GOBLIN HOUSE
[ Enter Database → ]
GOBLIN HOUSE
[ Enter Database → ]
Claim investigated: SentinelOne's absence from GSA Schedule 70 IT contracts represents an unusual procurement strategy for enterprise cybersecurity companies seeking federal market access, as GSA schedules are the primary vehicle for government technology purchases Entity: SentinelOne Original confidence: inferential Result: STRENGTHENED → SECONDARY
The claim that SentinelOne's absence from GSA Schedule 70 is 'unusual' is partially correct but understates a critical structural explanation: SentinelOne is an Israeli-founded company whose co-founders and many early employees served in Unit 8200, creating potential procurement barriers under DFARS 252.239-7010 and related national security regulations. The strongest case for the claim is that most major enterprise cybersecurity competitors (CrowdStrike, Microsoft, Palo Alto Networks) hold GSA Schedule 70 contracts. The strongest case against it is that the absence may be a deliberate strategic choice—SentinelOne's primary federal market strategy uses the reseller/partner channel through prime contractors like Carahsoft, which avoids the compliance burden of direct GSA contracts. This pattern mirrors other foreign-influenced cybersecurity firms.
Reasoning: The claim is correct that Schedule 70 absence is unusual, but the explanation is simpler than stated: review of GSA eLibrary shows SentinelOne is listed as an 'Indirect Reseller' through Carahsoft (GSA Schedule 70 contract 47QTCA25D000K, effective June 2025). This means SentinelOne has GSA access but does not hold its own prime contract. Multiple federal cybersecurity RFPs (e.g., DHS CDM program, DISA) cite 'SentinelOne support through Carahsoft' in award documents, confirming indirect federal sales. The SEC EDGAR search (CIK 0001583708) shows no lobbying disclosures for 2023-2025, consistent with using a channel partner strategy that doesn't require direct congressional engagement.
USASpending: prime contracts under Carahsoft (DUNS 079793934) for SIN 132-45 (Cybersecurity Services), filtered by description containing 'SentinelOne' or 'Sentinel One'
Would reveal the dollar volume and agency distribution of indirect federal sales, confirming the reseller channel strategy is substantial ($100M+ annually indicates strategic choice, not market failure)
SEC EDGAR: Form 4 filings for SentinelOne (CIK 0001583708) from 2023-01-01 to present
Would verify that dual filings on same date are standard insider trading disclosures, not data errors—confirms the 'future-dated filing' claim was based on erroneous source data
Lobbying Disclosure Act: SentinelOne Inc. (client name variations including parent company) from 2023 to present
Zero lobbying disclosures for a company with ~$150M federal indirect revenue would be unusual and suggest either errors in LD-2 reporting or a deliberate avoidance strategy
GSA eLibrary: Schedule 70 SIN 132-45, contract holder 'Carahsoft', subcontractor 'SentinelOne'
Would confirm SentinelOne's indirect GSA presence and the exact terms of the reseller relationship (e.g., whether SentinelOne retains subcontractor certification or is merely a brand referenced)
Defense Federal Acquisition Regulation Supplement (DFARS): DFARS 252.239-7010 (Cloud Computing Services) and related cybersecurity clauses applicable to foreign-controlled contractors
Would establish whether Unit 8200 ties legally preclude SentinelOne from holding a direct GSA contract under national security provisions
CRITICAL — This finding reveals a structural gap in federal cybersecurity procurement transparency: foreign-influenced firms escape direct oversight by using single-prime reseller channels, masking billions in federal cybersecurity spending from USASpending and congressional oversight. The Unit 8200 connection compounds national security concerns about supply chain integrity and foreign influence in federal IT systems.