Services and Solutions

Cloud Integration + Data Center Consolidation

Cloud Integration and Data Center Consolidation are top concerns for large and small, government and private organizations alike looking to decrease infrastructure and instead focus on delivering mission critical IT services and innovation. TIAG’s cloud integration and data center consolidation experts bring a unique understanding and proven approach to deliver flexibility, disaster recovery, and decreased costs. TIAG has been leading the way in the migration of essential government applications and services to Cloud-based environments such as the Defense Information Systems Agency (DISA) Defense Enterprise Computing Center (DECC) and Microsoft Office 365.

01
Naval Information Warfare Center Atlantic (NIWC)
TIAG Delivers Transformative Solutions to Support the Largest Data and Cloud Migration in DoD History
Customer Mission

The Defense Health Agency (DHA), Naval Information Warfare Center Atlantic (NIWC), and Naval Information Warfare Systems Command (NAVWAR) collectively strive to ensure the efficiency, security, and effectiveness of critical military healthcare systems. With a focus on engineering and program management, these organizations aim to enhance the Military Health System (MHS) Information Platform (MIP) Data Warehouse. Their mission is to seamlessly migrate and manage this vital infrastructure, ensuring its reliability, accessibility, and compliance with stringent security standards. By providing robust engineering and program management support, they enable the seamless operation and optimization of healthcare data systems essential for supporting military personnel and their families.

Challenge

The DHA, NIWC, and NAVWAR required engineering and program management support ) in order to migrate the MHS MIP Data Warehouse to the Cloud and reduce hardware and software technology costs and mitigate the vulnerability of aging equipment. TIAG was contracted to ensure the systems and solutions implemented were standardized, interoperable, integrated.

Solution

“Through this successful government cloud transformation, the team has contributed to the cloud as a fundamental component of the global infrastructure that will empower the warfighter with data and provide improved decision making at the highest levels of the DoD related to the operational readiness of the military forces.” Division director for the Defense Health Information Technology (DHIT) Division’s Health Systems Security Engineering

 

Working together with other industry partners, we spearheaded the largest data and Cloud migration in DoD history with a groundbreaking and collaborative “Team of Teams” approach referred to as the Accelerated Migration Project (AMP) team that consisted of three NIWC Integrated Product Teams, three DHA divisions, Program Executive Office (PEO) Defense Health Management Systems (DHMS), multiple solutions, and numerous industry partners. Our team brought together a wide range of expertise, including AWS cloud integration, MIP solution architecture, systems engineering, software development and testing, big data management, cybersecurity, communications, and DOD healthcare project management. Together, we delivered a transformative solutions with a strategic and systematic approach that included:

  • We took the DHA’s Knowledge eXchange Collaboration Portal (KxCP) application to the next level with a successful proof-of-concept migration to AWS GovCloud. KxCP, a cutting-edge SharePoint-based solution, empowers users to securely collaborate and share essential documents, materials, and guidance with field counterparts. And with forms-based authentication, .mil and .com accessibility, and compatibility with DOD CAC and PIV cards, it’s trusted and utilized around the world by the Army, Navy, USAF, USMC, and the VA. By becoming the first DHA application accredited and deployed in AWS GovCloud under IL4 cybersecurity, KxCP set a new standard for innovation and security.
  • AMP stood up the entire MIP data center in AWS GovCloud within just 16 weeks from the official start. We partnered with NIWC, DHA, and other DoD components, as well as AWS Professional Services and external software providers, to create advanced solution architectures for four Virtual Private Cloud’s (VPC’s). These cloud architectures spanned multiple accreditation boundaries and included numerous AWS Security Groups. We collaborated with AWS to set up initial EC2 instances for the MIP pre-production environment and utilized S3 buckets for data storage. To simplify resource provisioning, we developed and deployed CFTs and employed AWS Snowball devices for secure data transfer to AWS-hosted resources.
  • In tandem with the AWS GovCloud migration, we transitioned the on-premises infrastructure. This included optimizing and migrating over 60 MIP applications and solutions, compressing data (creating an 85% reduction in storage space) , implementing DHA’s new enterprise Virtual Desktop Interface (VDI) and Help Desk, revamping Role Based Access Control (RBAC) policies, reengineering business processes, and switching from a CapEx funding model to an OpEx model to reduce costs. The transition and all systems testing happened over weekends and in the background to avoid any disruptions to the MIP user community.
  • Migrated all MIP physical servers from the on-prem data center to AWS EC2 instances in GovCloud – resulting in a 61% reduction in our total footprint. This not only eliminated all government-owned and operated hardware and data center real estate, it also saved considerable technical refresh costs for the over 300 on-prem servers scheduled for priority technology refresh. We assisted NIWC and DHA in obtaining approvals for 14 AWS CNS within the DHA AWS ecosystem to support new capabilities and ensure users can utilize next-generation solutions, such as machine learning and natural language processing, to enhance analytics capabilities and ensure semantic interoperability with EHRs.
  • Achieved four Rapid Authorization to Operate (ATO) from DHA officials within just four months by creating and organizing technical and cybersecurity materials. Developed secure MIP and MHS PaaS Cloud enclaves with cutting-edge detection and protection tools to ensure hosted solutions operated at the highest security levels – making the MIP Cloud the first DHA product to operate at this heightened security level. We advanced the authentication and authorization processes for MIP and MHS PaaS VPCs and completed planned cybersecurity activities across four VPCs – scanning 100% of assets to identify and mitigate CAT 1 vulnerabilities for environments accredited at IL4.
  • Developed and accredited a separate VPC for MHS PaaS – a development platform created exclusively to host critical DHA solutions, including the upgraded Agile Core Services Data Access Layer (ACS DALv3.0). With Red Hat OpenShift containerization, an automated and rigorous DevSecOps integration process, and multiple check gates for quality assurance and quality control – new or revised code can be deployed at record speeds. Powered by an OpenShift enterprise container environment, MHS PaaS provides dynamic scaling, auto-provisioning of resources, continuous monitoring, and protection against cybersecurity threats – all while using trusted software like SharePoint, Visual Studio, and JavaScript to create user-friendly websites and portals.
Result

“The migration was the fastest move of an environment to the cloud in the federal government to date. No previous cloud migration efforts within the federal government have matched the enormous scope, scale, and complexities of the MHS Information Platform migration, making this effort an original pioneering effort in cloud transformation.” NIWC Atlantic AMP team project lead

 

Together, our “Team of Teams” accelerated the migration of the MHS MIP to AWS GovCloud from 21 months of work into 16 weeks – an 84% reduction in schedule. The transition took just 93 days and all solutions were accredited and operational in AWS GovCloud more than one year in advance of the initial target date. This was also the fastest migration of its kind in AWS history. The team was nominated for the 2020 DoD Software Innovation Team Award and received the following awards: the Naval Information Warfare Systems Command (NAVWAR) Innovation Award for Business Model or Process; NIWC Atlantic Lightning Bolt Award for Team Excellence; sponsor-funded NIWC Atlantic You Made A Difference Award; FedHealthIT100 Award; and the 2020 G2Xchange Disruptive Tech Award, recognizing federal leaders, innovators, game changers and disruptors who are leading and transforming federal information technology.

02
Financial Crimes Enforcement Network (FinCEN)
FinCEN Enhances Security, Heightens Innovation, and Streamlines Efficiency Through Successful Cloud Implementation
Customer Mission

The Financial Crimes Enforcement Network (FinCEN) is responsible for safeguarding the country’s financial system from illicit use, combating money laundering and its related crimes including terrorism, and promoting national security through the strategic use of financial authorities and the collection, analysis, and dissemination of financial intelligence.

Challenge

The agency wanted to shift from legacy infrastructure and adopt a modern cloud-based infrastructure that offered a more flexible and cost-effective solution to stand up its Beneficial Ownership (BO) regulatory framework, along with the Beneficial Ownership Secure Systems (BOSS). The new infrastructure needed to comply with the highest Federal Information Security Management Act (FISMA High) level, ensuring that only authorized users could access beneficial ownership information.

Solution

TIAG developed and implemented a cloud-based solution for BOSS using a multi-phased approach that included determining which strategy to use and creating a road map for application, designing and creating the architecture for the application focusing on the distributed nature of the system, performing trial cloud-native and piloting a Minimum Viable Product (MVP) to demonstrate the application’s viability, migrating and porting over needed data, and continuing to improve the cloud application, whether from a product feature perspective or from a performance perspective. Our approach also included:

  • Cloud Migration Strategy: TIAG created an agency-specific plan that covered the process and requirements for transitioning data and services from an on-premises environment to a cloud environment. This strategy identified the appropriate services and capabilities to implement from the start, ensuring a secure and efficient cloud environment.
  • Data Integrity and Encryption: TIAG ensured data integrity during the transfer by encrypting data and making sure it remained secure when it reached its final storage location.
  • Human-Centered Design and DevSecOps Cycle: TIAG employed a human-centered design approach and a dynamic development and engineering DevSecOps cycle to prioritize the design, development, and delivery of capabilities. By building, learning, and iterating on solutions, TIAG helped FinCEN transition and adapt to the new cloud environment.
  • Zero Trust Architecture: TIAG provided guidance for FinCEN to securely transition to, deploy, integrate, maintain, and operate cloud services, adopting a zero trust architecture to further enhance security.
  • Public-Private Partnership: TIAG established a public-private partnership to promote innovation and the advancement of more secure information technologies, thus strengthening FinCEN’s long-term IT infrastructure.
  • Staff Training and Sandbox Environments: TIAG also provided training for staff and users, giving them the opportunity to practice new skills through access to sandbox environments.
Result

I addition to successfully obtaining the Authority to Operate the new FISMA High Government Cloud Environment (FinCloud), our work with FinCEN resulted in:

  • Enhanced Security: TIAG migrated the data and BOSS systems/architecture into a FISMA-High Government cloud environment, ensuring the secure collection, storage, and management of BO information.
  • Heightened Innovation: FinCEN’s competitive edge and ability to meet digital product demands increased significantly, with robust features and data supported by cloud services.
  • Reduced Inefficiencies: Duplicative efforts, inconsistencies, and cost inefficiencies were successfully eliminated and mitigated.
  • Streamlined Adoption of Cloud Computing: FinCEN leverages security authorizations on an enterprise-wide scale, resulting in faster adoption of ongoing cloud computing and the accelerated development and scaling of new applications and services, particularly for artificial intelligence and consumer-facing applications.
03
Bellevue College
TIAG creates on-demand software solutions for Bellevue College’s consortium of colleges
Customer Mission

Bellevue College is a student-centered, comprehensive, and innovative college that advances the life-long educational development of its students while strengthening the economic, social, and cultural life of its diverse community. The college promotes student success by providing high-quality, flexible, accessible educational programs and services; advancing pluralism, inclusion, and global awareness; and acting as a catalyst and collaborator for a vibrant region.

Challenge

According to the Office of the National Coordinator for Health IT, academic access to Electronic Medical Record (EMR) systems represented a key barrier nationally to workforce development in the Health IT (HIT) sector. Bellevue College was awarded an $11.8 million grant from the Department of Labor (DOL) to lead a geographically dispersed, nine-college consortium in developing and implementing an HIT training curriculum. This grant could enable them to not only develop and pilot new EMR system approaches for academic use, but to create a repeatable process and curriculum that could be replicated nationally.

Solution

We deployed our top resources and created on-demand instances of EMR products for each college and course. In addition, we leveraged Amazon Web Services to deliver hosted virtual desktops to simplify the configuration and usage of the EMR legacy “fat-clients” across all student operating systems and devices. We backed up this delivery mechanism with a robust tier 1–3 service desk and a quality control plan designed to be responsive to both faculty and student needs.

Result

By collaborating with the college, we were able to deliver tailored software solutions from the enterprise level down to the desktop level across the consortium of colleges in less than a month.

04
Uniformed Services University of the Health Sciences (USUHS)
TIAG transforms an outdated USUHS data center and network into a state-of-the-art network environment
Customer Mission

The USUHS is a worldwide center of excellence for military and public health professions’ education and research. USUHS’s mission is to train, educate, and prepare uniformed services health professionals, officers, and leaders to directly support the Military Health System, the National Security and National Defense Strategies of the United States, and the readiness of our armed forces.

Challenge

USUHS’s network and data center were outdated to the point that they could no longer meet cybersecurity accreditation requirements. Creating a secure, state-of-the-art network environment required remediating 2,500 computer systems and 45 servers for the university and migrating all computer systems and servers to a new domain and hybrid cloud infrastructure – all while providing normal operational IT support to the university with no impact to end users.

Solution

TIAG conducted in-depth interviews with each clinical department to build an interlaced educational support web of applications, systems, and business processes. Once we had a complete understanding of the USUHS environment, we designed a systematic transformation strategy that served as a project roadmap.This included designing and deploying a completely new VLAN architecture for the entire network. We then virtualized old legacy systems and consolidated all USUHS servers into a designated network operations center server room. From there, we completed full documentation on the USUHS IM/IT environment, including systems, applications, and mission critical websites and designed, implemented, and migrated USUHS’s assets to a new .edu network and hybrid Google cloud environment.

Result

The culmination of this effort led to the migration of more than 2,000 personal data repositories, all departmental shared drives, 45 applications, and 5,000 gigabytes of data, all with very little impact and work time outages for the end user. We also provided a more open collaborative environment with teaching universities and organizations and facilitated the hybrid cloud modernization of the USUHS IM/IT environment. At the close of the project, our team was given an award for “exceptional project management, technical coordination, business process consultation, and exemplary user support.” 

05
AWCTS Army Recovery Care Program (ARCP) (previously known as MEDCOM Warrior Care and Transition/ECT)
TIAG’s cloud integration and data center consolidation experts modernize and decrease costs for the ARCP’s Army Warrior Care and Transition System (AWCTS)
Customer Mission

The U.S. Army Medical Command (MEDCOM) Deputy Chief of Staff for Army Recovery Care Program (DCS, ARCP) is the lead proponent for the Army Recovery Care Program (ARCP). Their mission is to provide high-quality, soldier-centric case management to the U.S. Army’s Wounded, Ill, and Injured soldiers. Their complex and comprehensive medical care includes rehabilitation, professional development, and personal resilience.

Challenge

The Army Warrior Care and Transition System (AWCTS) is an integrated, web-based IM/IT application that allows for seamless information sharing between modules for user accessibility. It is the U.S. Army’s singular case management system and is integral to supporting Ill and Wounded warriors throughout their care and transition back into the force or veteran status. AWCTS needed to be modernized, and the ARCP contracted TIAG to help them with the necessary research, customized development, testing, and training.

Solution

TIAG was responsible for the entire infrastructure surrounding AWCTS, including establishing, maintaining, and enhancing all development and test environments. One of the first actions we took was implementing the Azure Infrastructure-as-a-Service system and moving to the cloud. Without the constraining requirements of physically housing multiple servers, we were able to more precisely reproduce the production environment, which allowed us to rapidly deploy a development and user preview environment with little overhead. Further, since several of these environments are utilized for scheduled test and integration activities, there was no longer a need for the ARCP to fully provision the machines to run all the time. They are able to adjust quickly to periods of heavy use and ensure stable performance by adding more CPU or memory.

Result

Not being limited to physical hardware allowed us to creatively approach how we supported the AWCTS. The ability to dynamically deploy images as needed gives the ARCP the flexibility to quickly meet special development testing requirements. Implementing new software releases and certifying their functionality are now seamless and do not impact the development environment or require any additional hardware. Additionally, our solution significantly reduced device and hardware failure, virtually eliminated maintenance time and costs, and allowed technical personnel to focus on optimization efforts.