Oak Ridge National Laboratory

C2 Labs is a Service-Disabled Veteran-Owned Small Business trusted by over 100 organizations and institutions to revolutionize compliance through automated data collection, machine-readable documentation, AI-driven insights, and dynamic dashboards. The company partners with clients on their IT transformation journey via industry-leading capabilities in full stack development, hyper automation/DevOps, cybersecurity compliance, ISSO as a Service, and FedRAMP Enablement. C2 Labs enables organizations to innovate with speed and scale seamlessly while maintaining a robust and effective security posture. As digital transformation partners, C2 Labs addresses the most urgent needs holding back clients including proactively addressing cultural change, quantifying risk, automating compliance paperwork, and addressing critical skill gaps. The company specializes in cybersecurity risk and compliance, AI business strategies, and ATO-as-a-Service, providing advisory services to Cloud Service Providers seeking authorization under various compliance frameworks. By leveraging automation and partnerships with proven products like RegScale, C2 Labs frees organizations from bureaucracy and delivers continuously compliant solutions that drive real business impact.

At Draper, we believe that the most impactful solutions emerge when diverse disciplines converge to tackle our nation's toughest challenges. As an independent nonprofit engineering innovation company, our multidisciplinary teams of engineers and scientists work collaboratively across domains from space exploration to biomedical engineering, where lives often depend on the solutions we provide. Our culture thrives on the cross-fertilization of ideas, bringing together experts in guidance, navigation, control systems, biotechnology, cyber-physical systems, and autonomous solutions to push the boundaries of what's possible. We've been engineering solutions that matter for over 90 years, from the Apollo Guidance Computer that enabled lunar landings to cutting-edge organ-on-a-chip technologies transforming healthcare today. Our 2,000+ employees tackle complex problems in national security, space systems, strategic defense, and human health with an unwavering commitment to delivering working solutions that make a real difference. We foster an environment where technical excellence meets mission-driven purpose - where your work contributes to safeguarding democracy, defending our nation, and improving humanity.

For more than 70 years, Lawrence Livermore National Laboratory (LLNL) has applied science and technology to make the world a safer place. The Laboratory's defining responsibility is ensuring the safety, security and effectiveness of the nation's nuclear deterrent. Born during the Cold War in 1952 to meet urgent national security needs, LLNL has evolved into a premier research institution where multidisciplinary teams pursue bold and innovative science to address the most pressing challenges to global security. LLNL's mission is to enable U.S. security and global stability and resilience by empowering multidisciplinary teams to pursue breakthroughs in nuclear deterrence, counterterrorism and nonproliferation, defense and intelligence, and energy and environmental security. From maintaining the nation's nuclear stockpile to achieving fusion ignition at the National Ignition Facility, the Laboratory leverages cutting-edge science and engineering to deliver solutions that strengthen national security and advance scientific discovery for the betterment of society.

KODE Labs builds KODE OS, an enterprise data platform that functions as an operating system for commercial buildings. Founded in 2017 by the Demaj brothers and Gentrit Gojani, the company positions itself in the PropTech space where building management systems, IoT infrastructure, and facilities operations converge. The platform ingests data from HVAC systems, IoT sensors, meters, work orders, and alarms across vendor-agnostic building management deployments - a technical integration challenge that requires handling diverse protocols and legacy systems common in commercial real estate. The platform's scope covers cloud-based building management systems (BMS), fault detection and diagnostics (FDD), digital maintenance workflows, commissioning processes, and energy management. For security practitioners, this translates to working at the intersection of operational technology (OT) and IT systems: HVAC controllers, sensor networks, and cloud infrastructure all generating and transmitting data that requires protection. The vendor-agnostic architecture means integration surface area spans multiple third-party systems, each with its own security posture and access requirements. KODE OS operates in an environment where building systems increasingly connect to enterprise networks and cloud platforms, expanding attack surfaces that historically existed in air-gapped or isolated control systems. The company's work involves data aggregation from physical infrastructure - sensors, mechanical systems, access control touchpoints - creating a unified operational layer that must balance accessibility for facilities teams with protection of critical building systems. The technical domains span IoT device security, API integration security, cloud infrastructure protection, and the unique challenges of securing systems that control physical environments where downtime has immediate operational consequences.

Vannevar Labs builds agentic AI for 21st-century conflict, delivering decision advantage to national security missions. Powered by one petabyte of rare adversarial data, Vannevar's platform adapts to each mission and operates at the tactical edge, providing information dominance that improves targeting, accelerates planning, and strengthens both homeland defense and Indo-Pacific deterrence. The company's software supports more than 125 national security and U.S. government deployments. Since its founding in 2019, Vannevar Labs has been building software for the country's most critical national security problems, growing from $3M to $80M in ARR in just three years while achieving early profitability and unicorn status. The company combines world-class engineers with veteran strategists who bring deep expertise in defense and tradecraft, believing that military service members and intelligence officers deserve access to the best technology American innovation can offer.

Canadian Nuclear Laboratories operates Canada's nuclear science and technology infrastructure with over 3,000 people spanning facilities across the country, anchored at Chalk River, Ontario. The organization runs a multidisciplinary operation covering physics, metallurgy, chemistry, biology, and engineering - working across the nuclear fuel cycle from advanced reactor fuels and small modular reactor development to decommissioning legacy infrastructure. Beyond energy, CNL develops radiopharmaceuticals for cancer treatment, conducts hydrogen research, and supports national security-related nuclear work through government partnerships. The threat surface here is obvious: nuclear facilities handling sensitive materials, critical infrastructure supporting both civilian and national security applications, and research systems processing classified data. The tech stack - Python, Java, C++, C#, Linux environments, and virtualization via VMware - sits underneath operational technology controlling reactors and research facilities, plus collaboration networks connecting government, industry, and academic partners. Any security team here is defending against nation-state actors, managing supply chain risks in specialized nuclear tooling, and enforcing air-gapped architectures where physical and digital security converge. CNL's scale means cybersecurity work touches everything from protecting radiopharmaceutical production systems to securing decommissioning operations and environmental monitoring networks. The stated mission - turning scientific discoveries into real-world solutions - translates to defending both intellectual property in advanced nuclear fuels and operational continuity of systems that can't go offline. Collaboration with external partners adds complexity: integrating security controls across organizational boundaries while maintaining regulatory compliance in one of the most scrutinized industries globally.