Updated January 13, 2021
G2X TAKE: The protest by HackerOne related to this Department of Homeland Security Cybersecurity and Infrastructure Security Agency’s contract, intended to create a platform that agencies can use to safely collect information about security flaws in their networks, has now been dismissed.
No details have been provided as to the grounds for the challenge at this time, nor the reason for the dismissal.
Please note that a ‘dismissal’ by GAO does not necessarily mean the issue is resolved and oftentimes only indicates the contracting authority/agency has agreed to proactively take some corrective action to address a deficiency identified as part of the protest process.
Details on the protest and the award to EnDyna are available in the thread below.
Posted November 3, 2020
“The Cybersecurity and Infrastructure Security Agency’s first shared-services offering has hit a snag, with HackerOne protesting the award of the vulnerability disclosure policy (VDP) platform contract.
HackerOne filed a bid protest of the General Services Administration’s $13.5 million award to EnDyna, Inc. with the Government Accountability Office on Oct. 9. The goal of the contract is to create a platform that agencies can use to safely collect information about security flaws in their networks.”
“A decision isn’t due until Jan. 19, 2021.”
“We believe the security of our national cyber infrastructure depends significantly on the efforts of security researchers. CISA’s requirements are clear on what they need in a vendor to…” Read the full article here.
Source: CISA’s first shared-services offering is delayed by protest – By Dave Nyczepir, November 2, 2020. FedScoop.