Capabilities Statement Flat Spell Technologies



Flat Spell Technologies has been serving Federal Government in its efforts to advance and modernize existing systems. In addition we have a proven history of providing opportunistic innovative recommendations and implementations where found. We have had the exciting and fulfilling opportunity of exposing the very best of cutting/bleeding edge private sector best practices to government agencies and subcontractors alike. With our involvement and innovations our clients have experienced deep impact improvement of hyperscoped efforts as well as wide impact improvement that reach far into adjacent agencies and program offices alike.

Core Competencies

  • DevSecOps
  • Site Reliability Engineering
  • Cloud Engineering & Architecture
  • Software Engineering
  • Platform Engineering
  • Compliance & Policy Driven Development
  • Modernization & Digital Transformation

NAICS Codes

NAICS CodeDescription
541512 Computer Systems Design Services
513210 Software Publishers
518210 Computing Infrastructure Providers, Data Processing, Web Hosting, And Related Services
541511 Custom Computer Programming Services
541519 Other Computer Related Services

Past Performance

ATAT: CCPO (now HaCC) program office - Department of Defense
5/2019 - 3/2020

Flat Spell provided DevSecOps services:

  • Assess current deployment and development methodology
  • Make recommendations to rework software and development to align process and practice with agile development methodologies
  • Assess and implement the correct technologies supporting modern, repeatable, immutable deployments
  • Build out SDLC with supporting quality gates, technologies and change management.
  • Delivered the first unattended, one click deployment of compliant infrastructure utilizing config and infrastrcture as code which enabled a faster development lifecycle and ultimately time to market.
DoD Cloud IaC
7/2019 - present

Flat Spell's work on ATAT was largely a precursor to DoD IaC; A distributable infrastructure and configuration as code for compliant cloud environments. On this new project Flat Spell:

  • Expaned on its original solution by mapping NIST 800-53 controls to CSP configuration sentinels and creating the CSP native mechanisms by which this turnkey cloud environment is deployed.
  • Identified an opportunity to digitally transform manual RMF process by automating cloud environment via real time compliance events. Project mentioned below.
  • Delivered baseline deployments across all IL levels.
  • Partnered with Microsoft to assist in development of ATO'd service offerings
  • Improved deployment time from hours to minutes by refactoring and redeveloping the original solution.
  • Coined Compliance Driven Development methodology within DISA
Continuous ATO via Real Time Emass integration with Cloud Service Providers
6/2020 - 8/2020

Flat Spell identified and championed the effort to enable Mission Owners using DoD IaC to automated RMF and therefore provide real time, resource level and aggregate compliance status to Emass. As of November '23, over 30 departments utilize this Emass capability in conjunction with or indendently of DoD Cloud IaC

  • Delivered an OpenAPI spec artifact describing the technical architecture and design of the Emass Cloud Resource API.
  • Worked with Emass developers to implement and test the API using events from Mission Owner Enclaves across various CSPs.
  • Implemented the embedded reporting mechanism as part of the distrubted IaC Solution.
CDC's Cancer Surveillance Cloud-based Computing Platform
5/2020 - present

Flat Spell is sole architect of the centralized cancer registry platform. In this role we:

  • Road mapped the cloud migration of former decentralized desktop applications.
  • Delivered a compliant cloud environment conforming to FedRamp Moderate compliance scope utilizing NIST 800-53 controls.
  • Designed, built and delivered the project's SDLC and championed developer methodology using DevSecOps best practices.
  • Lead the decomposition of the monolith into cloud native services.
  • Imparted the practice of least privelege and laid the ground work for zero trust architecture and methodologies
  • Support and guided developers by pushing left compliance, security, data goverance and privacy by design.
DCSA: Observability
7/2021 - present

As Subject Matter Experts in observability and site reliability we've enabled measurable success for development teams and stakeholders alike via the use of leading visibility and observability tooling. If your stack is not using tools for continuous improvement it is likely your spend on remediation, operations and new development is inflated.

SimplyDirect
2/2021 - present

Flat Spell was engaged in a multi-phase, multi-year contract to remediate business halting outages and rectify major platform issues, fix major code related issues, rebuild the platform via digital transforming existing processes and utlimately increase performance of the stack.

  • Entered into intensive remediation phase
  • Applied observability and instrumentation to the stack so surface major resource and software logic related issues.
  • Assessed with C-level and operations teams issues most important to business
  • Created a weighted rubric to help prioritize forward facing issues against internal business rules that were broken by the solution.
  • Remediated high priority issues to restore service to end users and the business.
  • Highly composable/flexible Martech tooling
  • DevSecOps focused SaaS for policy (sec, compliance, corporate policy) driven development
  • Software and automation for the Food Service industry
  • Software and automation for the Music Recroding industry


© Copyright Flat Spell Technologies . All Rights Reserved.