Award

Bug Bounty, Vulnerability Rewards and Vulnerability Disclosure Programme

MINISTRY OF DEFENCE

This public procurement record has 1 release in its history.

Award

10 Jan 2024 at 13:19

Award Notice
Summary of the contracting process

The Ministry of Defence has awarded a contract for the Bug Bounty, Vulnerability Rewards and Vulnerability Disclosure Programme. The procurement method used was selective, with a value of £2,517,676 in IT services. The contract period runs from October 31, 2023 to April 30, 2025, with the tender closing on September 25, 2013, in the South West region of the United Kingdom.

This tender by the Ministry of Defence presents an opportunity for businesses in the IT services industry, particularly those specialised in consulting, software development, and Internet support. Small and medium-sized enterprises (SMEs) would be well-suited to compete, given the nature of the procurement process and the national security importance of maintaining the MOD's networks and systems.

Find more tenders on our Open Data Platform.
How relevant is this notice?

D3 Tenders Premium

Win More Public Sector Contracts

AI-powered tender discovery, pipeline management, and market intelligence — everything you need to grow your public sector business.

Start Free Trial Book a Demo
All Features Pricing

Notice Information

Notice Title

Bug Bounty, Vulnerability Rewards and Vulnerability Disclosure Programme

Notice Description

The MOD's computer networks and systems support the nation's defence and are crucial both for daily business operations and mission-critical activities. Maintaining the security and integrity of The MOD's networks and systems is a matter of national security and requires the continuous identification and remediation of vulnerabilities that can be exploited by malicious cyber actors. To reduce the cyber risk the MOD has been working with the ethical hacking community to find vulnerabilities in the MOD's systems. This is being done in the forms of a Vulnerability Rewards Programme (VRP), Bug Bounty challenges, an in-person bug bounty and a supply chain Vulnerability Disclosure Programme (VDP).

Notice Details

Publication & Lifecycle

Open Contracting ID
ocds-b5fd17-38718daf-3a32-460d-b07c-6f47a89280de
Publication Source
Contracts Finder
Latest Notice
https://www.contractsfinder.service.gov.uk/Notice/571b4b97-4028-404e-bcd1-74257d54465a
Current Stage
Award
All Stages
Award

Procurement Classification

Notice Type
Award Notice
Procurement Type
Framework
Procurement Category
Services
Procurement Method
Selective
Procurement Method Details
Call-off from a framework agreement
Tender Suitability
SME
Awardee Scale
SME

Common Procurement Vocabulary (CPV)

CPV Divisions

72 - IT services: consulting, software development, Internet and support

CPV Codes

72000000 - IT services: consulting, software development, Internet and support

Notice Value(s)

Tender Value
£2,517,676 £1M-£10M
Lots Value
Not specified
Awards Value
£2,517,676 £1M-£10M
Contracts Value
Not specified

Notice Dates

Publication Date
10 Jan 20242 years ago
Submission Deadline
25 Sep 2013Expired
Future Notice Date
Not specified
Award Date
15 Oct 20232 years ago
Contract Period
31 Oct 2023 - 30 Apr 2025 1-2 years
Recurrence
Not specified

Notice Status

Tender Status
Complete
Lots Status
Not Specified
Awards Status
Active
Contracts Status
Not Specified

Buyer & Supplier

Contracting Authority (Buyer)

Main Buyer
MINISTRY OF DEFENCE
Contact Name
Available with D3 Tenders Premium →
Contact Email
Available with D3 Tenders Premium →
Contact Phone
Available with D3 Tenders Premium →

Buyer Location

Locality
CORSHAM
Postcode
SN13 9GB
Post Town
Swindon
Country
England
Major Region (ITL 1)
TLK South West (England)
Basic Region (ITL 2)
TLK7 Gloucestershire and Wiltshire
Small Region (ITL 3)
TLK72 Wiltshire
Delivery Location
TLK South West (England)
Local Authority
Wiltshire
Electoral Ward
Corsham Without
Westminster Constituency
Chippenham

Supplier Information

Number of Suppliers
1
Supplier Name

HACKERONE

Further Information

Notice Documents

Open Contracting Data Standard (OCDS)

View full OCDS Record for this contracting process

Download

The Open Contracting Data Standard (OCDS) is a framework designed to increase transparency and access to public procurement data in the public sector. It is widely used by governments and organisations worldwide to report on procurement processes and contracts. 

{
    "tag": [
        "compiled"
    ],
    "id": "ocds-b5fd17-38718daf-3a32-460d-b07c-6f47a89280de-2024-01-10T13:19:25Z",
    "date": "2024-01-10T13:19:25Z",
    "ocid": "ocds-b5fd17-38718daf-3a32-460d-b07c-6f47a89280de",
    "language": "en",
    "initiationType": "tender",
    "tender": {
        "id": "708929450",
        "title": "Bug Bounty, Vulnerability Rewards and Vulnerability Disclosure Programme",
        "description": "The MOD's computer networks and systems support the nation's defence and are crucial both for daily business operations and mission-critical activities. Maintaining the security and integrity of The MOD's networks and systems is a matter of national security and requires the continuous identification and remediation of vulnerabilities that can be exploited by malicious cyber actors. To reduce the cyber risk the MOD has been working with the ethical hacking community to find vulnerabilities in the MOD's systems. This is being done in the forms of a Vulnerability Rewards Programme (VRP), Bug Bounty challenges, an in-person bug bounty and a supply chain Vulnerability Disclosure Programme (VDP).",
        "status": "complete",
        "classification": {
            "scheme": "CPV",
            "id": "72000000",
            "description": "IT services: consulting, software development, Internet and support"
        },
        "items": [
            {
                "id": "1",
                "deliveryAddresses": [
                    {
                        "region": "South West",
                        "countryName": "United Kingdom"
                    }
                ]
            }
        ],
        "value": {
            "amount": 2517676,
            "currency": "GBP"
        },
        "procurementMethod": "selective",
        "procurementMethodDetails": "Call-off from a framework agreement",
        "tenderPeriod": {
            "endDate": "2013-09-25T23:59:00+01:00"
        },
        "contractPeriod": {
            "startDate": "2023-10-31T00:00:00Z",
            "endDate": "2025-04-30T23:59:59+01:00"
        },
        "suitability": {
            "sme": true,
            "vcse": false
        },
        "mainProcurementCategory": "services"
    },
    "parties": [
        {
            "id": "GB-SRS-sid4gov.cabinetoffice.gov.uk/7U7AuvS7",
            "name": "MINISTRY OF DEFENCE",
            "identifier": {
                "legalName": "MINISTRY OF DEFENCE",
                "scheme": "GB-SRS",
                "id": "sid4gov.cabinetoffice.gov.uk/7U7AuvS7"
            },
            "address": {
                "streetAddress": "MoD",
                "locality": "Corsham",
                "postalCode": "SN139GB",
                "countryName": "England"
            },
            "contactPoint": {
                "name": "Andrew Genery",
                "email": "Andrew.Genery100@mod.gov.uk",
                "telephone": "03067702081"
            },
            "roles": [
                "buyer"
            ]
        },
        {
            "id": "GB-COH-14123945",
            "name": "Hackerone Inc",
            "identifier": {
                "legalName": "Hackerone Inc",
                "scheme": "GB-COH",
                "id": "14123945"
            },
            "address": {
                "streetAddress": "4th Floor, St. James House, St. James Square, Cheltenham, England, GL50 3PR"
            },
            "details": {
                "scale": "sme",
                "vcse": false
            },
            "roles": [
                "supplier"
            ]
        }
    ],
    "buyer": {
        "id": "GB-SRS-sid4gov.cabinetoffice.gov.uk/7U7AuvS7",
        "name": "MINISTRY OF DEFENCE"
    },
    "awards": [
        {
            "id": "ocds-b5fd17-38718daf-3a32-460d-b07c-6f47a89280de-1",
            "status": "active",
            "date": "2023-10-16T00:00:00+01:00",
            "datePublished": "2024-01-10T13:19:25Z",
            "value": {
                "amount": 2517676,
                "currency": "GBP"
            },
            "suppliers": [
                {
                    "id": "GB-COH-14123945",
                    "name": "Hackerone Inc"
                }
            ],
            "contractPeriod": {
                "startDate": "2023-10-31T00:00:00Z",
                "endDate": "2025-04-30T23:59:59+01:00"
            },
            "documents": [
                {
                    "id": "1",
                    "documentType": "awardNotice",
                    "description": "Awarded contract notice on Contracts Finder",
                    "url": "https://www.contractsfinder.service.gov.uk/Notice/571b4b97-4028-404e-bcd1-74257d54465a",
                    "datePublished": "2024-01-10T13:19:25Z",
                    "format": "text/html",
                    "language": "en"
                }
            ]
        }
    ]
}