SW-30492 - USA (Virginia) - Enterprise Web Application Scanning Software - Deadline January 15,2020

Product (RFP/RFQ/RFI/Solicitation/Tender/Bid Etc.) ID: SW-30492

Government authority located in Virginia; USA based organization looking for expert vendor for enterprise web application scanning software.

[A] Budget: Looking for Proposal

[B] Scope of Service:

Vendor needs to provide enterprise web application scanning software for cover approximately 600 USGS public web sites requiring web application vulnerability scanning.
a. Centralized multi-user vulnerability management console used to manage vulnerabilities, scanners, and user accounts
b. Supports unlimited users
c. Supports a minimum of 10 concurrent users
d. Console and scanners function properly within Windows Server virtual machines
e. Allows for user Roles and Privileges
f. Provides a capability to assign management of targets to users
g. Supports unlimited scan engines
h. Provides a capability to track vulnerabilities for up to 600 web sites
i. Provides a capability to manage (life-cycle and categorization) identified vulnerabilities on targets.
Categorization choices may include false positive and acceptable risk
j. Provides a capability to customize workflows
k. Provides both summary level and developer level reports. Developer reports will contain web test
responses as well as remediation information
l. Provides a capability to export reports in various formats; HTML, PDF and CSV at a minimum
m. Provides a capability to perform web application discovery scans
n. At a minimum, identifies web application vulnerabilities identified by the OWASP Foundation’s Top 10 most critical web application security risks
o. Provides a capability to scan against common web server technologies such as JSP, Java Servlets,
PHP, Perl, Python, Ruby on Rails, ASP, ColdFusion, and content management systems such as
WordPress, Drupal, etc.
p. Provides a capability to perform uncredentialed, credentialed, and agent-based scanning of web sites
q. Provides a manual intervention capability during an active scan
r. Provides a continuous scanning capability
s. Provides scan throttling controls per target to lessen the impact of scanning activities on production sites
t. Provides a capability to identify malware URL detection
u. Provides a dashboard illustrating current security state of targets scanned
v. Provide network access to an application program interface (API)
w. Subscription maintenance providing all software updates, vulnerability plug-in updates, and access to technical support. Technical Support will consist of email, web, and phone support

[C] Eligibility:

- Onshore (USA Only);

[D] Work Performance:

Performance of the work will be Offsite. Vendor needs to carry work in their office location.

Expiry Date : Wednesday, 15 January, 2020

Category : Software, System and Application, Web Design and Development

Country : USA

State : Virginia

RFP Expired

You can either pay for Single RFP/Bid document or Subscribe with Monthly Subscription for whole Software, System and Application, Web Design and Development Category/Categories.

If you will obtain monthly subscription for Software, System and Application, Web Design and Developmentcategory/categories, you will be able to access all the RFPs from that Category. Here are the Monthly Subscription offers. So, subscribe for Monthly offers and get rid of Individual RFP payment.

*No commitment =
(1) There is no minimum commitment.
(2) You can subscribe for as less as 1 month and cancel it any time. If you subscribe for annual offer, you can cancel it any time within year.
(3) There is no partial refund policy after Monthly or Annual subscription. You will be required to use services for a Month (Or Year since you have availed discounted pricing).
(4) You can cancel your subscription any-time directly from your PayPal account to stop further recurring charges before next due date.
(5) You will be able to download all RFPs for subscribed Category or Location without any extra cost.

Similar RFPs