What types of agencies buy Penetration Testing services?

Federal agencies across all departments procure Penetration Testing services, including the Department of Defense, Department of Veterans Affairs, General Services Administration, and civilian agencies. State and local governments also issue Penetration Testing contracts through their own procurement portals.

How do I find Penetration Testing contracts with SamSearch?

Use SamSearch to browse pre-classified opportunities in one place, with AI-powered filtering by agency, set-aside, and deadline.

Are there set-aside contracts for small businesses in Penetration Testing?

Yes. Many Penetration Testing contracts are set aside for small businesses, including 8(a), WOSB, SDVOSB, and HUBZone firms. Use SamSearch's set-aside filters to find contracts your business qualifies for.

How competitive are Penetration Testing government contracts?

Competition varies by contract size and type. Large IDIQ vehicles in Penetration Testing can attract dozens of bidders, while small open-market solicitations may have only a few. Monitoring active solicitations and building agency relationships early improves win rates.

Contract Category

Penetration Testing Government Contracts

35 government contract opportunities classified as Penetration Testing, spanning federal and state/local solicitations. Updated daily.

11 federal20 SLED4 forecastsUpdated daily

Federal Opps

Federal contracts

SLED Opps

State, local & education contracts

Forecasts

Agency pipeline forecasts

Total

All sources combined

11 federal contract opportunities classified as Penetration Testing.

DEPARTMENT OF TRANSPORTATION

NAS Cyber Information Security and Operations

Archived

AI Summary

The FAA is conducting a market survey to gather information on vendors capable of providing cybersecurity services for the National Airspace System. This includes risk assessments, penetration testing, and operational security services. Interested vendors should submit a Capability Statement detailing their qualificati…

Posted Mar 13, 2026Due Mar 19, 2026Sources SoughtNAICS 541519Total Small Business Set-Aside (FAR 19.5)Sol: 693KA8-26-R-00009

View details→

FEDERAL COMMUNICATIONS COMMISSION

USAC RFP: PENETRATION TESTING AS A SERVICE

Archived

AI Summary

The Universal Service Administrative Company (USAC) is seeking proposals for Penetration Testing as a Service through an RFP. Proposals are due by March 30, 2026, at 11:00 AM ET. This solicitation is available electronically on the USAC website, and all communications should be directed to USAC's Contracting Office.

Posted Mar 4, 2026Due Mar 30, 2026Combined Synopsis/SolicitationNAICS 541990Sol: IT-26-027

View details→

DEPARTMENT OF COMMERCE

NATO BUSINESS OPPORTUNITY: CROWDSOURCED BLACK BOX WEB PENETRATION TESTING (BBPT) OF EXTERNAL WEB ASSETS

Archived

AI Summary

The NATO Communications and Information Agency seeks a contractor for crowdsourced Black Box Web Penetration Testing of external web assets. The contract will identify and remediate vulnerabilities to enhance cybersecurity. Eligible U.S. firms must have a Declaration of Eligibility and comply with NATO procurement requ…

Posted Jan 13, 2026Due Jan 30, 2026Special NoticeNAICS 541519Sol: RFQ-CO-424326-BBPT

View details→

DEPARTMENT OF AGRICULTURE

Notice of Intent

Archived

AI Summary

The Department of Agriculture seeks Independent Assessor Support Services for the Assessment and Authorization of ICE Owned Datacenters. This includes cybersecurity evaluations, vulnerability scans, and penetration testing. The work will be performed at specified USDA locations, and competition is limited to USDA STRAT…

Posted Nov 18, 2025Due Dec 18, 2025Special Notice

View details→

FEDERAL COMMUNICATIONS COMMISSION

USAC RFI: Penetration Testing as a Service

Archived

AI Summary

The Federal Communications Commission (FCC) is seeking information from US-based companies for Penetration Testing as a Service through a Request for Information (RFI). Responses are due by December 8, 2025. This opportunity is part of a combined synopsis/solicitation and aims to gather insights on available services. …

Posted Nov 17, 2025Due Dec 8, 2025Combined Synopsis/SolicitationNAICS 541990Sol: IT-25-188

View details→

DEPARTMENT OF COMMERCE

NATO BUSINESS OPPORTUNITY: WEB ASSET SECURITY ASSESSMENT GREY BOX WEB PENETRATION TESTING

Archived

AI Summary

The NATO Communications and Information Agency is seeking quotations for a web asset security assessment through grey box penetration testing. Eligible U.S. contractors must meet specific security and registration requirements. The project aims to identify vulnerabilities in NATO web assets, with a performance period s…

Posted Sep 15, 2025Due Sep 22, 2025Special NoticeNAICS 541519Sol: RFQ-CO-424225-PEN

View details→

DEPARTMENT OF THE INTERIOR

PENETRATION TESTING SOFTWARE SERVICE

Archived

AI Summary

The Department of the Interior is soliciting penetration testing software services to enhance vulnerability management for tribal gaming operations. This software will simulate real-world cyber-attacks, providing deeper insights into network infrastructure and improving security risk mitigation.

Posted Sep 4, 2025Due Sep 9, 2025SolicitationNAICS 541519Total Small Business Set-Aside (FAR 19.5)Sol: 140D0425Q0722

View details→

DEPARTMENT OF HOMELAND SECURITY

Automated Penetration Testing and Vulnerability Tool

Archived

AI Summary

The Transportation Security Administration (TSA) plans to award a contract for Automated Penetration Testing and Vulnerability Tool Licenses, Maintenance, and Support to Ironwood Cyber, located in Fort Worth, Texas. This contract aims to enhance cybersecurity assessments for the TSA's Computed Tomography Unit's Airport…

Posted May 7, 2025Due Jun 7, 2025Special NoticeNAICS 518210Sol: 70T03025_SpecialNotice_SIVM

View details→

DEPARTMENT OF TRANSPORTATION

NOTICE OF INTENT TO CONTRACT WITH A SINGLE SOURCE - HACK THE BOX

Archived

AI Summary

The Federal Aviation Administration (FAA) intends to contract with Hack the Box for four software licenses to enhance skills in threat detection, incident handling, and penetration testing. This notice is not a request for competitive quotations, but all responsible sources may submit capability statements within three…

Posted Mar 19, 2025Due Apr 1, 2025Special NoticeNAICS 513210Sol: AC-25-02527

View details→

DEPT OF DEFENSE

FY22-30730_CYBER PENETRATION TRAINING SUBSCRIPTION

Archived

AI Summary

The Department of Defense is seeking information on cybersecurity penetration training subscriptions. This Sources Sought Notice invites vendors to provide their capabilities and interest in fulfilling this requirement. Responses are due by the specified date for consideration.

Posted Jun 15, 2022Due Jun 25, 2022Sources SoughtSol: N63394-22-Q-0081-SSN

View details→

DEPT OF DEFENSE

WINGS PENETRATION TEST - AMENDMENT 0001

Archived

AI Summary

The Department of Defense, specifically the Air Force, has issued Amendment 0001 for a combined synopsis/solicitation regarding penetration testing services. This amendment includes changes to the Statement of Work and responses to questions. Interested bidders should review the highlighted changes carefully.

Posted Jun 10, 2022Due Jun 13, 2022Combined Synopsis/SolicitationSol: FA330022Q0029

View details→

Penetration Testing Government Contracts — FAQ

Common questions about finding and winning Penetration Testing government contracts.

Stop searching. Start winning.

Penetration Testing Government Contracts

Penetration Testing Government Contracts — FAQ