Foxhole Technology Awarded DISA ACAS Contract

On July 15, 2019, The Defense Information Systems Agency (DISA) awarded the five-year Assured Compliance Assessment Solution (ACAS) contract to Foxhole Technology, the small business leader in cyber security, vulnerability management, continuous network monitoring, advanced analytics and context-aware security. ACAS is an integrated software solution providing automated network vulnerability scanning, configuration assessment, and network discovery-highlighted by a suite of products to include the Security Center, Nessus Scanner and the Nessus Network Monitor. This program provides a critical capability to ensuring overall DoD cyber health. Foxhole Technology and partner, Perspecta Enterprise Solutions, will continue to assess U.S. Department of Defense (DoD) enterprise networks and connected IT systems against DoD standards, as well identify any known system vulnerabilities

 ACAS expands Foxhole Technology’s DISA Enterprise Cyber Security Prime Portfolio, which currently includes the Continuous Monitoring and Risk Scoring (CMRS) program, the Secure Configuration Management Program (SCM) and the System Information and Event Management Program (SIEM) under DISA’s Cyber Development Directorate (CD). ACAS and SCM provide critical data feeds that assess compliance and vulnerabilities across reporting agencies, and are rolled up into CMRS to provide enhanced Security reporting to the DoD CIO. ACAS is also a critical component used to assess vulnerabilities as part of the Cyber Security Readiness Inspections (CCRIs) mandated by USCYBERCOM and is used to quickly and accurately assess the security posture of DoD enterprise networks. 

Through ACAS, we can detect assets and vulnerabilities using several sensors. As an integrated software solution, ACAS has the ability to scale to an unlimited number of locations. It can be deployed without difficulty via download to all DOD agencies – without the need to procure and install appliance devices. Further, the product suite generates the required reports and data, with a centralized console.

As DISA moves to ACAS 2.0, Foxhole Technology will support sustainment and training for ACAS, design, architecture, implementation and integration of ACAS 2.0 with current DISA technologies, as well as, support expanded integration of the tool across SCM and CMRS. Foxhole Technology, and partner, Perspecta Enterprise Solutions, stand ready to provide continued ACAS support to the DoD Enterprise from sustainment of the current suite of ACAS software through the proposed transition to next-gen, cyber security solutions.

 

New Technical Recruiter, Amanda Lee

0.jpeg

Amanda Lee has joined Foxhole Technology as a Technical Recruiter. She will work with Lisa Durbin and Darcy Valdes on recruiting initiatives and mobile expansion in support of our continued growth in 2019. Amanda brings social media synergy and experience in the cleared field of talent acquisition for both large and small businesses to Foxhole Technology. Welcome Amanda!

Charity Golf Tournament Nets More Than $10,000 for Operation Homefront.

The first annual Foxhole Technology Charity Golf Tournament was held on Monday, October 22, 2018 at Mount Vernon Country Club in Alexandria, VA.  With proceeds benefitting Operation Homefront, winners of the modified scramble tournament were the team of Ira Ludwick, Jim Singerling, Mike Rutkowski, and Stewart Kerr with a score of 62.  Finishing second at 66 was the team of Kyle Armeny, Paul Pitcovich, Mark Price and Andrew Woodruff. Kyle Armeny also won closest to pin on the sixth hole at 22.5 feet and the long drive went to Gary Morris. 

 Operation Homefront is a national 501(c)(3) nonprofit whose mission is to build strong, stable, and secure military families so they can thrive — not simply struggle to get by — in the communities they have worked so hard to protect.

IMG_0988.JPG

At the post tournament luncheon and awards ceremony, Wes Hester, CEO, Foxhole Technology (center) presented Bruce Anderson (left) and Shannon Grynkewich (right) of Operation Homefront with a $10,000 donation check from proceeds from the golf tournament.

See Photo Gallery

Foxhole Technology Awarded PBGC BPA

Foxhole Technology is very pleased to report that we have been awarded the Pension Benefits Guaranty Corporation (PBGC), Blanket Purchase Agreement (BPA) to provide Risk Management Framework (RMF) processes for documenting, tracking, and reporting an information system’s mission areas, and the overall  security and privacy risks to the agency – thereby improving information security and privacy risk management within the Corporation. 

The contract is a five-year Blanket Purchase Agreement (BPA) for Information Systems Security Support, under our GSA 70 Schedule, using our Highly Adaptive Cybersecurity Services (HACS) SIN for Risk and Vulnerability Assessment (SIN 132-45D). The period of performance is August 10, 2018 – August 9, 2023.  The total ceiling price of the BPA is $18,000,000. Task Orders will be issued using Firm Fixed Price (FFP), Labor Hour (LH), Time and Materials (T&M), or a Hybrid consisting of a combination of the contract types. 

For this Task Order driven contract, we will leverage 13 labor categories to provide support to ensure services are: 1) in compliance with federal and agency requirements; 2) based upon the PBGC Risk Management Framework; 3) based upon the related requirements for project management; and 4) based upon related requirements for special projects – which could include, but may not be limited to, gap analysis, controls assessments, risk assessments, etc. 

Foxhole Technology Awarded DISA SCM Contract

1492807490884.png

Foxhole Technology has been awarded the Defense Information Systems Agency (DISA), Secure Configuration Management (SCM) Development and Operations contract. Awarded on the DISA Development and Business Center (DBC), Blanket Purchase Agreement (BPA), HC1028-17-A-0010, the contract provides a period of performance through June 19, 2021, with a 6-mpnth extension through  December 18, 2021.

Foxhole Technology will provide services and support for the entire SCM portfolio – including the integration and optimization of enterprise cyber security applications, tools and data standards to support automated processes used in cyber blue force tracking, risk management, near-real time awareness of devices and software inventory and configurations. The SCM Core Systems for development and sustainment include: Asset Inventory Management Module (AIMM); Content Management and Content Infrastructure.

The SCM portfolio dovetails perfectly with the long-term work Foxhole Technology currently provides on the DISA Continuous Monitoring and Risk Scoring Development and Sustainment (CMRS) contract (recently re-awarded to Foxhole Technology). Although CMRS is not part of the SCM portfolio, CMRS is the primary consumer of data from SCM portfolio tools, and is the data producer for other SCM portfolio tools. 

 "We look forward to supporting the sustainment and enhancement of existing SCM capabilities, while also providing the rapid implementation of new features, updates and improvements – including the redesign of SCM capabilities to better meet operational requirements," stated Dee Rider, Program Manager, CMRS and SCM, Foxhole Technology.

Foxhole Technology will provide services in the following tasks areas:

  • Task Area 1 - TO Management Support
  • Task Area 2 - Software Design
  • Task Area 3 - Software Development Support
  • Task Area 4 - Tier III Support
  • Task Area 5 - Product Subject Matter Expert (SME) Support

DISA DBC provides next generation, net-centric network operations (NetOps) and defensive cyber operations (DCO) capabilities for combatant commanders, joint/combined task forces, services, and agencies across the entire Department of Defense Information Network (DoDIN).  In concert with the Department of Defense (DoD) migration to the Big Data Platform (BDP) concept, DoD programs are designated to provide the situational awareness by employing specialized components and analytic architectures that result in dynamic visualizations of potential and actual malicious trends and behavior.

For more information, please contact Mark Cosgrove.

Foxhole Technology Awarded CMRS Recompete on DISA DBC BPA

Foxhole Technology has won its recompete for our current work on the DISA Continuous Monitoring and Risk Scoring (CMRS) Development and Sustainment program. Awarded on the Defense Information Systems Agency (DISA), Development and Business Center (DBC), Blanket Purchase Agreement (BPA), HC1028-17-A-0010, the contract provides a period of performance through May 4, 2022.

Foxhole Technology will continue to provide a suite of Government Off-The-Shelf (GOTS) and Commercial Off-The-Shelf (COTS) based software solutions that create global and organizational risk views by applying threat and vulnerability-based scoring algorithms. We   provide near-real time risk visualization, automated configuration management (CM) analysis, and continuous monitoring capabilities that enable net defense and risk awareness information.  CMRS continuously assesses and measures the risk state of DoD Information Technology (IT) systems in accordance with enterprise security controls – such as software/hardware inventory; Security Technical Implementation Guide (STIG) and patch compliance; anti-virus configurations; and directive compliance. Foxhole Technology will continue to build CMRS to host DoD  security information on workstations, servers, and network devices in a central repository to:

  1. Develop, sustain and maintain operational the CMRS application on the Microsoft .NET framework. 
  2. Develop, sustain, and maintain CMRS analytics on the Cyber Situational Awareness Analytical Capabilities (CSAAC) Big Data Platform (BDP).
  3. Enhance CMRS application to include risk measurement (risk scoring) capability.

Through this new contract, Foxhole Technology will provide programmatic, technical, engineering and integration support for the continued design, development, enhancement, integration, deployment and sustainment of CMRS in the following Task Areas – all which are support the over-arching DISA DBC BPA:

Task Area 1 - Contract Level and TO Management Support [BPA Task Area 1].  Provide CO management support describing the technical approach, organizational resources, and management controls, transition plan, risk management plan to be implemented to meet the, performance, and schedule requirements through the contract execution.  

Task Area 2 - Software Design and Development [BPA Task Area 2].  Provide requirements, development, testing, and deployment in support of CMRS.  This effort will include gathering and managing operational, functional, and system requirements, conducting comprehensive testing, data acquisition and integration, and establishing a repeatable system engineering process, and managing users’ requirements.  In addition, this includes engineering and deploying the solution to the appropriate hosting environment(s).  

Task Area 3 - Software Development Support [BPA Task Area 3].  Provide cyber security and A&A support.   This effort will include supporting the security posture of the development, test, implementation, and production systems to maintain compliance with DoD regulations and Risk Management Framework (RMF).  In addition, this task area includes configuration management, sustainment, and system administration support.   

Task Area 4 - Tier III Support [BPA Task Area 4].  Provide Tier III service desk support for after hour operational issues, and operational support activities, and operations support for operationally-focused program activities.  

Task Area 5 - Product Subject Matter Expert (SME) Support [BPA Task Area 5].  Provide in-person and/or virtual training sessions, and ad-hoc training.  Serve as the expert in the areas of device and vulnerability data analysis and reporting, vulnerability management, continuous monitoring, risk scoring, CMRS strategy, and Secretary of Defense (SECDEF) Cybersecurity Scorecard support.  

About CMRS
Continuous Monitoring and Risk Scoring (CMRS) is a web based system that visualizes the cybersecurity risk of the Department of Defense (DoD) based on published asset inventory and compliance data. The risk state of the DoD Enterprise security controls for software inventory, antivirus configuration, Security Technical Implementation Guide (STIG), and Information Assurance Vulnerability Management (IAVM) vulnerability and patch compliance are measured and reported. CMRS supports the risk-management approach to cybersecurity oversight by quantitatively displaying an organization’s security posture through the use of risk dashboards. Using the risk dashboards, users can gather actionable direction, implement prioritized mitigation decisions, and ensure effectiveness of security controls in order to support their cybersecurity risk management duties.

About DISA/DBC
DISA/DBC provides next generation, net-centric network operations (NetOps) and defensive cyber operations (DCO) capabilities for combatant commanders, joint/combined task forces, services, and agencies across the entire Department of Defense Information Network (DoDIN).  In concert with the Department of Defense (DoD) migration to the Big Data Platform (BDP) concept, DoD programs are designated to provide the situational awareness by employing specialized components and analytic architectures that result in dynamic visualizations of potential and actual malicious trends and behavior.

For more information please contact Mark Cosgrove.

Foxhole Technology Awarded Security Information Event Manager (SIEM) Support Services

Foxhole Technology won its recompete for Security Information Event Manager (SIEM) Support Services for the Defense Information Systems Agency (DISA)/ Development and Business Center (DBC). Awarded on the DISA Blanket Purchase Agreement (BPA), HC1028-17-A-0010, the period of performance encompasses option years through April 30, 2022.  Building on our current success on the Security Information Manager (SIM) program, Foxhole Technology will continue to meet the ever increasing demands for higher confidence and near real-time detection of security incidents by improving the SIEM technology. The next generation SIEM will provide scalable, detective, investigative and analytic capabilities and workflows to enable more effective and efficient incident response. Foxhole Technology will build upon and/or replace current capabilities to achieve a unified federated approach for collection, analysis, visualization and information sharing that will become the primary alerting and workflow platform across DISA and the United States Cyber Command (USCYBERCOM). 

Foxhole Technology will provide services and solutions in the following task areas:

  • Task Area 1 –Order Management. Provide management controls and support for organizational resources to meet the performance and schedule requirements during order execution.
  • Task Area 2 – Software Design.  Provide Authorization and Accreditation (A&A) support for the SIEM baseline(s).
  • Task Area 3 – Software Development Support.  Provide operational support for the SIEM baseline. 
  • Task Area 4 – Tier III Support.  Provide Tier III service desk support.
  • Task Area 5 – Product Subject Matter Expert (SME) Support. Provide SMEs, globally, as outlined in the place of performance, to support the SIEM requirements. 

About DISA/DBC
DISA/DBC provides next generation, net-centric network operations (NetOps) and defensive cyber operations (DCO) capabilities for combatant commanders, joint/combined task forces, services, and agencies across the entire Department of Defense Information Network (DoDIN).  In concert with the Department of Defense (DoD) migration to the Big Data Platform (BDP) concept, DoD programs are designated to provide the situational awareness by employing specialized components and analytic architectures that result in dynamic visualizations of potential and actual malicious trends and behavior. 

For more information please contact Mark Cosgrove.

Foxhole Technology Supports Autism in 5K Run/Walk

The 2018 Chambersburg Area School District (CASD) Autism Run/Walk was held on a cold and rainy day, April 15 at 2 p.m. in Norlo Park, Chambersburg, PA. Foxhole Technology family member, Simran Sehgal, clocked the lowest female time in her age group!

We would like to thank Dee Rider, PM, DISA CMRS, for sprearheading this event, and bringing more awareness to autism initiatives. 

WAY TO GO TEAM FOXHOLE!

Monika Segal, and her daughters Neha and Simran, finish the 5k. 

Monika Segal, and her daughters Neha and Simran, finish the 5k. 

Foxhole Technology employees and who braved the cold to run and walk for this great cause are from left: Mark Malonis, Jeff Bert, Tom Kershner, Dee Rider, Stewart Kerr, Joe Burke and Monika Segal; and family members, Neha Sehgal and Simran Sehga (and their dog).

Foxhole Technology employees and who braved the cold to run and walk for this great cause are from left: Mark Malonis, Jeff Bert, Tom Kershner, Dee Rider, Stewart Kerr, Joe Burke and Monika Segal; and family members, Neha Sehgal and Simran Sehga (and their dog).

Tom Kershner, Jeff Bert and Dee Rider are happy to cross the finish line.

Tom Kershner, Jeff Bert and Dee Rider are happy to cross the finish line.

Foxhole Technology Awarded CIO-SP3 Small Business

Foxhole Technology has been awarded, as a Service Disabled Veteran Owned Small Business (SDVOSB), the Chief Information Officer - Solutions and Partners 3 (CIO-SP3) Small Business, Government-Wide Acquisition Contract (GWAC), a 10-year Indefinite Delivery/Indefinite Quantity (IDIQ) contract with a ceiling of $20B.  This contract will provide Information Technology (IT) solutions and services, as defined in FAR 2.101(b) and further clarified in the Clinger-Cohen Act of 1996, from April 2, 2018 through April 29, 2022.

Through this contract, Foxhole Technology will provide IT solutions and services that include, but are not limited to, health and biomedical related IT services to meet scientific, health, administrative, operational, managerial, and information management requirements. The contract also contains general IT services as medical systems are increasingly integrated within a broader IT architecture that requires a systems approach to implementation, as well as a sound infrastructure for their operation. 

“We are excited by this opportunity to collaborate with stakeholders to develop innovative approaches to solve the challenging problems associated with a rapidly changing, mission driven environment, while reducing overall cost and risk to the organization,”  stated Wes Hester, CEO Foxhole Technology.