• Contact
  • What We Do
  • Who We Serve
  • Our Story
  • Our Team
  • Certifications
  • Careers
    • Careers Overview
    • Current Openings
    • Join Our Team
    • Employee Spotlight
    • Community Service
    • University Hire
  • In the News
  • Contract Vehicles
  • Partners
  • Instagram
  • Facebook
  • Twitter
  • LinkedIn
Case Study

Developing a Continuous ATO Enterprise Through Governed Resource Management

Sevatec Connected nodes and code on computer

Customer Challenge

Supporting the extensive amount of Immigration data throughout DHS is a difficult task where dozens of agencies depend on the accuracy and availability of the data to conduct national immigration policy.  Protection of personal information, legal proceedings, court data, costs, and status is paramount for the data being managed within DHS.  Ensuring the data maintains the level of security necessary while simultaneously having to modernize to support the ever-growing demand for the data in support of business intelligence requests put the legacy system into a support and performance bottleneck.  Change was needed fast.

Sevatec’s Solution

Our approach to this problem was multi-tiered but for this case study we are looking that the management of resources and components that make up the architecture necessary to support a secure, continuously operating environment. As is typical in many systems where ATO are required, the Immigration data services were no different. However, the legacy architecture issues were such that a new cloud-based approach had to be undertaken requiring a complete reassessment of security for the new solution.  Sevatec worked with the Security group and other management stakeholders to develop component resources that had been hardened against cyber-attacks and verified to by incompliance with defined security mandates and policies.

This led to the development on managed resources for infrastructure such as OS AMIs used within cloud virtual server instances, specialize configurations of server environments with applied hardening techniques, customized server instance configurations that supported new system functionality, and cloud service platform (data storage, data management, streaming, security, load balancing, etc.) configurations based on defined policy requirements.  All of these resources were then stored in approved cloud environments using access controls that ensured users could not choose non-approved or verified components when building out cloud services to support immigration mission objectives.  In addition, Sevatec employed our DevSecOps pipeline configurations with embedded security scanning, penetration testing, security inspections, and quality controls, along with pre-defined container configurations that enforced controls on the deployment systems proving to security administrators that the entire process from infrastructure to deployed product was secured continuously.

Delivered Results

  • Continuous ATO: Sevatec successfully developed a continuous ATO enterprise, which eliminated the need to reassess and reauthorize the system and reduced overall costs and schedule of delivery to end-users.
  • Secure and Faster Delivery: By utilizing pre-configured, hardened, and inspected components from a governed resource repository, Sevatec accelerated software delivery and removed bottlenecks to deliver capabilities faster.
  • Automated Security Controls: Sevatec’s DevSecOps pipeline configurations embedded automated security controls, penetration testing, and pre-defined container configurations that minimized defects and provided continuous insights.
Share this entry
  • Share on Facebook
  • Share on Twitter
  • Share on LinkedIn

Related Case Study

Case Study

Creating and Managing Productive Agile Teams While Transforming Legacy Solutions to Modern Software Architectures

Read More
Case Study

Managed Containerized Infrastructure (Mci): Building a Scaled Containerized Platform to Support CI/CD Delivery Pipelines

Read More
Case Study

Managing a massive software portfolio program using Trunk Based Development

Read More

We are trusted talent, inspired to serve, partnered with government, to protect and improve the lives of Americans.

Gray CMMI DEV and CMMI SVC3 logos
ISO 9001 logo
ISO 20000 logo
ISO 27000 logo
Sevaconnect Login
Headquarters

2815 Old Lee Highway Fairfax, VA 22031

Directions
Tysons Office

1604 Spring Hill Road, 2nd floor Vienna, VA 22032

Directions

T: (571) 766-1300          F: (571) 732-1970

Contact Us

© Copyright 2021 Sevatec

Sitemap

Scroll to top