Update: Protest of DHS CISA’s $13M Vulnerability Disclosure Policy award dismissed

Updated January 13, 2021 

G2X TAKE: The protest by HackerOne related to this Department of Homeland Security Cybersecurity and Infrastructure Security Agency’s contract, intended to create a platform that agencies can use to safely collect information about security flaws in their networks, has now been dismissed. 

No details have been provided as to the grounds for the challenge at this time, nor the reason for the dismissal. 

Please note that a ‘dismissal’ by GAO does not necessarily mean the issue is resolved and oftentimes only indicates the contracting authority/agency has agreed to proactively take some corrective action to address a deficiency identified as part of the protest process. 

Details on the protest and the award to EnDyna are available in the thread below. 

Posted November 3, 2020 

“The Cybersecurity and Infrastructure Security Agency’s first shared-services offering has hit a snag, with HackerOne protesting the award of the vulnerability disclosure policy (VDP) platform contract.

HackerOne filed a bid protest of the General Services Administration’s $13.5 million award to EnDyna, Inc. with the Government Accountability Office on Oct. 9. The goal of the contract is to create a platform that agencies can use to safely collect information about security flaws in their networks.”

“A decision isn’t due until Jan. 19, 2021.”

“We believe the security of our national cyber infrastructure depends significantly on the efforts of security researchers. CISA’s requirements are clear on what they need in a vendor to…” Read the full article here.

Source: CISA’s first shared-services offering is delayed by protest – By Dave Nyczepir, November 2, 2020. FedScoop.

Related Item
Press Release: DHS CISA awards 5-year Vulnerability Disclosure Platform contract to EnDyna (October 5, 2020)


This topic contains 1 reply, has 2 voices, and was last updated by  Anonymous 7 months, 2 weeks ago.

  • Author
  • #111868

    Replies viewable by members only

  • #111932
    • Anonymous

    Replies viewable by members only


You must be logged in to reply to this topic.


Questions?. Send us an email and we'll get back to you, asap.


©2021 MileMarker10, LLC all rights reserved | Community and Member Guidelines | Privacy Policy | About G2Xchange FedCiv

Opportunities. Starting Points.

About our Data

The Vault is a listing of expiring contracts, task orders, etc. within a certain set of parameters, to include:

  • Have an initial total estimated contract value of $10 million or above
  • Federal Civilian Only – DHS, Transportation, Justice, Labor, Interior, Commerce, Energy, State, and Treasury Actions
  • NAICS codes include: 511210, 518210, 519130, 519190, 541511,
    541513, 541519, 541611, 541618,
    541690, 541720, 541990
  • Were modified within the last 12 calendar months
  • The data represented is based on information provided by the government

Who has access? Please note that ALL G2Xchange FedCiv Members will receive access to all basic and much of the advanced data. G2Xchange FedCiv Corporate Members will receive access to ALL Vault content (basic and advanced).

Feedback/Suggestions? Contact us at Vault@G2Xchange.com and let us know what you think. 

G2Xchange FedCiv

Log in with your credentials for G2Xchange FedCiv

Forgot your details?