Qui Tam and Whistleblower Litigation for Federal Contractors in Fairfax and Falls Church, Virginia
By Anthony I. Shin, Esq., Shin Law Office
BOTTOM LINE UP FRONT
If you work at a Fairfax or Falls Church federal contractor (GDIT Headquarters, Defense Health Agency HQ, BAE Systems Inc., or one of the integrators that fills out the Fairfax County and Falls Church federal contracting footprint) and have seen something at your employer that looks like fraud against the government, the decision about what to do next is one of the most consequential of your career. The False Claims Act lets you sue on behalf of the United States as a qui tam relator and share in any recovery. Section 3730(h) protects you from retaliation. Filing is irreversible once the seal goes on. Take a breath and read this before you do anything else.
I am Anthony Shin and I represent federal contractor employees in EDVA. Call 571-445-6565 or use my contact page to Schedule a Consultation. The first call is protected by attorney-client privilege.
Why Fairfax and Falls Church FCA Cases Have Their Own Profile
Fairfax and Falls Church sit at the crossroads of the Northern Virginia federal contractor base. General Dynamics Information Technology (GDIT) is headquartered at 3150 Fairview Park Drive in Falls Church and runs one of the largest federal IT services portfolios in the country. The Defense Health Agency (DHA) is headquartered at the Skyline complex in Falls Church and manages the Military Health System covering more than nine million beneficiaries through TRICARE, military hospitals, and a broad health-services contractor base. BAE Systems Inc. (the US subsidiary of BAE) is headquartered nearby. Northrop Grumman maintains a major Fairfax County presence. The city of Fairfax, Annandale, Burke, Springfield, Vienna, and Falls Church host a wide range of mid-tier integrators serving DOD, civilian agency, and intelligence community customers.
The contractor footprint here mixes mission types in a way that distinguishes Fairfax and Falls Church from the more tightly focused spokes elsewhere in this series. Tysons (separate spoke) and Reston (separate spoke) sit immediately adjacent and carry their own cleared services patterns. Alexandria’s civilian agency cluster sits to the south. The Fairfax-Falls Church corridor combines pieces of all of them: GDIT-style federal IT services prime work, DHA-style military health contracting, BAE-style major defense prime work, and the long tail of mid-tier integrators. The Fairfax and Falls Church FCA picture is weighted toward federal IT services contract fraud, DHA and military health contractor fraud, defense prime contractor patterns, and the conventional cleared services labor and cybersecurity certification patterns that wrap around all of it. I work as an attorney near Falls Church with this exact workforce, on both qui tam matters and broader civil and employment litigation.
Local Federal Court Picture
Fairfax and Falls Church federal contractor qui tam cases are filed in the United States District Court for the Eastern District of Virginia, Alexandria Division. EDVA’s reputation for moving fast (the “rocket docket”) shapes qui tam litigation here. Once the seal lifts and the case is unsealed, the schedule moves quickly. Trial dates set within a year of unsealing are routine. Discovery schedules are compressed. Motion practice runs lean.
The Civil Division of the United States Attorney’s Office for EDVA handles the DOJ investigation during the seal period. DHA Office of Inspector General and HHS OIG (for military health and TRICARE-touching cases), DOD IG, DCIS, DCAA, intelligence community agency IGs (for cases that touch IC contracting work), and the FBI Washington Field Office participate as the underlying conduct touches their lanes. DHA-related cases involving TRICARE network providers, military treatment facility contractors, or health IT contractors often draw multi-agency interest because the underlying customer relationships span both DOD and HHS oversight.
Common Fairfax and Falls Church Fraud Patterns
The patterns I see most often from the Fairfax-Falls Church workforce sit in four overlapping categories. First, federal IT services contract fraud: GDIT-scale and integrator-scale IT services contracts where labor mischarging on cost-plus or time-and-materials contracts, milestone delivery certifications, or service-level agreement compliance certifications diverged from actual performance. Second, DHA and military health contractor fraud: TRICARE network provider fraud, military health IT modernization (MHS GENESIS deployment and sustainment), military treatment facility support contracts, and pharmaceutical or device-related contractor fraud that touch the Military Health System. Third, defense prime contractor patterns: BAE Systems Inc., Northrop Grumman, and other major defense prime work where defective pricing under 10 U.S.C. §3702, acceptance testing fraud on weapons systems, or knowingly delivering non-conforming components created FCA exposure. Fourth, conventional cleared services patterns: labor mischarging on cleared LCATs, false cybersecurity certifications under DFARS 252.204-7012 and NIST 800-171, and reverse false claims for unallowable costs under FAR Part 31.
DHA and military health contractor fraud deserves its own mention because the customer set is unusual. DHA manages a beneficiary population of more than nine million through TRICARE, runs military treatment facilities globally, and operates one of the largest health IT modernization programs in the country (MHS GENESIS). The mix of fraud risk runs from TRICARE network provider patterns (medical billing fraud, kickback violations under the Anti-Kickback Statute and Stark Law, upcoded services) to IT services contractor patterns (milestone delivery, service-level agreements, false cybersecurity certifications under HIPAA-adjacent frameworks). The contractor base often falls within the FCA’s traditional health-care enforcement gravity. False cybersecurity certifications became the most active enforcement area generally after the October 2021 launch of the DOJ Civil Cyber-Fraud Initiative, and health IT contractors handling Protected Health Information sit squarely within that framework.
How I Help
When a Fairfax or Falls Church federal contractor employee calls me about a potential qui tam case, my first conversation works through five things. The strength of the evidence. The materiality analysis under Escobar. The scienter analysis under SuperValu. The first-to-file risk under Section 3730(b)(5). And your professional and financial circumstances. The conversation usually takes one to two hours and is protected by attorney-client privilege. I do not commit to representation in the first meeting; I want to understand the case before either of us makes a commitment.
If the recommendation is qui tam filing, I prepare the complaint, the DOJ written disclosure statement, and the supporting documentation, file under seal in EDVA, and coordinate with the DOJ during the investigation phase. DHA-related cases often coordinate across DHA OIG, HHS OIG, and DOD IG depending on the underlying conduct. Federal IT services cases involve voluminous service-level agreement, milestone, and labor-charging documentation that takes time to develop. If classified information is in play, special handling protocols apply. If the recommendation is a Section 3730(h) retaliation claim alone, I prepare and file that. If the recommendation is internal reporting or external IG report without qui tam, I support you through that process.
Frequently Asked Questions
What if my work involves Defense Health Agency or military health contracts?
Great question, and the honest answer is that DHA and military health contractor work generates some of the more common civilian-DOD hybrid FCA cases I see. TRICARE network provider fraud (medical billing fraud, kickback violations under the Anti-Kickback Statute and Stark Law, upcoded services) runs on the FCA’s traditional health-care enforcement framework. Military health IT modernization (MHS GENESIS), military treatment facility support contracts, and health IT services touching Protected Health Information run on the federal IT services framework. Both pathways are FCA-actionable when the certifications are knowingly false and material to the government’s payment decision. DHA OIG, HHS OIG, and DOD IG typically participate in the investigation.
What about GDIT or other IT services prime contractor fraud?
Honest answer, federal IT services prime contractor fraud is a steady FCA case category. Labor mischarging on cost-plus and time-and-materials contracts, milestone delivery certifications that diverged from actual delivery, service-level agreement compliance certifications, and false cybersecurity certifications all create concrete false-statement elements when knowingly inaccurate. SuperValu’s subjective scienter standard makes the knowledge element easier to prove than it once was. Workers with direct knowledge of the labor charging decisions or the milestone certifications are in a strong relator position.
How much can I recover as a Fairfax or Falls Church qui tam relator?
Fair question because the math matters. If the government intervenes and the case succeeds, you receive 15 to 25 percent of the recovery, plus attorney fees and costs. If the government declines and you proceed alone, 25 to 30 percent. Federal IT services, DHA-related health care, and defense prime contractor qui tam recoveries have ranged from low six figures to nine figures, depending on the size of the underlying fraud and the volume of invoices. TRICARE network provider cases and large-volume IT modernization cases tend to fall toward the higher end. Per-claim penalty stacking under Section 3729(a)(1) drives recoveries quickly when many invoices are involved.
What if another worker already filed a qui tam on the same fraud?
Section 3730(b)(5) bars qui tam complaints based on the same essential facts already alleged in another pending case. Only the first relator to file can proceed. The seal makes prior filings invisible to you before you file. Counsel can run searches and analyses to assess this risk, though the seal limits certainty. The Fairfax-Falls Church contractor workforce is dense and program-tight, so overlap with other potential relators is a real concern when the underlying fraud touches a broad pattern of conduct on a major program.
Schedule a Consultation
I represent federal contractor employees in Fairfax County and Falls Church, including the GDIT, DHA, BAE Systems, Northrop Grumman, and broader integrator workforce, who have seen fraud at their employer and are deciding what to do about it. Qui tam relator representation in EDVA. Section 3730(h) retaliation defense. NDAA, SOX, and Dodd-Frank whistleblower claims. TRICARE and military health contractor cases. Federal IT services contractor cases. Internal reporting strategy. Classified-program handling. The first conversation is protected by attorney-client privilege and usually takes one to two hours.
Call 571-445-6565 or visit my contact page to Schedule a Consultation.
Related Guides
The sub-hub for this series:
The cornerstone hub for the full series:
Federal Contracting Law in Virginia and Maryland: A Northern Virginia Attorney’s Complete Guide
Companion clearance guide for the same workforce:
Security Clearance Defense for Federal Contractors in Fairfax and Falls Church, Virginia
References
10 U.S.C. §2409 (NDAA Whistleblower Protections for Defense Contractor Employees).
10 U.S.C. §3702 (Truthful Cost or Pricing Data Act).
31 U.S.C. §3729 (False Claims Act Liability).
31 U.S.C. §3730 (False Claims Act Procedures, Qui Tam, Anti-Retaliation).
41 U.S.C. §4712 (NDAA Whistleblower Protections for Civilian Agency Contractor Employees).
42 U.S.C. §1320a-7b (Federal Anti-Kickback Statute).
42 U.S.C. §1395nn (Stark Law, Physician Self-Referral).
Cochise Consultancy, Inc. v. United States ex rel. Hunt, 587 U.S. 262 (2019).
Department of Justice Civil Cyber-Fraud Initiative (October 2021).
Eberhardt v. Integrated Design and Construction, Inc., 167 F.3d 861 (4th Cir. 1999).
FAR Part 31 (Contract Cost Principles and Procedures), 48 C.F.R. Part 31.
NIST Special Publication 800-171, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations.
United States ex rel. Schutte v. SuperValu Inc., 598 U.S. 739 (2023).
Universal Health Services, Inc. v. United States ex rel. Escobar, 579 U.S. 176 (2016).
U.S. District Court for the Eastern District of Virginia. https://www.vaed.uscourts.gov
