The Department of Homeland Security, Bureau of US Citizenship and Immigration Services, Office of Information Technology (OIT) Systems Delivery Division has a continuing requirement for Enterprise Gateway and Integration Services for the enterprise service bus (ESB).

U.S. Citizenship and Immigration Services (USCIS) Office of Information Technology (OIT) Systems Delivery Division is seeking to acquire highly qualified DevSecOps teams in support of USCIS’s Distributed Services Architecture Branch portfolio for delivering value faster and sustainably. Enterprise Gateway and Integration Services will be part of an ecosystem, participating with federal employees, and other contractors, in a team-based DevSecOps approach to delivering mission value frequently, cost-effectively, responsively, and with high quality.

EGIS is being developed using a state-of-the-art, industry-wide, best practices architecture and development process that has become a showcase for federal government implementation of DevSecOps and other Agile processes and practices, and is using a containerized, Microservices-based, architecture on OpenShift Container Platform for delivering its capabilities in the public cloud.

The Government will oversee the architecture and design of the system. EGIS contractors shall be responsible for developing high-quality business functionality to work within those architectures to meet the business capabilities. The major focus of this requirement will be replacing the current ESB services built on TIBCO with open source tools and technology to Microservices Architecture (MSA). An additional focus of this task order shall be to maintain and provide technical support on the current Enterprise Service Bus (ESB) running on TIBCO platform.

• ESB Modernization: The main goal of this objective is to modernize the twelve SOA-built services built in TIBCO and deployed in DC1 to microservice architecture using Enterprise Gateway and Integration Services (EGIS) and deploy to Amazon Web Services (AWS).
• eProcessing: The scope of this work is to support the design, development, and deployment of integration services, enterprise services, and case router.
• Maintain Legacy ESB: There is a continued need for sustainment of operational legacy capabilities. This includes operations and maintenance, as well as migration activities from DHS Data Center General Support Services to the DHS Next Generation Data Center.
• Architecture Support: The scope of this work includes support to the Division in the following architectural areas – business architecture, solutions architecture, data architecture, and security architecture

Strategic Context:

Historically, EGIS has served as the enterprise integration backbone connecting USCIS internal systems with DHS components, interagency partners, and authorized external entities. EGIS III will expand this role supporting national security, immigration system integrity, and advanced adjudication operations.

Key mission areas include:

• National security vetting and evolving immigration policies
• Screening immigration benefit applicants
• Protecting immigration benefits and work authorization integrity
• Advanced data integration, analytics, AI-enabled anomaly detection, and decision support
• Agility, rapid delivery, operational excellence, transparency, and reduced duplication
• Fraud detection, risk scoring, and investigative data workflows

EGIS III represents a strategic shift from infrastructure integration to enabling mission outcomes.

USCIS has a requirement for Enterprise Gateway and Integration Services (EGIS) III. Historically, EGIS has served as the enterprise integration backbone connecting USCIS internal systems with Department of Homeland Security (DHS), interagency, and external partners. While this core mission remains critical, EGIS will also expand this role supporting national security, immigration system integrity and advanced adjudication operations with key mission including: National security vetting and evolving immigration policies; screening immigration benefit applicants; protecting immigration benefits and work authorization integrity; advanced data integration, analytics, AI-enabled anomaly detection, and decision support; agility, rapid delivery, operational excellence, transparency, and reduced duplication; fraud detection, risk scoring, and investigative data workflows.

EGIS III supports multiple enterprise services and more than hundred microservices across USCIS.

The Contractor will provide comprehensive IT services to design, develop, modernize, enhance, optimize, secure, operate, and maintain a cloud-hosted integration platform for secure information exchange between USCIS systems, DHS components, federal agencies, and authorized external partners.

The objectives of the EGIS III contract are to:

• Provide IT professional services including program management, systems development, systems modernization and optimization, security, architecture, infrastructure, operation and maintenance to support USCIS mission through information sharing and data exchange
• Ensure compliance with existing and new regulations and applicable executive orders on immigration
• Increase data integrity, enable faster adjudication, improve service reliability, increase customer satisfaction, enable greater transparency to increase confidence in USCIS benefit adjudications
• Reduce cyber risk, enable continuous compliance and zero trust readiness and improve EGIS security posture against complex cyber threats
• Minimize downtime through proactive maintenance, strengthen performance monitoring and data quality and enable enterprise visibility with distributed tracing to accelerate failure detection and response
• Increase Financial efficiency, reduce duplication and rework, and lower technical debt for effective cost reduction
• Encourage innovation and use of machine language and AI to detect anomalies in data, enable forecasting and performance optimization to promote data driven decision support
• Enhance performance, reliability and mission delivery for enhanced customer experience and satisfaction

DSAB focuses on DevSecOps tools and strategies to deliver superior IT services and support for integrated enterprise systems, and enable secure data exchanges supporting investigations, adjudications, and enforcement actions.

Example systems and capabilities include:

• Vetting platforms for immigration benefits
• Integration of interagency data sources
• Advanced orchestration of identity, biometric, and case data
• Secure data exchanges for investigations, adjudications, and enforcement

To the maximum extent practicable, USCIS intends for contractor performance to be measured by delivered capabilities and outcomes, not staffing levels.

Expected delivery practices include:

• Agile and iterative delivery with frequent releases
• Secure-by-design and zero-trust principles
• Compliance with NIST Risk Management Framework (RMF), Section 508, and federal security requirements
• DevSecOps, observability and continuous monitoring
• Data governance and quality controls
• Cloud native architecture and performance engineering
• Support for independent testing, validation, and user acceptance
• Continuous performance and reliability improvements

Internal Processing and Adjudication Modernization

• EGIS III will increasingly support internal USCIS mission systems, including adjudication, intake, case management, verification, and benefit processing platforms.
• Examples include:
  • Integration support for ELIS and successor systems
  • Secure orchestration of intake, scanning, and workflow services
  • High-volume, event-driven data exchanges supporting adjudications
  • Real-time validation, enrichment, and decision-support services
  • Operational surge resilience (e.g., H-1B cap season, Affordable Care Act season, humanitarian crises, policy-driven workload spikes)
• The platform must demonstrate elasticity, scalability, and performance predictability under peak transactional loads.

Core Platform Capabilities (Continued and Enhanced)

• EGIS III will sustain and enhance enterprise integration capabilities while expanding into strategic modernization areas.
• Enterprise Integration & Orchestration
  • Content routing and transformation
  • Event-driven and streaming architecture
  • Contract-driven APIs
  • High-throughput, low-latency passthrough services
  • Standardized enterprise interfaces
• Cloud-Native & DevSecOps Enablement
  • Microservices-based architecture
  • Infrastructure as Code
  • Automated provisioning and configuration management
  • Secure CI/CD with integrated security testing
  • Continuous compliance and policy-as-code
• Data Integrity & Governance
  • API governance and schema management
  • Contract-based testing
  • End-to-end data lineage and auditability
  • Secure integration with internal and external partners
  • Support for AI-ready data architectures and secure data pipelines

Emerging Capabilities and Innovation Focus

• EGIS III will require emerging capabilities to drive innovations, including but not limited to:
  • AI/ML-enabled anomaly detection and predictive analytics
  • Advanced targeting and risk-scoring platforms
  • Secure investigative data pipelines
  • Event-driven and serverless architecture
  • Intelligent automation supporting adjudications
  • AI-assisted case processing
  • Real-time fraud detection and decision-support platforms
  • Data Interoperability
• These capabilities are critical to ensuring EGIS III remains at the forefront of innovation and operational effectiveness.

Enterprise DevSecOps and Continuous Compliance

• Vendors should demonstrate the ability to operate within a unified USCIS DevSecOps environment led by Office of Chief Technical Officer (OCTO) and Office of Information Tehcnology (OIT) and supporting the followings:
  • Unified USCIS CI/CD pipeline
  • Integrating EGIS services into managed deployment framework
  • Enabling self-certification and continuous compliance monitoring
  • Automating security, quality and compliance checks
  • Enforcing container standards, image hygiene and code quality
  • Aligning with enterprise logging, monitoring and audit requirements
  • Collaborating with OCTO and OIT on tooling and governance
  • Providing metrics on deployment volume, compliance status and security
  • Demonstrating return on investment through automation, quality, security and reduced overhead