DOD plans for crowdsourcing cybersecurity contract
The Defense Department has released the solicitation for a task order contract to get support with crowdsourced vulnerability discovery and disclosure services.
The Defense Department has released the solicitation for a task order contract to use crowdsourcing for vulnerability discovery and disclosure services.
DOD wants industry expertise and best practices from the private sector on how to use crowdsourcing methodology to enhance information security.
DOD has found it has a need to leverage a wide pool of innovative information security researchers via crowdsourcing for vulnerability discovery, coordination and disclosures, as it maintains the integrity and security required of its IT infrastructure.
DOD held its first bug bounty, called “Hack the Pentagon,” April 18. It ran for 24 days as a pilot program. Officials found the pilot went better than expected.
The contracts discovery and disclosure services will cross the full range of networks, systems, and information, including web applications, software, source code, and software-embedded devices across the whole department.
DOD released its solicitation Aug. 9. Responses are due by Sept. 8.