Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
FBO DAILY - FEDBIZOPPS ISSUE OF AUGUST 24, 2016 FBO #5388
MODIFICATION

D -- Network Penetration Test

Notice Date
8/22/2016
 
Notice Type
Modification/Amendment
 
NAICS
541512 — Computer Systems Design Services
 
Contracting Office
International Boundary and Water Commission, Acquisition Division, Acquisition Division, 4171 North Mesa, Suite C-100, El Paso, Texas, 79902, United States
 
ZIP Code
79902
 
Solicitation Number
6309r1221014
 
Point of Contact
Angelica Baca,
 
E-Mail Address
angelica.baca@ibwc.gov
(angelica.baca@ibwc.gov)
 
Small Business Set-Aside
Total Small Business
 
Description
Q&As III 8/22/16 Is this network assessment work strictly for Certification and Accreditation purposes? Yes, but it does also help us meet our requirements to have a 3rd party test and verify that our internal controls are in place as required. How much of this network testing work do you expect to be conducted off-site? The majority of the work should be able to be completed off-site, although there are some controls that can only be verified while on site. Particularly some of the Physical and Environmental controls. Do you have any on-site IT personnel to support the Phishing campaigns (mainly email system and DNS integration)? Yes. Will the external network assessment be a "no-knowledge", one or will accounts be provided to dive deeper into web applications that would need to be addressed? Yes, it will be a 'no-knowledge' assessment. We would want the vendor to follow the existing process to create an account and see if they can manipulate the site or the form used to create public accounts and identify any vulnerabilities. Is the VoIP network physically/logically separated from the data LAN? Can the VOIP network be reached over the VPN? Yes it is physically/logically separated. No the VoIP is not accessible through the VPN. The public IP address can be used to scan externally to identify vulnerabilities. Will you provide the awardee your policy and process documents to us remotely, or is there security issues with providing those documents to us remotely (we are a US based and US Citizen run business)? Policy and process documentation will be provided along with a Non-Disclosure Agreement required by the awardee to sign. How available will your key personnel be for questions and interviews during the network testing? They will be available during normal working hours, 8 am to 6 pm (MST) Will you provide an administrator-level account for the authenticated vulnerability scanning? Yes, temporary credentials will be provided.
 
Web Link
FBO.gov Permalink
(https://www.fbo.gov/spg/IBWC/IMD/ElPasoTX/6309r1221014/listing.html)
 
Place of Performance
Address: USIBWC HQ, 4171 N. Mesa Bldg. C-100, El Paso, Texas, 79902, United States
Zip Code: 79902
 
Record
SN04234127-W 20160824/160822234655-2a5455720920e3d77a575e803edcc7af (fbodaily.com)
 
Source
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.