22nd Century Technologies Inc.

22nd Century Technologies Inc.

Speciality: Network Penetration Testing

McLean, United States 1271 employees
Visit Website View on LinkedIn
[01] About

22nd Century Technologies Inc. is a private IT services and consulting company founded in 1997, headquartered in McLean, Virginia, with 749 employees and $235M annual revenue. It specializes in managed IT solutions including security, mobile device management, remote helpdesk, IT staffing, project management, network management, and operations center services, serving defense, intelligence, federal civilian, state, local, and education sectors. The firm has a web presence with 15,221 monthly visits and a global rank of #1,425,344, and is recognized for providing penetration testing services, including ethical hacking and network assessments, to evaluate security vulnerabilities.

22nd Century Technologies Inc., (22nd) is a mid-size Service Integrator, focused on providing IP enabled managed services and solutions to Federal, State and Local governments. With over 6,000 employees, 22nd has been serving public entities for over 25 years through 370+ government contracts across all 50 States. 22nd is currently supporting many of the nation’s mission-critical programs including Digital Transformation, Cloud Migration, Cyber Security, Application Modernization, IT Infrastructure, O&M , and Workforce Solutions. 22nd has software subsidy 22nd Century Software Solutions, which has developed innovative solutions IDPBoT, CallCare, ChatBot, QED and many more. To expand our offerings, 22nd has recently acquired two Public Safety focused companies - QED and VETConnex; and an Oracle ERP Solution Provider - TreasurySoft to become a Strategic Oracle ERP Solution Provider.
[02] Services
AI & Innovation Lab
Products & Solutions
Digital Transformation
IT Infrastructure
Cyber Security
Penetration Testing
Cloud Solutions
Agile & Devsecops
Low Code – No Code
[03] Certifications
ISO/IEC 17020:2012
ISO 20000-1:2011
ISO 9001:2015

ISO 9001:2015 and Cybersecurity/IT


Origin and Development


ISO 9001:2015 is a quality management system standard developed by the International Organization for Standardization (ISO), a global federation of national standards bodies. However, it's important to clarify that ISO 9001:2015 is not specifically a cybersecurity or IT certification—it's a general quality management standard applicable to any organization regardless of industry. The standard was released in 2015 as the fifth revision of ISO 9001, which was first published in 1987. For cybersecurity specifically, ISO created ISO/IEC 27001, which is the actual information security management system standard.


Industry Value and Importance


ISO 9001:2015 is valued across industries because it demonstrates an organization's commitment to consistent quality management, customer satisfaction, and continuous improvement. When applied to IT and cybersecurity contexts, it helps organizations establish systematic processes for service delivery and quality assurance. However, for cybersecurity-specific certification, organizations typically pursue ISO/IEC 27001, which directly addresses information security controls, risk management, and data protection. Both certifications are internationally recognized and often required for government contracts, enterprise partnerships, and demonstrating due diligence to customers and stakeholders.
ISO 27001:2013

ISO 27001:2013: Information Security Management Standard


Origin


ISO 27001:2013 was developed and published by the International Organization for Standardization (ISO) in partnership with the International Electrotechnical Commission (IEC). Released in October 2013 as a revision to the original 2005 version, this standard emerged from the earlier British Standard BS 7799, which was created in the 1990s. The standard was developed to provide organizations with a systematic framework for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS), addressing the growing need for consistent information security practices across industries and borders.


Industry Importance


ISO 27001:2013 is highly valued in the industry because it provides internationally recognized criteria for managing sensitive information and mitigating security risks. Organizations that achieve certification demonstrate to clients, partners, and regulators that they follow best practices for protecting data confidentiality, integrity, and availability. The certification is particularly important for companies handling sensitive customer data, those working with government contracts, or businesses operating in regulated industries. It also provides competitive advantages in procurement processes, helps organizations meet legal and regulatory requirements, and reduces the likelihood of costly data breaches through its risk-based approach to security management.

National Minority Supplier Development Council
CMMI SVC/3
CMMI DEV/3
Virginia Values Veterans
HDI Member
Earned Value Management System (evms)
SOC 2 Compliant
Greenhouse Gas Emissions
[05] Notable Clients
  • US Army
  • US Air Force
  • US Navy
  • US Marine Corps
  • DISA
  • DLA
  • DCMA
  • DIA
  • NGA
  • 14 Federal Executive Agencies
  • State
  • Local and Educational entities across all 50 states