DOJ renews CrowdStrike licenses for $6.4M with Thundercat Technology, highlighting ongoing cybersecurity needs
Contract Overview
Contract Amount: $6,403,821 ($6.4M)
Contractor: Thundercat Technology, LLC
Awarding Agency: Department of Justice
Start Date: 2023-09-13
End Date: 2026-09-12
Contract Duration: 1,095 days
Daily Burn Rate: $5.8K/day
Competition Type: FULL AND OPEN COMPETITION AFTER EXCLUSION OF SOURCES
Number of Offers Received: 3
Pricing Type: FIRM FIXED PRICE
Sector: IT
Official Description: ANNUAL RENEWAL OF CROWDSTRIKE SOFTWARE LICENSES AND SUPPORT FOR JMD/OCIO/CSS..
Place of Performance
Location: RESTON, FAIRFAX County, VIRGINIA, 20191
State: Virginia Government Spending
Plain-Language Summary
Department of Justice obligated $6.4 million to THUNDERCAT TECHNOLOGY, LLC for work described as: ANNUAL RENEWAL OF CROWDSTRIKE SOFTWARE LICENSES AND SUPPORT FOR JMD/OCIO/CSS.. Key points: 1. The contract represents a significant investment in endpoint security software and support. 2. Competition was conducted on a full and open basis, suggesting a competitive bidding process. 3. The renewal indicates a continued reliance on CrowdStrike's cybersecurity solutions by the DOJ. 4. The firm-fixed-price contract type provides cost certainty for the duration of the agreement. 5. The duration of the contract is three years, aligning with typical software licensing cycles. 6. The North American Industry Classification System (NAICS) code 541519 suggests a broad range of IT services.
Value Assessment
Rating: good
The annual cost of approximately $2.13 million for CrowdStrike licenses and support appears reasonable given the critical nature of cybersecurity for a federal agency like the Department of Justice. Benchmarking against similar federal contracts for endpoint detection and response (EDR) solutions often shows costs in the low millions annually for large agencies. While specific per-unit license costs are not provided, the overall value is assessed as good, assuming the software meets the agency's security requirements effectively.
Cost Per Unit: N/A
Competition Analysis
Competition Level: full-and-open
This contract was awarded under full and open competition after exclusion of sources, indicating that multiple vendors were likely solicited and allowed to bid. The presence of three bids suggests a healthy level of competition for this cybersecurity software and support. A competitive process generally leads to better pricing and terms for the government.
Taxpayer Impact: The full and open competition ensures that taxpayer dollars are used efficiently by driving down costs through market forces, preventing potential overpricing that could occur with less competitive solicitations.
Public Impact
The Department of Justice's IT infrastructure and sensitive data are protected by advanced cybersecurity measures. Federal employees within the DOJ will benefit from secure and reliable access to necessary digital resources. The contract supports the operational continuity of critical government functions by preventing cyber threats. The procurement contributes to the cybersecurity sector by engaging technology providers like Thundercat Technology.
Waste & Efficiency Indicators
Waste Risk Score: 50 / 10
Warning Flags
- Potential for vendor lock-in if alternative solutions are not regularly evaluated.
- Reliance on a single software vendor for critical cybersecurity functions could pose a risk.
- The effectiveness of the software is dependent on continuous updates and proper implementation by the agency.
Positive Signals
- The use of a leading cybersecurity solution like CrowdStrike enhances the agency's defense posture.
- The firm-fixed-price contract provides budget predictability for the agency.
- The competitive award process suggests a fair market price was achieved.
Sector Analysis
The federal cybersecurity market is a rapidly growing sector, driven by increasing digital threats and the need to protect sensitive government data. This contract for CrowdStrike software and support falls within the broader IT services and software licensing category, specifically focusing on endpoint security. Comparable spending benchmarks for federal agencies on EDR solutions can range from hundreds of thousands to several million dollars annually, depending on the size of the agency and the scope of coverage. The DOJ's investment aligns with the government's overall strategy to bolster its cyber defenses.
Small Business Impact
This contract was awarded to Thundercat Technology, LLC, and there is no indication of a small business set-aside. While the prime contractor is not a small business, the contract terms do not preclude subcontracting opportunities. However, without specific subcontracting plans or goals outlined in the award data, the direct impact on the small business ecosystem is unclear. Further analysis would be needed to determine if small businesses are involved in providing support or complementary services under this agreement.
Oversight & Accountability
The Department of Justice, like all federal agencies, is subject to various oversight mechanisms. This contract, being a delivery order under a larger vehicle, likely falls under the purview of the issuing agency's contracting officer and potentially the Government Accountability Office (GAO) for protests. Inspector General (IG) oversight may also apply if specific concerns regarding waste, fraud, or abuse arise. Transparency is generally maintained through contract databases like FPDS, where basic award information is publicly accessible.
Related Government Programs
- Cybersecurity Software Licenses
- Endpoint Detection and Response (EDR) Solutions
- Federal IT Services
- Department of Justice IT Procurement
- Software Support Contracts
Risk Flags
- Reliance on a single vendor for critical cybersecurity functions.
- Potential for price increases in future renewals.
- Effectiveness dependent on ongoing agency implementation and updates.
Tags
it-services, cybersecurity, software-licenses, endpoint-security, department-of-justice, firm-fixed-price, full-and-open-competition, delivery-order, thundercat-technology, crowdstrike, federal-agency, virginia
Frequently Asked Questions
What is this federal contract paying for?
Department of Justice awarded $6.4 million to THUNDERCAT TECHNOLOGY, LLC. ANNUAL RENEWAL OF CROWDSTRIKE SOFTWARE LICENSES AND SUPPORT FOR JMD/OCIO/CSS..
Who is the contractor on this award?
The obligated recipient is THUNDERCAT TECHNOLOGY, LLC.
Which agency awarded this contract?
Awarding agency: Department of Justice (Offices, Boards and Divisions).
What is the total obligated amount?
The obligated amount is $6.4 million.
What is the period of performance?
Start: 2023-09-13. End: 2026-09-12.
What is the historical spending trend for CrowdStrike software and support at the Department of Justice?
Analyzing historical spending data for CrowdStrike at the DOJ would provide crucial context for the current $6.4 million award over three years. Without access to specific historical contract data for this vendor and agency, it's difficult to ascertain if this represents an increase, decrease, or stable level of investment. However, the general trend in federal cybersecurity spending has been upward due to escalating threats. If this renewal is consistent with previous years' spending, it suggests a steady reliance on the solution. Conversely, a significant jump could indicate expanded scope or increased pricing, warranting further investigation into the value proposition.
How does the per-unit cost of CrowdStrike licenses under this contract compare to other federal agencies or commercial entities?
A precise per-unit cost comparison is challenging without knowing the exact number of licenses procured and their specific tiers (e.g., standard, premium). However, the total award of $6.4 million over three years, averaging approximately $2.13 million annually, can be benchmarked against publicly available data for similar federal EDR contracts. Agencies often negotiate volume discounts. If the DOJ is procuring a large number of licenses, the per-unit cost might be lower than smaller agencies. Commercial market rates for enterprise-level EDR solutions can vary widely, but federal contracts often achieve competitive pricing due to scale and established procurement vehicles. Further analysis would require detailed license counts and feature comparisons.
What are the specific cybersecurity risks the DOJ aims to mitigate with this CrowdStrike renewal?
This contract renewal primarily addresses the mitigation of risks associated with endpoint security threats, such as malware, ransomware, advanced persistent threats (APTs), and insider threats. CrowdStrike's platform typically offers capabilities like next-generation antivirus, threat hunting, incident response, and vulnerability management. For the DOJ, which handles highly sensitive law enforcement, national security, and citizen data, protecting endpoints (laptops, desktops, servers) is paramount to preventing data breaches, service disruptions, and reputational damage. The renewal signifies a commitment to maintaining a robust defense against evolving cyber adversaries targeting federal agencies.
What is Thundercat Technology's track record in delivering cybersecurity solutions to federal agencies?
Thundercat Technology, LLC, is a federal IT solutions provider that has a history of winning contracts across various government agencies. Their portfolio often includes cybersecurity, cloud computing, and IT infrastructure services. Examining their past performance on similar cybersecurity contracts, particularly those involving endpoint protection or advanced threat detection, would provide insight into their capabilities and reliability. Positive past performance indicators, such as successful contract completions, positive customer feedback (if available), and adherence to delivery schedules, would support the assessment of this current award. Conversely, any documented performance issues would raise concerns.
Are there alternative endpoint security solutions that the DOJ considered or could consider in the future?
Federal agencies typically conduct market research to identify potential solutions and vendors. While this contract was awarded under full and open competition, suggesting alternatives were considered during the bidding process, the renewal implies CrowdStrike was deemed the most suitable option at the time. Future procurements might involve re-evaluating the market, as the cybersecurity landscape evolves rapidly. Competitors to CrowdStrike in the EDR space include companies like SentinelOne, Microsoft Defender for Endpoint, Carbon Black, and Cylance. The DOJ would likely assess factors such as efficacy, cost-effectiveness, integration capabilities, and vendor support when considering alternatives.
What are the key performance indicators (KPIs) or service level agreements (SLAs) associated with this contract?
The provided data does not specify the Key Performance Indicators (KPIs) or Service Level Agreements (SLAs) tied to this contract. However, for cybersecurity software and support contracts, typical SLAs often revolve around software uptime, availability of support services (e.g., response times for technical issues), frequency and effectiveness of threat detection updates, and successful incident response times. Performance would likely be measured by the effectiveness of the software in detecting and preventing threats, the responsiveness of Thundercat Technology in providing support, and the overall security posture improvement achieved by the DOJ. The agency would monitor these metrics to ensure they are receiving the expected value.
Industry Classification
NAICS: Professional, Scientific, and Technical Services › Computer Systems Design and Related Services › Other Computer Related Services
Product/Service Code: IT AND TELECOM - SECURITY AND COMPLIANCE
Competition & Pricing
Extent Competed: FULL AND OPEN COMPETITION AFTER EXCLUSION OF SOURCES
Solicitation Procedures: SUBJECT TO MULTIPLE AWARD FAIR OPPORTUNITY
Offers Received: 3
Pricing Type: FIRM FIXED PRICE (J)
Evaluated Preference: NONE
Contractor Details
Parent Company: Thundercat Technology LLC
Address: 11190 SUNRISE VALLEY DR STE 200, RESTON, VA, 20191
Business Categories: Category Business, Corporate Entity Not Tax Exempt, Limited Liability Corporation, Service Disabled Veteran Owned Business, Small Business, Special Designations, U.S.-Owned Business, Veteran Owned Business
Financial Breakdown
Contract Ceiling: $43,909,053
Exercised Options: $43,909,053
Current Obligation: $6,403,821
Actual Outlays: $11,430,527
Contract Characteristics
Commercial Item: COMMERCIAL PRODUCTS/SERVICES
Parent Contract
Parent Award PIID: NNG15SD26B
IDV Type: GWAC
Timeline
Start Date: 2023-09-13
Current End Date: 2026-09-12
Potential End Date: 2028-09-12 00:00:00
Last Modified: 2025-12-03
More Contracts from Thundercat Technology, LLC
- Intersystems Software Updates and Technical Assistance — $222.0M (Department of Veterans Affairs)
- Internet Operations Management — $139.2M (Department of Defense)
- Itau/Swm/Renew Software Maintenance for Ca/Broadcom Software — $71.6M (Department of Justice)
- Palo Alto Networks Enterprise License Agreement (ELA) for the National Nuclear Security Administration (nnsa) — $58.3M (Department of Energy)
- Nasa Sewp Award of Talent Management System 2.0 Sustainment Services — $51.3M (Department of Veterans Affairs)
Other Department of Justice Contracts
- Contractor Owned and Operated Existing Correctional Facility for Approximately 3,500 LOW Security Male Inmates — $794.5M (Cornell Companies, Inc.)
- Detention Services - SAN Diego — $776.9M (THE GEO Group, Inc.)
- CO: Telly Renfroe Award of NEW Task Order Base Year Initial Funding — $616.4M (AT&T Enterprises, LLC)
- TAS 151060 - Services for the Management and Operation of a Contractor-Owned, Contractor-Operated, Correctional Facility for 2,567 Beds in Adams County, Mississippi — $574.3M (Corecivic, Inc.)
- Provide Services for the Management and Operation of a Correctional Facility in Accordance With Rfp-Pcc-0014 — $568.9M (Cornell Companies, Inc.)