The shift from legacy CIAQ to IA-Pre represents the most significant compliance burden increase in SATCOM history.
From providing bandwidth for deployed forces to enabling beyond-line-of-sight communications for unmanned systems, SATCOM capabilities that originate in the commercial sector now support mission-critical defense functions. This integration demands cybersecurity assurance that legacy assessment processes were never designed to provide.
Space Force recognized this gap and launched the Infrastructure Asset Pre-Approval program in May 2022. IA-Pre establishes cybersecurity requirements for commercial SATCOM providers seeking to support government missions—moving from reactive assessment during acquisition to proactive approval that enables rapid procurement.
For SATCOM providers, IA-Pre compliance has become a market access requirement. Organizations that achieve approval can respond to government requirements quickly. Those without approval face lengthy assessment processes that may disqualify them from time-sensitive opportunities.
The legacy Commercial Interface Assessment Questionnaire contained approximately 55 controls. IA-Pre contains 477 cybersecurity controls aligned with NIST 800-53 High Impact baseline.
High Impact controls assume that system compromise would cause severe or catastrophic adverse effects on organizational operations, assets, or individuals.
The SATCOM Industry Group raised specific concerns about IA-Pre implementation that reflect broader challenges in the program's maturity.
Maintain comprehensive documentation that supports multiple assessment scenarios. Whether legacy CIAQ continues or IA-Pre becomes mandatory, generate appropriate evidence packages from a single compliance baseline. Support ASCA engagement while maintaining access controls for proprietary information.
The rapid deployment of low Earth orbit satellite constellations has transformed the commercial SATCOM landscape. Starshield, SpaceX's government variant of Starlink, has secured over $300 million in task orders since the May 2024 PLEO contract launch.
Investigation revealed that Starlink and Starshield are fundamentally connected at the infrastructure level—service outages can impact availability, creating dependency relationships that traditional assessments may not address.
Source: FedScoop investigationThe largest coordinated satellite procurement in decades. Each contractor must ensure interoperability through common ground systems and comply with SDA-specific standards including OCT requirements and NEBULA specifications.
The transition from legacy CIAQ to IA-Pre is complete. Organizations without IA-Pre approval now face significant barriers to government SATCOM contract participation. Those still operating under legacy arrangements must achieve compliance to remain competitive.
The convergence of LEO constellation deployment, SDA procurement activity, and IA-Pre enforcement creates a market where cybersecurity compliance directly affects business outcomes.
See how Thalorin supports SATCOM providers pursuing IA-Pre compliance — from 55 baseline controls through full NIST 800-53 High implementation.