Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
FBO DAILY - FEDBIZOPPS ISSUE OF AUGUST 16, 2017 FBO #5745
SOURCES SOUGHT

D -- EPS-Threadfix

Notice Date
8/14/2017
 
Notice Type
Sources Sought
 
NAICS
541519 — Other Computer Related Services
 
Contracting Office
Other Defense Agencies, Virginia Contracting Activity, Virginia Contracting Activity (ZD50), 200 MacDill Boulevard, Post Office Box 46563, Washington, District of Columbia, 20035-6563
 
ZIP Code
20035-6563
 
Solicitation Number
HHM402-15-D-0014-000301
 
Archive Date
9/2/2017
 
Point of Contact
Cheryl Hyatt, Phone: 7037356417, Katelyn Rowland, Phone: 7037356414
 
E-Mail Address
Cheryl.Hyatt@dodiis.mil, Katelyn.Rowland@dodiis.mil
(Cheryl.Hyatt@dodiis.mil, Katelyn.Rowland@dodiis.mil)
 
Small Business Set-Aside
N/A
 
Description
The Virginia Contracting Activity intends to solicit to procure Licenses on contract HHM402-15-D-0014-0003, Enterprise Platform Services (EPS), based on the authority of FAR Part 6.302-1, Only one responsible source and no other supplies or services will satisfy agency requirement. This task order is a current award under the Enhanced Solutions for the Information Technology Enterprise (E-SITE) contract. The Government intends to have Booz Allen Hamilton procure the Denim Group Threadfix Licenses. The licenses are intended to be purchased under the Materials CLIN on the contract. This notice of intent is not a request for competitive proposals. However, any responsible source who believes it is capable of meeting the requirement may submit a capability statement or proposal which may be considered by the agency, only if received by the closing date and time of this notice. A determination not to compete the proposed requirement based upon the responses to this notice is solely within the discretion of the Government. •· Description of Supplies or Services: The requirement is to Provide up to 25 applications in order to allow Security Control Assessor to perform application security testing and security controls assessment functions. •· The vulnerability aggregation software must be able to support the following cases: Consolidation, de-duplication, and merging of imported results from commercial and open source dynamic (DAST), static (SAST), and interactive (IAST) application scanning tools. Results tracking of manual testing and threat modeling Import Results from Multiple SAST, DAST, and IAST application scanning tools Scanning Tools including, HP Fortify, and HP WebInspect. In an automated fashion, merge vulnerabilities across SAST, DAST and IAST Application Scans. Track vulnerabilities identified by manual testing and other assurance activities, such as penetration tests and code reviews. Normalize vulnerability data to identify duplicate SAST and DAST scan results, according to the industry standard, MITRE Common Weakness Enumeration (CWE). Automate the task of scheduling and importing data with multiple DAST scanning technologies.
 
Web Link
FBO.gov Permalink
(https://www.fbo.gov/spg/ODA/DIA/ZD50/HHM402-15-D-0014-000301/listing.html)
 
Record
SN04627826-W 20170816/170814232124-7c62a733bfb0e8403ab8642da4c807ec (fbodaily.com)
 
Source
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.