Government buys bulk encryption

SmartBuy contracts could help many agencies afford better data security

The General Services Administration’s SmartBuy award for securing stored data could provide more value to federal agencies than the potential savings expected from the governmentwide buy. The award, to be officially announced Monday, will provide standard encryption products for federal agencies and state and local governments, which could significantly improve government data security, security experts say.

GSA and the Defense Department expect to sign purchase agreements with 11 company teams under a SmartBuy governmentwide enterprise license contract for data encryption products, said John Johnson, assistant commissioner of integrated technology services at GSA’s Federal Acquisition Service. Each of the teams offer mobile data security products, including capabilities for encrypting laptop PC hard drives, flash drives and personal digital assistants. Tom Kireilis, acting director of GSA’s Strategic Solutions Division, said company teams may offer additional services, technologies or capabilities that meet agencies’ unique needs.

“These are blanket purchase agreements that are written against GSA schedule prices that have been negotiated way lower,” Kireilis said. Agencies can begin purchasing products and services off the contracts immediately.

The SmartBuy program lets the federal government use its buying power to achieve cost savings and best value for commercial software, while improving security and configuration management governmentwide, Kireilis said.

The SmartBuy BPAs also support the Office of Management and Budget’s directive that agencies encrypt data on mobile devices. OMB issued that directive after the theft of a Veterans Affairs Department laptop PC last year from the home of a VA employee. The PC and a mobile hard drive taken from the home contained the personal data of 26 million veterans and active-duty service members.

The ground-breaking aspect of the encryption SmartBuy is its availability to state and local governments, said Karen Evans, OMB’s administrator for IT and e-government. “This is exactly what Congress had intended when they gave us those authorities in the E-government Act.”

States will get a better deal than they could on their own by making use of the federal government’s purchasing muscle, said David Wennergren, DOD’s deputy chief information officer.
“They’ll be able to buy products that they know are good because a lot of rigor has gone into the process on their behalf by experts in the field across DOD and federal agencies,” Wennergren said.

The state and local component of the Smart Buy contract grew out of activities that DOD conducted through the Multi-State Information Sharing and Analysis Center, a group formed during the Clinton administration. Providing data security for state and local governments is often daunting because the governments don’t have the resources or the buying power or don’t realize they need encryption, said Will Pelgrin, director of the New York State Office of Cyber Security and Critical Infrastructure. He also leads the Multi-State ISAC, whose members include all the states. The group has agreed to common protocols for incident reporting and other cybersecurity measures.

“SmartBuy has made this incredibly easy for state and local governments to move from a point of vulnerability and it’s probably pure luck that they haven’t been hit to one of a better state of security,” Pelgrin said. He is considering organizing group buys through ISAC using the SmartBuy encryption contract.

SmartBuy mobile data security contractORSThe General Services Administration and the Defense Department expect to sign SmartBuy blanket-purchase agreement contracts with 11 company teams to provide data encryption products and services. They are:

  • Merlin International and GuardianEdge Technologies
  • GovBuys and WinMagic
  • MTM Technologies and Mobile Armor
  • RMR and SafeBoot
  • Spectrum Systems and SafeBoot
  • Autonomic Software, WinMagic and Spyrus
  • Safenet and ProtectDrive
  • immixGroup and Pointsec
  • Hi Tech Services and ESI SkyLOCK
  • ID Security and Credant Technologies
  • Carahsoft and ISC
— Mary Mosquera

The Fed 100

Read the profiles of all this year's winners.


  • Then-presidential candidate Donald Trump at a 2016 campaign event. Image: Shutterstock

    'Buy American' order puts procurement in the spotlight

    Some IT contractors are worried that the "buy American" executive order from President Trump could squeeze key innovators out of the market.

  • OMB chief Mick Mulvaney, shown here in as a member of Congress in 2013. (Photo credit Gage Skidmore/Flickr)

    White House taps old policies for new government makeover

    New guidance from OMB advises agencies to use shared services, GWACs and federal schedules for acquisition, and to leverage IT wherever possible in restructuring plans.

  • Shutterstock image (by Everett Historical): aerial of the Pentagon.

    What DOD's next CIO will have to deal with

    It could be months before the Defense Department has a new CIO, and he or she will face a host of organizational and operational challenges from Day One

  • USAF Gen. John Hyten

    General: Cyber Command needs new platform before NSA split

    U.S. Cyber Command should be elevated to a full combatant command as soon as possible, the head of Strategic Command told Congress, but it cannot be separated from the NSA until it has its own cyber platform.

  • Image from Shutterstock.

    DLA goes virtual

    The Defense Logistics Agency is in the midst of an ambitious campaign to eliminate its IT infrastructure and transition to using exclusively shared, hosted and virtual services.

  • Fed 100 logo

    The 2017 Federal 100

    The women and men who make up this year's Fed 100 are proof positive of what one person can make possibile in federal IT. Read on to learn more about each and every winner's accomplishments.

Reader comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group