News

Gray Tier Technologies, LLC (Gray Tier), a service-disabled veteran-owned small business (SDVOSB), GSA HCAS certified in all 5 concerns, and International Standards Organization (ISO) 9001:2015 standards services certified, recently secured its first Prime contract on a 5-year multiple-award $300M+ BPA to provide a range of Cybersecurity and Privacy Support services to the DoEd and the Federal Student Aid Office. This contract was competed as a small business set-aside.

On Aug 26, 2019, GRAY TIER TECHNOLOGIES, LLC, A Service-Disabled Veteran-Owned Small Business (SDVOSB), was awarded GSA Contract No. 47QTCA19D00JS under GSA Schedule70 GENERAL PURPOSE COMMERCIAL INFORMATION TECHNOLOGY EQUIPMENT, SOFTWARE, AND SERVICES. Below are the details relating to the awarded IDIQ Contract.

Security and Privacy Support Services (S&P)

Gray Tier provides incident response and intrusion detection, analysis, assessments, and engineering to Department of Education (DoED) Federal Student Aid (FSA) offices, FSA contractors, Institutes of Higher Education (IHE), and affiliated organizations. We deliver cybersecurity engineering, scanning, testing, and systems analysis services across the DoED enterprise on a regular and ad hoc basis. Through our cybersecurity engineering and consulting services, Gray Tier enhances the Security Operations Centers (SOCs) proactive security information gathering, discovery, analysis, and reporting capabilities to improve the DoED security posture.

Information Security and Privacy Program Support Services (ISPS) Support & Computer Security Incident Response Team (CSIRT)

Gray Tier’s work on this contract enhances FDIC’s ability to identify, mitigate, and manage security risks to its information supply chain, which involves heavy external hardware and software interdependencies. We support the FDIC Information Security and Privacy Staff (ISPS), Security Operations Center (SOC), and Computer Security Incident Response Team (CSIRT) with advanced security capabilities including incident response, cybersecurity engineering, risk management, compliance audits, and CDM.

Enterprise Security Operation Center (ESOC)

Gray Tier provides enterprise-wide solutions for the ESOC for DHS. Our engineers, assessors, and analysts spearhead advanced, next-generation cybersecurity capabilities. We are adapting our proprietary “Assume Breach” capabilities that integrate with Defense-In-Depth strategies for our DHS ESOC client, enabling a highly technical and agile approach to cybersecurity operations. As a critical part of an integrated cybersecurity operations team, Gray Tier consulted the DHS ESOC in obtaining its Cyber Security Provider (CSP) accreditation and increasing its cybersecurity posture. Our scope of work includes incident response and intrusion detection, cybersecurity risk management and compliance, cybersecurity operations, penetration testing/red team, secure software development, security architecture support, and continuous diagnostics and mitigation services.

Gray Tier’s work on the DCO IDM enables JSP to perform a wide variety of cybersecurity services and functions required to assure the operational, physical, and information security posture for Department of Defense (DOD) Services within CONUS and OCONUS. DCO IDM tasks are functionally grouped by End Point Security, Network Security, and Incident Handling; and include centrally managed technical subject matter expertise in the following security related areas of responsibility: project management, malware protection, continuous monitoring, cyber incident handling, insider threat detection and monitoring, and warning intelligence and attack, sensing, and warning (AS&W).

Gray Tier Technologies continues the positive trend in January and February 2017. By the end of February Gray Tier will add 5 new employees to its staff, mostly to the JSP-DCO effort. Gray Tier Technologies continues to focus on highly technical talent which will assist the Pentagon Computer Incident Response Team as Cyber Intelligent Analysts and Incident Handlers. We are excited to introduce Andrei Watts, Sergio Capp, Wynoka Munlyn, Brandon Burrell, & Matt Krieger to the Gray Tier Family.

Gray Tier Technologies LLC was on the winning team that won a task order through the Department of Defense Joint Service Provider program to develop and deploy an in-depth security network strategy that will deter and neutralize malicious activities for various offices within the Pentagon. The $114 million task order was awarded under the CIO-SP3 contract vehicle, and has a period of performance over four and a half years.

Gray Tier Technologies, contracted to provide junior and senior-level network penetration testers and direct support, under the direction of the Software Engineering lnstitute's (SEI) CERT Program, assessment operations for the Department of Homeland Security (DHS) Risk and Vulnerability Assessment (RVA) program from Nov 2017 to present. Support included conducting penetration tests, maintain a baseline operational capability to perform Vulnerability Assessments on behalf of DHS as requested. Execute using repeatable processes to gather information on the current state of federal, state, local, tribal, and territorial agencies, as well as Critical Infrastructure owners/operators. Draft assessment reports in a timely and proficient manner using standardized templates and processes. Extending and improving the RVA program by updating methodologies and developing new capabilities, maintain technical tools and software, and update documentation and training to reflect modifications in methodology and new improvements. Supporting SEI’s technical project manager with a technical point of contact to inform project planning, project tracking, issue resolution, and status reporting. Developing new RVA products and services in the form of stewardship tasks.

Gray Tier Technologies LLC was on the winning team which won The General Services Administration and USCYBERCOM announced the Multiple Award, Indefinite Delivery, Indefinite Quantity (MA-IDIQ) contract, which is valued at up to $460 million, on Friday, May 20. Vencore also received the first task order under the contract, valued at $89 million, and will begin performing the work in June. Congratulations Team!

A vulnerability research team, which included a researcher from Gray Tier Technologies, found a major vulnerability in the FlexNet Publisher software (CVSS Base Score 10). We are lucky to be able to collaborate with some truly talented security researchers. Detailed information on how the vulnerability was found and exploited can be found at the links below:

We are excited announce that Gray Tier Technologies has been accepted into the spring 2016 cohort for Bunker Labs DC. We look forward to this partnership and the education opportunities from Bunker Labs DC. http://bunkerlabs.org/bunker-labs-dc-welcomes-15-companies-spring-16-cohort/

A small team, that includes Gray Tier researchers, received recognition on Dec 8 in the form of CVEs for their work on the Up.Time Agent software.

Co-Founder, Rich Kelley, gives his talk, Harness: Powershell Weaponization Made Easy (or at least easier), to a packed house. 2500+ in attandance.

Gray Tier Technologies,LLC is pleased to announce the formation of a strategic partnership with L3-NSS to support cyber initiatives & technologies to the U.S. Army Information Technology Agency.