govcio.com

HTML metadata

Title

GovCIO | Transforming Government IT

Description

GovCIO combines extensive federal experience, cutting-edge IT solutions, and a customer-first approach to government IT modernization.

Language

en-US

Generator

Site Kit by Google 1.177.0

Canonical

https://govcio.com/

Feeds

Open Graph

url: https://govcio.com/
title: Home
locale: en_US
site name: GovCIO
description: GovCIO combines extensive federal experience, cutting-edge IT solutions, and a customer-first approach to government IT modernization.

Technology

CDN: Cloudflare
CMS: WordPress

Analytics

Google Tag Manager

Cookie consent

OneTrust

Third-party hosts loaded (8)

government-cio.imgix.net×34
cdnjs.cloudflare.com×4
www.googletagmanager.com×4
js.hs-scripts.com×2
cdn.cookielaw.org×1
px.ads.linkedin.com×1
ws.zoominfo.com×1
www.facebook.com×1

Social

Contact

Address: 4000 Legato Rd.Suite 600Fairfax, VA 22033

Registration

Registrar

GoDaddy.com, LLC

Created

2018-08-10

Expires

2026-08-10 82 days left

Updated

2025-08-11

Name servers

ns37.domaincontrol.com
ns38.domaincontrol.com

DNS records live

NS

ns37.domaincontrol.com
ns38.domaincontrol.com

MX

0 govcio-com.mail.protection.outlook.com

TXT

Show 6 TXT records

airtable-verification=f8c274af0264d118a294ab70ad5fc3a7
apple-domain-verification=jCZQDZljomTNEHC0
google-site-verification=wgBohBahWbuhMqgb78oQPUFHhZNAxj_TmhqibXt8KWA
globalsign-domain-verification=20C9326587A2DBFE22C6C7A64FC0AF84
teamviewer-sso-verification=48b6ba38cb204a93a704e3838ededce0
google-gws-recovery-domain-verification=67560045

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com ip4:162.247.160.0/21 ip4:167.89.11.197 ip4:198.61.254.16 include:_spf.salesforce.com include:46246377.spf07.hubspotemail.net include:amazonses.com include:docebosaas.com ~all

softfail (~all)

DMARC

v=DMARC1;p=quarantine;sp=quarantine;pct=100;rua=mailto:dmarcreports@govcio.com,mailto:dmarc_agg@vali.email;ruf=mailto:dmarcreports@govcio.com;ri=86400;aspf=r;adkim=r;fo=1

policy: quarantine · sp=quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzOv9zLgGdD+KIy3NrPEg/159OVyzdjKV5aEfuH0BpNdyQhpk8KNBj8X0w9VAGyrF8YmsnhoVaWfclL…

selectors probed

Certificate (current)

WE1

from 2026-04-17 to 2026-07-16

Expires in 57 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://govcio.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
permissions-policy: accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=*, publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=*, usb=(), xr-spatial-tracking=(), gamepad=(), serial=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' mediastream: blob: filesystem: about: ws: wss: 'unsafe-eval' 'wasm-unsafe-eval' 'unsafe-inline'; script-src 'self' blob: 'unsafe-eval'; script-src-elem * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; media-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob:;
strict-transport-security: max-age=63072000
cross-origin-opener-policy: unsafe-none
cross-origin-embedder-policy: unsafe-none; report-to='default'
cross-origin-resource-policy: cross-origin

Links to (5)

Linked from (1)

scraptheftalert.com×2

See all sites whose homepage links to govcio.com →