Elastic Search, Logstash, and Kibana (ELK) Support Services

SOL #: 693JJ321A000003_693JJ322F000061_P00012JustificationSole Source

Overview

Buyer

Transportation
Federal Highway Administration
IT ACQUISITION CENTER OF EXCELLENCE (ACE)
Washington, DC, 20590, United States

Place of Performance

DC

NAICS

Computer Facilities Management Services (541513)

PSC

Support Services Focused On Supporting Security Policies/Controls, Processes, Measuring Compliance Of Relevant Legal/Compliance Requirements, To Include Section 508, And Responding To Security Breaches. Also Provides Support For It Security Systems Providing Continuous Diagnostics And Mitigation (Cdm) For Real Time Cyber Security And Protection Such As Vulnerability Scanning, Managing Firewalls, Intrusion Prevention Systems, And Security Information And Event Management (Siem). Includes Disaster Recovery (Dr) Services To Support Dr Policy, Process And Means, Dedicated Failover Facilities And Perform Dr Testing. (DJ01)

Set Aside

No set aside specified

Timeline

1
Posted
Jun 15, 2026

Qualification Details

Fit reasons
  • NAICS alignment with historical contract wins in similar service areas.
  • Scope strongly matches core technical capabilities and delivery model.
Risks
  • Past performance thresholds may require one additional teaming partner.
  • Potential clarification needed on staffing minimums before bid/no-bid.
Next steps

Validate eligibility requirements, assign capture owner, and schedule partner outreach to confirm teaming strategy before submission planning.

Quick Summary

The Department of Transportation (DOT), specifically the FEDERAL HIGHWAY ADMINISTRATION, has published a Justification for Elastic Search, Logstash, and Kibana (ELK) Support Services. This justification outlines the need for a sole source extension of an existing contract with Criterion Systems to ensure continuous cybersecurity management support. The services are critical for meeting federal cybersecurity directives.

Scope of Work

The required services involve providing technical and professional support for the DOT's ELK Stack, which is essential for logging capabilities, log retention, and log management. This includes ensuring centralized access and visibility for the enterprise Security Operations Center (SOC). Specific tasks encompass data onboarding, dashboard creation, and maintenance of the Elastic Cloud environment.

Contract & Timeline

  • Type: Justification for Sole Source Extension
  • Duration: Extension from the original expiration date through September 30, 2026.
  • Set-Aside: None specified (Justification for sole source)
  • Published: June 15, 2026

Justification & Future Considerations

This justification is prepared as required by FAR 8.401(b) and GSAR 538.7104-3(b)(iii). The extension is necessary to avoid disruption to essential cybersecurity support while the DOT restructures its IT workforce and evaluates internal capabilities. The document asserts that the proposed rates are fair and reasonable, based on the original competitive acquisition. Bidders should note that this is a justification for a sole source action, and future requirements for these services may be competed.

Contact Information

People

Points of Contact

ajmal khanPRIMARY
ajmal.khan@dot.gov
Kyle GriggsSECONDARY
kyle.griggs@dot.gov

Files

Files

Download

Versions

Version 1Viewing
Justification
Posted: Jun 15, 2026
Elastic Search, Logstash, and Kibana (ELK) Support Services | GovScope