NASA’s Advanced Enterprise Global Information Solutions Contract Team Enhances Agency Cybersecurity

The Advanced Enterprise Global Information Solutions Information Technology IT Solutions II (AEGIS II) team completed multiple projects this year successfully refined cybersecurity processes across multiple NASA services.

The team also referred to as AEGIS, is led by Leidos, Inc., who won the 10-year, $2.5B contract in June 2021.  This year AEGIS completed eight projects involving Cloud and Computing Services (CCS), Cybersecurity Services (CyS), Network and Telecommunication Services (NaTS) and Workplace and Collaboration Services (WCS) leading to a more robust agency-wide cybersecurity posture.

• AEGIS strengthened NASA’s security posture by redesigning the Virtual Private Network (VPN) and Trusted Internet Connection (TIC) sites at Ames Research Center (ARC), Goddard Space Flight Center (GSFC), Jonhson Space Center (JSC) and Marshall Space Flight Center (MSFC). Collaborating with the NaTS Enterprise Network Operations Center (ENOC) the team moved untrusted VPN interfaces from peering routers to more secure Demilitarized Zone routers. This enables the centers to implement security policies for inbound and outbound VPN traffic. The project used existing equipment and provided the enhancement at no cost to the agency.
• AEGIS team developed a Pop-Up Network (PUN) project reducing risks from unauthorized access, espionage and alteration of the agency’s encrypted data caused by unintended encryption failures. The PUN provides a secure repository for encrypted data flowing through NASA’s network if the encrypted device is incorrectly configured or fails and prevents the data from unintentionally flowing, or “spilling” into the untrusted network side.
• The team improved security monitoring for CyS and reduced Security Operations Center (SOC) incident response times by incorporating the Amazon Web Services (AWS) Guard Duty reporting capability with the agency’s existing NASA AWS.
• The expedited implementation of the Secure Network Analytics Manager (SNAM) across all NASA centers supports end-to-end and Zero Trust Architecture agency wide. The SNAM, aligned with the agency’s Software Defined Access deployment, provides network flow monitoring, real-time analysis and cybersecurity threat intelligence.
• By updating secure repositories for cryptographic keys and certificates and replacing the DigiCert certificate on its Hitachi Content Platform (HCP) at Johnson Space Center, the team resolved data-in-transit vulnerabilities and saved the agency money.
• AEGIS supported the Low-Boom Flight Demonstrator Project’s X-59 Quesst supersonic flight testing by gaining Authority to Operate for the Lockheed Martin (LM) partner network and for a change board approval to extend VPN access to the LM facility.
• The team remediated Department of Homeland Security-identified vulnerabilities to NASA’s global Ivanti VPN service by changing enterprise infrastructure passwords for wired, wireless and VPN connections. Within 48 hours, the team reset more than 700 AEGIS-managed service accounts twice within CCS, NaTS and WCS without interrupting service.
• The group bolstered the cybersecurity resilience within GSFC and KSC critical infrastructures by implementing two-factor authentication services, automating intrusion detection scripting and monitoring and developing detection and validation methods to prevent decommissioned devices from accessing the NASA network.

These successes were possible through Leidos’ leveraging the expertise of its subcontractors and collaboration with other NASA organizations. At the end of FY 2024, the prime contractor had awarded more than 700 subcontracts valued at nearly $265M.

The top 10 Subcontractor information below is based on the total dollar value of the firm’s subcontract(s). There is not a correlation between the number of subcontracts awarded and the overall award value. For example, The Select Group Federal, LLC received only one subcontract valued at $60M while Thundercat Technology, LLC received 150 awards with a combined total of $40M.

 

 

 

 

 

 

 

 

 

 

 

At the end of FY 2024, reported spending had reached $542M, or about 22% of the award value in only three years. However, since the final numbers are not available yet, Deltek expects the overall spending to increase slightly based on historical data.

The contract terms are for a two-year base period that expired in 2023, a one-year option expiring in April 2025 and seven one-year award terms. If Leidos earns all award terms, the contract will expire in April 2032. This leaves an open door for ongoing subcontracting opportunities. Deltek’s GovWin subscribers can access additional detailed contract and vendor information via the GovWin solutions. Additionally, be sure to watch for the upcoming report on the Federal Cybersecurity Market, 2024-2028.