SamSearch

    Closed Solicitation · GENERAL SERVICES ADMINISTRATION

    NOTICE OF INTENT TO SOLICIT AND AWARD A SOLE-SOURCE MODIFICATION FOR THE VULNERABILITY DISCLOSURE POLICY (VDP) PLATFORM

    Issued by FEDERAL ACQUISITION SERVICE
    Sol. 47QFRA20C0012Special Notice
    Closed
    STATUS
    Closed
    closed Jan 26, 2026
    POSTED
    Jan 12, 2026
    Publication date
    NAICS CODE
    541519
    Primary industry classification
    PSC CODE
    DJ01
    Product & service classification

    AI Summary

    The U.S. General Services Administration intends to modify an existing contract with Endyna, Inc. for the Vulnerability Disclosure Policy platform. This modification will ensure continued access to critical cybersecurity services for the Department of Homeland Security and other federal agencies. Interested firms may express their capabilities for future competitive procurement.

    Contract details

    Solicitation No.
    47QFRA20C0012
    Notice Type
    Special Notice
    Posted Date
    January 12, 2026
    Response Deadline
    January 26, 2026
    NAICS Code
    541519AI guide
    PSC / Class Code
    DJ01
    Sub-Agency
    FEDERAL ACQUISITION SERVICE
    Agency
    GENERAL SERVICES ADMINISTRATION
    Primary Contact
    Lila Schmideke
    AI Product/Service
    service

    Description

    The U.S. General Services Administration, Federal Acquisition Service, hereby publicises its intention to modify an existing open market contract with Endyna, Inc., located at 1345 Lancia Drive, McLean VA, 22102.  The anticipated modification will provide the  Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and partnering Federal Cybersecurity Executive Branch (FCEB) agencies continued access to a secure platform to facilitate the submission, tracking, and reporting of vulnerabilities discovered in information systems. The contractor, EnDyna, configures, operates, and administers the platform; ensures it maintains an Authority to Operate (ATO); provides triage services to ensure the validity, proper routing, and tracking of vulnerability submissions; and facilities a bug bounty incentive payment program for FCEB agencies to reward valid submissions.  EnDyna is the only firm currently able to continue to provide the services and maintain the ATO without a break in these critical services. The anticipated sole-source modification will allow the Government adequate time to competitively procure future VDP program requirements and implement a new procurement strategy. 

    Be advised that the aforementioned information is anticipatory in nature and is not binding.  A determination by the Government not to compete based upon responses to this notice is solely within the discretion of the Government.  This notice is not a request for competitive proposals; however, any firm believing that it can fulfill the requirement of providing these services may be considered on the following competitive procurement.  Interested parties may identify their interest and capabilities in response to this notice, and must clearly show the firm's ability to be immediately responsive without compromising the quality, accuracy, and reliability of services provided.  The Government will consider all responses. 

    Key dates

    1. January 12, 2026Posted Date
    2. January 26, 2026Proposals / Responses Due

    AI search tags

    cybersecurity servicesvulnerability managementinformation technology servicesbug bounty program

    Frequently asked questions

    NOTICE OF INTENT TO SOLICIT AND AWARD A SOLE-SOURCE MODIFICATION FOR THE VULNERABILITY DISCLOSURE POLICY (VDP) PLATFORM is a federal acquisition solicitation issued by GENERAL SERVICES ADMINISTRATION. Review the full description, attachments, and submission requirements on SamSearch before the response deadline.

    SamSearch Platform

    Stop searching. Start winning.

    AI-powered intelligence for the right opportunities, the right leads, and the right time.

    Book a Demo