CLOSING DATE AND TIME: November 9, 2020 @ 5:00 PM EST
The World Bank Group (WBG) seeks to procure a Static Application Security Testing solution from an established product vendor. The purpose is to facilitate an improved and best of breed static application security testing solution to analyze WBG applications’ source code for security vulnerabilities in early phases of the SDLC, ideally integrated in DevOps pipelines. WBG manages many internal and external facing applications (web, mobile, cloud-based, etc.) built upon varieties of technologies and solutions.
The Static Application Security Testing solution is expected to be able to scan applications via IDE plug-ins, TFS/Azure DevOps extensions, and APIs to effectively and efficiently assist security analysts in understanding and verifying the detected vulnerabilities, as well as reporting them to respective stake holders for timely remediation. In addition, the scanner is expected to support integration with existing tools or processes via API and connectors.
WBG invites interested bidders to submit a proposal for providing this Static Application Security Testing solution. Bidders must have demonstrated expertise in producing and serving this kind of solution.
The scope of work that a vendor is expected to perform include:
The solicitation may be obtained by sending an email to the designated Contracting Officer, referencing the following information:
1. Solicitation Number
2. Company Name
3. Contact Person Name and Title
4. Address
5. Telephone Number
6. Fax Number
7. Contact's Email Address
A copy of the solicitation will be sent to organizations that have replied to and are eligible to receive this advertisement. All requests and questions regarding this solicitation shall be directed to the following designated Corporate Procurement Contract Officer(s):
Shweta Mesipam at smesipam@worldbank.org
The WBG reserves the right to publicly disclose contract award information, including but not limited to, name of company receiving the award, brief description of services, and contract award amount, for any contract award valued over US$250,000. Offeror's proposal and contractual documents will remain confidential and therefore not subject to disclosure.
The World Bank reserves the right to reject any or all responses without recourse. The WBG reserves the right to publicly disclose contract award information, including but not limited to, name of company receiving the award, brief description of services, and contract award amount, for any contract award valued over US$250,000. Offeror's proposal and contractual documents will remain confidential and therefore not subject to disclosure.
The World Bank reserves the right to reject any or all responses without recourse.