Project Information

Bid Title

Request for Information (RFI) -- DAST Tool

Issuing Agency

SOCIAL SECURITY ADMINISTRATION

Location

N/A

Published Date

May 5, 2026

Closing Date

May 19, 2026

Government Level

Federal

Status

Closed

Ref. #

28321326RI0000019

Original Source

Join to Access Full Details

Bid Inquiries

Join to Access Full Details

Bid Documents

Join to Access Full Details

Project Description

Follow

Request for Information (RFI) -- DAST Tool

Active

Contract Opportunity

Notice ID

28321326RI0000019

Related Notice

Department/Ind. Agency

SOCIAL SECURITY ADMINISTRATION

Sub-tier

SOCIAL SECURITY ADMINISTRATION

Office

SSA OFC OF ACQUISITION GRANTS

Looking for contract opportunity help?

(opens in new window)

APEX Accelerators are an official government contracting resource for small businesses. Find your local APEX Accelerator (opens in new window) for free government expertise related to contract opportunities.

APEX Accelerators are funded in part through a cooperative agreement with the Department of Defense.

The APEX Accelerators program was formerly known as the Procurement Technical Assistance Program (opens in new window) (PTAP).

General Information

• Contract Opportunity Type: Solicitation (Original)
• Original Published Date: May 05, 2026 03:16 pm EDT
• Original Date Offers Due: May 19, 2026 02:00 pm EDT
• Inactive Policy: 15 days after date offers due
• Original Inactive Date: Jun 03, 2026
• Initiative:
  • None

Classification

• Original Set Aside:
• Product Service Code: 7A21 - IT AND TELECOM - BUSINESS APPLICATION SOFTWARE (PERPETUAL LICENSE SOFTWARE)
• NAICS Code:
  • 513210 - Software Publishers
• Place of Performance:

Description

The Web Application Security Team (WAST) performs static code scanning of all SSA applications as part of the Office of Information Security’s (OIS) cybersecurity program. This is accomplished with the static application security testing (SAST) tool called Checkmarx and the software composition analysis (SCA) tool called Black Duck. Both of these solutions are white box testing tools that analyze the application’s code as it's being built. WAST is looking to procure a Dynamic Application Security Testing (DAST) solution to better analyze SSA applications, to bolster FISMA metrics, and to satisfy the requirements from multiple external audits and assessments. The DAST tool would scan applications as they are executed to identify exploits that can only be detected from black box testing. This funding is required immediately to better support the workload of multiple federal mandates and to provide black box testing early in the development lifecycle to stop exploits before they go to Production and potentially cause a security breach. This will also support a new requirement to perform penetration testing on all Tier 1 applications and all information systems going through the Authority to Operate (ATO) process.

Attachments/Links

Contact Information

Contracting Office Address

• 1540 ROBERT M. BAIL BUILDING 6401 SECURITY BLVD 21235
• BALTIMORE , MD 21235
• USA

Primary Point of Contact

• Keelin McGrath
• keelin.mcgrath@ssa.gov

Secondary Point of Contact

History

• May 05, 2026 03:16 pm EDTSolicitation (Original)

* Disclaimer: Government BidHub provides information on bids, RFPs (Requests for Proposals), and RFQs (Requests for Qualifications) solely for convenience and informational purposes. This site is not an official public notice board. For official details, responses, or inquiries, please contact the relevant government agency directly.