Elastic, the Search AI Company, has announced a strategic partnership with the Cybersecurity and Infrastructure Security Agency (CISA) to develop a unified Security Information and Event Management as-a-Service (SIEMaaS) platform for U.S. federal civilian agencies. The initiative, hosted on FedRAMP-certified Elastic Cloud, aims to standardize cybersecurity monitoring across the Federal Civilian Executive Branch Agencies (FCEBs), enabling real-time threat detection, faster incident response, and enhanced coordinated defense. The project is part of a $26 million base-year contract awarded through ECS, a technology solutions provider and brand under ASGN (NYSE: ASGN Incorporated). The agreement includes four potential renewal options, with a total anticipated value of up to $130 million by 2030. Elastic and ECS will design, host, and operate the SIEMaaS platform using Elastic Security on Elastic Cloud, leveraging the open, extensible Elasticsearch Platform to manage both structured and unstructured data. The new platform will centralize security telemetry from multiple agencies, breaking down legacy data silos and improving visibility across the federal government. This unified approach will allow CISA analysts and agency teams to collaborate more effectively, detect threats faster, and respond with greater consistency. The first implementation will be deployed with a major FCEB agency, serving as a model for future rollouts across other federal entities. Cyber threats continue to evolve, with adversaries increasingly using supply chain attacks, identity-based intrusions, and zero-day exploits. Despite progress driven by Executive Orders 14028 and M-21-31, which advanced Zero Trust adoption and logging standards, many agencies still struggle with fragmented systems and inconsistent monitoring. The SIEMaaS initiative directly addresses these challenges by providing a scalable, cloud-based solution that reduces costs related to data storage and access while improving operational efficiency. Ash Kulkarni, CEO of Elastic, emphasized the importance of collective defense in today’s threat landscape. “Federal agencies remain a top target for cyber adversaries, and the current pace and complexity of attacks demand a new operational model,” he said. “By consolidating cybersecurity telemetry into a shared, cloud-based SIEM service built on Elastic’s platform, CISA is setting a new standard for speed, scale, and collective defense across civilian agencies.” The CISA Continuous Diagnostics and Mitigation Program Management Office will oversee the platform’s operations, including infrastructure, data pipelines, enrichment workflows, and threat detection engines. The service will be fully FedRAMP-compliant, ensuring security and compliance for federal use. Elastic’s platform is already used by thousands of organizations, including more than half of the Fortune 500, and is a key enabler of search, observability, and security solutions. The new partnership marks a major step in modernizing federal cybersecurity infrastructure and advancing a unified, data-driven defense strategy.