Federal CIO Greg Barbaccia tapped for two leadership roles at GSA
Federal CIO Greg Barbaccia has been appointed as acting director of GSA's Technology Transformation Services (TTS) and senior advisor to the GSA administrator, replacing Thomas Shedd who moves to a fraud prevention role. TTS oversees critical government digital services including Login.gov and SAM.g
Cabrillo Club
Editorial Team · February 19, 2026

Also in this intelligence package
Action Kit: GSA (General Services Administration) Leadership Transition — Federal CIO Greg Barbaccia to TTS
Event Type: Agency Reorg
Severity: MEDIUM
Affected Agencies: GSA, Technology Transformation Services (TTS)
Key Platforms: Login.gov, SAM.gov (System for Award Management), GSA Schedules, Digital Services Platforms
---
Immediate Actions (This Week)
- [ ] Audit all active GSA Schedule contracts and TTS-related task orders — Review current performance obligations, deliverables due in the next 30 days, and any pending modifications to ensure continuity during leadership transition
- [ ] Verify SAM.gov and Login.gov registration status — Confirm all entity registrations, CAGE codes, and authentication credentials are current and functional; test login access for all authorized users
- [ ] Review open proposals targeting TTS or GSA IT modernization — Identify any RFPs in your pipeline from TTS, 18F, or GSA IT that may experience evaluation delays or requirement shifts; flag for bid/no-bid reassessment
- [ ] Monitor GSA communications channels — Subscribe to GSA's Interact platform, TTS blog, and official announcements for policy guidance from new leadership
- [ ] Brief capture and BD teams — Distribute this Action Kit to business development, capture managers, and proposal teams working GSA opportunities; schedule a 15-minute stand-up to discuss pipeline impact
Short-Term Actions (30 Days)
- [ ] Engage GSA contracting officer representatives (CORs) on active contracts — Schedule touchpoints with your CORs to understand any operational changes, new priorities, or process adjustments under the new TTS leadership structure
- [ ] Update capability statements and past performance narratives — Refresh marketing materials to emphasize experience with digital transformation, cloud migration, identity and access management (IAM), and platform modernization — areas likely to remain priorities under Barbaccia's dual role
- [ ] Assess FedRAMP (Federal Risk and Authorization Management Program) and FISMA compliance posture — Conduct internal audit of your FedRAMP authorization status (if applicable) and NIST 800-53 control implementation; TTS oversees Login.gov and other high-security platforms that require rigorous compliance
- [ ] Map your NAICS codes to TTS mission areas — Cross-reference your registered NAICS codes (541512, 541511, 541519, 518210, 541513, 541990) against TTS's portfolio (digital services, cloud infrastructure, identity management) to identify white space or expansion opportunities
- [ ] Track DOGE-related GSA workforce changes — Monitor for additional personnel shifts at GSA that could affect program management, evaluation panels, or technical review teams on your target opportunities
Long-Term Actions (90+ Days)
- [ ] Develop strategic positioning for TTS priorities — Anticipate potential policy shifts toward modernization acceleration, fraud prevention integration (given Thomas Shedd's new role), and digital service delivery efficiency; prepare thought leadership content and capability demonstrations aligned with these themes
- [ ] Cultivate relationships with new TTS leadership — Attend GSA Industry Days, TTS Tech Talks, and Digital.gov events to establish visibility with Barbaccia's team; position your firm as a trusted partner for digital transformation initiatives
- [ ] Evaluate contract vehicle alignment — Review your GSA Schedules, 8(a) STARS III, OASIS+, and Alliant 2 positioning; consider whether TTS's evolving mission requires additional SINs, labor categories, or technical certifications
- [ ] Invest in IAM and platform engineering capabilities — Given TTS's oversight of Login.gov and authentication infrastructure, assess whether your team needs additional expertise in zero-trust architecture, federated identity, or API-driven platform development
- [ ] Prepare for potential RFI/RFP activity — New leadership often initiates strategic reviews and market research; be ready to respond quickly to RFIs or sources sought notices related to digital services modernization, cloud optimization, or fraud prevention technology
Compliance Checklist
This leadership transition does not introduce new regulatory requirements, but contractors working with TTS-managed platforms should verify ongoing compliance:
- [ ] FedRAMP Authorization — If providing cloud services or SaaS solutions to GSA/TTS, confirm your FedRAMP authorization level (Low, Moderate, High) is current and matches agency requirements
- [ ] NIST 800-53 Control Implementation — Document implementation of security controls required for systems interfacing with Login.gov, SAM.gov, or other TTS platforms; maintain continuous monitoring evidence
- [ ] FISMA Compliance — Ensure annual FISMA assessments are complete and submitted; verify POA&M remediation timelines are on track for any open findings
- [ ] SAM.gov Entity Registration — Maintain active registration with accurate NAICS codes, representations and certifications, and FAR (Federal Acquisition Regulation)/DFARS (Defense Federal Acquisition Regulation Supplement) compliance declarations
- [ ] Section 508 Accessibility Standards — Verify all digital deliverables meet Section 508 requirements for accessibility, particularly for TTS's public-facing platforms
- [ ] GSA Schedule Compliance — If holding a GSA Schedule contract, ensure compliance with Industrial Funding Fee (IFF) reporting, pricing transparency, and Transactional Data Reporting (TDR) requirements
Resources
- GSA Technology Transformation Services (TTS) Overview (https://www.gsa.gov/about-us/organization/federal-acquisition-service/technology-transformation-services)
- Login.gov for Partners and Agencies (https://login.gov/partners/)
- SAM.gov Entity Registration Guide (https://sam.gov/content/entity-registration)
- FedRAMP Authorization Process (https://www.fedramp.gov/program-basics/)
- NIST 800-53 Security and Privacy Controls (https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/final)
- GSA Schedules Program (https://www.gsa.gov/buy-through-us/purchasing-programs/gsa-schedules)
- Digital.gov — TTS Resources and Guidance (https://digital.gov/)
---
How ready are you for CMMC?
Take our free readiness assessment. 10 questions, instant results, no email required until you want your report.
Check Your CMMC ReadinessCabrillo Club
Editorial Team
Cabrillo Club helps government contractors win more contracts with AI-powered proposal automation and compliance solutions.