2 Twelve Solutions Awarded OTA Contract to Integrate Modern Capabilities into a Global Secure Enterprise Network

2 Twelve Solutions

A key component in the Navy’s drive to modernize and transform its global information technology was competitively awarded to 2 Twelve Solutions LLC on September 14, 2020. This Other Transaction Authority prototype involves “Integrating Modern Capabilities into a Global Secure Enterprise Network,” and heavily leverages 2 Twelve Solutions’ state-of-the-art information technology laboratory, located in a Tier 3 data center in Reston, Virginia. This on-premise End-to-End Engineering (E3) laboratory is wholly owned and operated by 2 Twelve Solutions, and has established the IT engineering firm as a recognized industry technical authority for IT. The laboratory features multiple cloud platforms and is highly configurable and scalable – capable of accurately simulating any enterprise environment and validating end-to-end solutions. This unique, advanced capability permits 2 Twelve Solutions to partner and collaborate with government and industry technology leaders – such as the National Institute of Standards and Technology (NIST) and Open Source communities – to prototype emerging technologies, to create and validate technical standards, specifications, concepts, tools, and processes in an end-to-end environment.

Read More: Expired Domains Leading Users to Malicious Websites

Currently, 2 Twelve Solutions’ E3 multi-cloud infrastructure serves as the foundation for a NIST/ Open Security Controls Assessment Language (OSCAL) pilot that demonstrates a zero-trust architecture with an open source Software Defined Perimeter (SDP) platform and a DevSecOps environment. This NIST/OSCAL cloud security pilot also demonstrates an Agile Authorization to Operate (ATO) process and security assessment automation leveraging NIST’s OSCAL, to push visibility of security information to the forefront of workflows. This automation will enable system owners, assessors, auditors, and security operations teams to have a more accurate, uniform view of governance, risk management, and compliance for complex systems and bring principles of Zero Trust to the accreditation and authorization process.