Are you FedRAMP authorized?

We engineer to FedRAMP standards when the agency requires it. For hosting, we partner with FedRAMP-authorized providers such as AWS GovCloud and Azure Government instead of holding our own ATO. CITADEL co-pilots ATO support on every federal engagement.

Can you support state-level rollouts?

Yes. State and local delivery is a significant part of our portfolio. We have active experience with StateRAMP, TX-RAMP, and state-specific procurement frameworks. Depending on procurement structure, we engage either through prime contractors or directly with agencies.

What about Section 508 and accessibility?

Section 508 conformance is designed in from the first prototype. We test with assistive technology on every release gate, including NVDA, JAWS, VoiceOver, and Dragon NaturallySpeaking. We publish accessibility statements with known limitations instead of making claims we cannot defend.

Can you handle legacy modernization?

Yes. We modernize mainframe COBOL, AS/400, aging Java and .NET stacks, and proprietary platforms. We use strangler-fig migration with documented rollback, dual-run windows on benefits-payment paths, and explicit data preservation plans. Most state-level programs land in 18 to 36 months.

How do you handle equity and bias in public-sector AI?

Equity-aware evaluation is built into the eval harness. Ground-truth datasets are stratified across demographic subgroups, and subgroup metrics are surfaced directly to leadership. For high-stakes decisions, we use refusal patterns and human-in-the-loop checkpoints by default. We also call out use cases that are fundamentally bias-fragile.

What does a government engagement cost?

Discovery: 6–10 weeks, $80K–$200K. Citizen portal modernization: 10–18 months, $1M–$4M. Case management platform: 9–14 months, $800K–$3M. Multi-year modernization programs: $3M–$15M+. Managed Services: $50K–$300K monthly retainer. Brackets published honestly.

Industry

Government & Public Sector.

We build citizen-service portals, case systems, workflow platforms, and legacy modernization programs for federal, state, and local agencies. Delivery is planned around FedRAMP, FISMA, and accessibility from the start.

FedRAMP: Aligned
FISMA: Aware
Section 508: Default
WCAG 2.2 AA: Engineered in

The landscape

Government engineering is a procurement reality and a delivery reality , and most vendors only solve for one.

Public-sector projects often break at the handoff points. Discovery is long, build teams are chosen for procurement checklists, and user needs are deprioritized. Accessibility is delayed and fails audits late. Operations inherit systems that are expensive to maintain. Strong programs handle procurement constraints and delivery quality at the same time.

Our delivery model accounts for both tracks. We map acquisition and compliance requirements early, including FedRAMP, FISMA, and ATO expectations. In parallel, we design for citizen workflows, legacy-system integration, accessibility, and auditability. CITADEL leads compliance posture, CANVAS leads accessibility-first experience design, and FORGE leads modernization execution.

Where we ship

6 workloads, grounded in this sector.

Specific applications we’ve built and operated for government & public sector buyers. Every example below is grounded in a real shipped engagement.

01
Citizen services portals
Resident- and citizen-facing portals for benefits, permits, licensing, and public services. WCAG 2.2 AA-conformant by design, multi-language, identity-integrated with state systems.
02
Case management
Case management for social services, courts, regulatory agencies, and public benefits programs. Configurable workflow, audit-grade event logs, and the operational tooling caseworkers actually use.
03
Legacy modernization
Strangler-fig migration off mainframe, COBOL, and aging Java / .NET stacks with documented rollback per workload. Most state-level modernization programs land in 18–36 months with no benefits-payment downtime.
04
Audit-grade workflow engines
Workflow platforms with cryptographic audit trails, FOIA-defensible event logs, and the regulatory-frame awareness public-sector workloads require.
05
Public-sector AI
AI applications in public sector with explicit equity evaluation, refusal patterns for high-stakes decisions, and the audit-trail tooling public-sector AI use must produce.
06
Cross-agency integration
Identity-federated integration across agencies, secure data exchange, and the governance frame multi-agency programs actually require. SSO with state and federal IdPs, NIEM-aligned data exchange.

Quick read

In plain terms: we map the compliance frame, ship the core workflow, and operate the system with named owners and measurable targets.

- Citizen services portals: shipped for production teams.
- Case management: shipped for production teams.
- Legacy modernization: shipped for production teams.

How we engage

4 phases, named in the SOW.

Each phase has a deliverable, an owner, and an acceptance criterion specific to government & public sector delivery.

01
Regulatory and procurement frame
Discovery includes the procurement reality (acquisition rules, ATO process, FedRAMP / StateRAMP / TX-RAMP applicability) and the operational frame. Architecture decisions land against both.
02
Accessibility-first engineering
Section 508 and WCAG 2.2 AA conformance designed in from the first prototype, not audited at the end. Assistive-technology testing on every release gate. Multi-language and plain-language design as defaults.
03
Compliance evidence pipeline
Continuous evidence collection for FISMA / FedRAMP audits: control activity logs, change-management artifacts, access reviews, vendor risk records. ATO support produced as a side-effect of operating the system.
04
Operating discipline for public service
Citizen-impact-aware operating cadence. Outage response calibrated to public-service expectations. FOIA-readiness in the audit trail. Most engagements continue under Managed Services through multi-year operating contracts.

Practices in government & public sector

How each practice plays in this sector.

The capabilities below are scoped to the constraints government & public sector procurement actually enforces: compliance, audit, data residency, and vendor risk.

Selected work

Quantified outcomes, not adjectives.

All case studies

01Government
+62%
task completion rate
Citizen-services portal modernization for a state agency.
Replaced a 12-year-old citizen portal with an accessibility-first WCAG 2.2 AA application. Multi-language, identity-integrated with state IdP, FOIA-defensible audit trail, and StateRAMP-aligned cloud architecture.
13 months

Common questions

Asked before the first call.

01
Are you FedRAMP authorized?
We engineer to FedRAMP standards when the agency requires it. For hosting, we partner with FedRAMP-authorized providers such as AWS GovCloud and Azure Government instead of holding our own ATO. CITADEL co-pilots ATO support on every federal engagement.
02
Can you support state-level rollouts?
Yes. State and local delivery is a significant part of our portfolio. We have active experience with StateRAMP, TX-RAMP, and state-specific procurement frameworks. Depending on procurement structure, we engage either through prime contractors or directly with agencies.
03
What about Section 508 and accessibility?
Section 508 conformance is designed in from the first prototype. We test with assistive technology on every release gate, including NVDA, JAWS, VoiceOver, and Dragon NaturallySpeaking. We publish accessibility statements with known limitations instead of making claims we cannot defend.
04
Can you handle legacy modernization?
Yes. We modernize mainframe COBOL, AS/400, aging Java and .NET stacks, and proprietary platforms. We use strangler-fig migration with documented rollback, dual-run windows on benefits-payment paths, and explicit data preservation plans. Most state-level programs land in 18 to 36 months.
05
How do you handle equity and bias in public-sector AI?
Equity-aware evaluation is built into the eval harness. Ground-truth datasets are stratified across demographic subgroups, and subgroup metrics are surfaced directly to leadership. For high-stakes decisions, we use refusal patterns and human-in-the-loop checkpoints by default. We also call out use cases that are fundamentally bias-fragile.
06
What does a government engagement cost?
Discovery: 6–10 weeks, $80K–$200K. Citizen portal modernization: 10–18 months, $1M–$4M. Case management platform: 9–14 months, $800K–$3M. Multi-year modernization programs: $3M–$15M+. Managed Services: $50K–$300K monthly retainer. Brackets published honestly.

Serving Canada