 Security Incident or Violation 17 5.2.8 Access to Government System(s) 17 5.2.9 Access to Government Facility or Military Installation 17 5.2.10 Common Access Card (CAC) 17 5.3 Environmental Management System (EMS) 17 5.4 Agency Affirmative Procurement Programs 18 5.5 Safety Requirements 18 5.5.1 Contractor Environmental, Safety, and Occupational Health Compliance 18 5.5.2 Mishap Notification/Investigation 18 5.5.3 Voluntary Protection Program (VPP) 19 5.5.4 Department of Labor (DoL) Inspection of Contractor Operations 19 5.6 Inspection of Services 19 5.7 Service Contract Reporting (SCR) 19 5.8 Invoicing/Payment and Receipt/Acceptance 19 5.9 Trafficking in Persons 19 5.10 Inspection of Services 19 6.0 Appendices 20 6.1 Appendix A: Acronyms 21 6.2 Appendix B, References 23 1.0 Description of Services Objective(s) This Performance Work Statement (PWS) describes the services required to provide a dedicated, contractor-operated software engineering team to design, engineer, test, integrate, deploy, and sustain software capabilities for the Distributed Common Ground System (DCGS) enterprise. The primary objective is the continuous delivery of secure, high-quality, and mission-effective software that rapidly responds to emerging DCGS enterprise intelligence, surveillance, and reconnaissance (ISR) requirements. To achieve this, the contractor shall operate within a DevSecOps framework. The contractor will perform full software development life cycle (SDLC) support—spanning planning, analysis, design, testing, delivery, and sustainment—which includes the following key service areas: Agile Methodologies and Tracking: Strictly adhere to iterative Agile methodologies (e.g., Scrum, Kanban) for all development efforts. The contractor shall track all user stories and documentation in the government-provided JIRA instance. This includes full participation in standard Agile ceremonies (Sprint Planning, Daily Stand-ups, Sprint Reviews, and Retrospectives) to deliver tested and integrated software code increments at the end of each sprint. Software Design, Development, and Platforms: Design, develop, and test resilient software applications engineered to degrade gracefully in contested or low-bandwidth environments. Code shall be clean, efficient, maintainable, and written in accordance with secure coding practices (e.g., OWASP Top 10). All development shall occur on authorized government platforms, including but not limited to Maven Smart Systems, ArcGIS, Dagster, and Apache Airflow, utilizing open standards and Application Programming Interfaces (API) for DCGS interoperability. DevSecOps & Integrated Cybersecurity: Integrate security into all phases of the software lifecycle. Source code, configuration files, and deployment scripts shall be maintained in the government-provided GitLab repository using a "GitFlow" branching strategy. Code must undergo peer-reviewed Merge Requests (MRs) and pass automated pipeline checks, including processing through Government-approved security scanning applications to ensure zero (0) new critical or high vulnerabilities. Furthermore, the contractor shall enforce multiple testing levels (Unit, Integration, End-to-End) and maintain a minimum of 80% unit test coverage for all new code. 24/7 Software Sustainment and Incident Response: Provide rapid engineering support for the DCGS production environment. In accordance with government-defined incident response processes, the contractor shall respond to critical, mission-impacting operational bug reports within four (4) business hours of notification. The contractor must provide a technical mitigation plan, root cause analysis, or an emergency hotfix within 24 business hours to restore operational capability, and ensure documented rollback procedures are in place for every release. Benefit to United States Air Force This acquisition will benefit the United States Air Force (USAF) …