Login
Login
Register
Complete Your Profile
Change Password
Request a Password Reset
Download Documents
Download Documents
COMMERCE, DEPARTMENT OF | BUREAU OF INDUSTRY AND SECURITY has floated a tender for NATO Business Opportunity: Web Asset Security Assessment Grey Box Web Penetration Testing. The project location is USA and the tender is closing on 06 Feb 2025. The tender notice number is RFQ-CO-424225-PEN, while the TOT Ref Number is 113598958. Bidders can have further information about the Tender and can request the complete Tender document by Registering on the site.
Procurement Summary
Country : USA
Summary : NATO Business Opportunity: Web Asset Security Assessment Grey Box Web Penetration Testing
Deadline : 06 Feb 2025
Other Information
Notice Type : Tender
TOT Ref.No.: 113598958
Document Ref. No. : RFQ-CO-424225-PEN
Competition : ICB
Financier : Self Financed
Purchaser Ownership : Public
Tender Value : Refer Document
Purchaser's Detail
Name :Login to see tender_details
Address : Login to see tender_details
Email : Login to see tender_details
Login to see detailsTender Details
Description
The NATO Communications and Information Agency (NCIA) intends to issue a Request for Quotation (RFQ) for Web Asset Security Assessment Grey Box Web Penetration Testing.
Potential U.S. prime contractors must 1) maintain a professionally active facility (office, factory, laboratory, etc.) within the United States, 2) be pre-approved for participation in NATO International Competitive Bidding (ICB), 3) be issued a Declaration of Eligibility (DOE) by the Department of Commerce (DOC), and 4) register with the NCI Agency-s eProcurement tool, Neo: https://www.ncia.nato.int/business/procurement/neo-eprocurement
In addition, contractor personnel will be required to work unescorted in Class II Security areas. Therefore, access can only be permitted to cleared individuals. Only companies maintaining the appropriate personnel clearances will be able to perform the resulting contract.
The reference for the RFQ is RFQ-CO-424225-PEN and all correspondence concerning the RFQ should include this reference.
SUMMARY OF REQUIREMENTS
Please note that these requirements are being refined and will be included in further details as part of the RFQ.
Project Objective
To assess the security vulnerabilities and risks associated with NATO web assets. The security audit will be conducted using a greybox approach and following OWASP Application Security Verification Standard.
Scope of Work
1. Conduct manual penetration testing following a grey box approach for i) web assets exposed to the internet and ii) web assets not exposed to the internet.2. Assess the security vulnerabilities and risks associated with the web assets.3. Provide recommendations to mitigate the identified risks.
Period of Performance
A nine month basic period, followed by two 12-month optional periods. The basic period is anticipated to start in April 2025 and end on 31 December 2025. This timeline represents the anticipated duration of the project, and adjustments ...
Active Contract Opportunity
Notice ID : RFQ-CO-424225-PEN
Related Notice
Department/Ind. Agency : COMMERCE, DEPARTMENT OF
Sub-tier : BUREAU OF INDUSTRY AND SECURITY :
General Information
Contract Opportunity Type: Special Notice (Original)
Original Published Date: Jan 22, 2025 09:09 am EST
Original Response Date: Feb 06, 2025 05:00 pm EST
Inactive Policy: Manual
Original Inactive Date: Feb 12, 2025
Initiative:
Classification
Original Set Aside:
Product Service Code:
NAICS Code: 541519 - Other Computer Related Services
Place of Performance: BEL
Documents
Procurement Documents for USA
Access a comprehensive library of standard procurement documents specific to USA. Here, you'll find all the essential forms, guidelines, and templates required for tender applications and submissions in USA
Want To Bid in This Tender?
Get Local Agent Support in USA and 60 More Countries.
View Tenders By
Sign in with Google