---
title: "Bug Bounty, Vulnerability Rewards and Vulnerability Disclosure Programme"
ocid: "ocds-b5fd17-38718daf-3a32-460d-b07c-6f47a89280de"
canonical_url: "https://d3tenders.com/contract/?ocid=ocds-b5fd17-38718daf-3a32-460d-b07c-6f47a89280de"
markdown_url: "https://d3tenders.com/contract/ocds-b5fd17-38718daf-3a32-460d-b07c-6f47a89280de.md"
json_url: "https://d3tenders.com/contract/ocds-b5fd17-38718daf-3a32-460d-b07c-6f47a89280de.json"
source: "Contracts Finder"
current_stage: "Award"
buyer: "MINISTRY OF DEFENCE"
published: "2024-01-10"
---

# Bug Bounty, Vulnerability Rewards and Vulnerability Disclosure Programme

Buyer: MINISTRY OF DEFENCE  
Current stage: Award  
OCID: ocds-b5fd17-38718daf-3a32-460d-b07c-6f47a89280de

[View canonical contract page](https://d3tenders.com/contract/?ocid=ocds-b5fd17-38718daf-3a32-460d-b07c-6f47a89280de)  
[Download OCDS JSON](https://d3tenders.com/contract/ocds-b5fd17-38718daf-3a32-460d-b07c-6f47a89280de.json)

## Summary

The Ministry of Defence has awarded a contract for the Bug Bounty, Vulnerability Rewards and Vulnerability Disclosure Programme. The procurement method used was selective, with a value of £2,517,676 in IT services. The contract period runs from October 31, 2023 to April 30, 2025, with the tender closing on September 25, 2013, in the South West region of the United Kingdom.

This tender by the Ministry of Defence presents an opportunity for businesses in the IT services industry, particularly those specialised in consulting, software development, and Internet support. Small and medium-sized enterprises (SMEs) would be well-suited to compete, given the nature of the procurement process and the national security importance of maintaining the MOD's networks and systems.

## Notice

The MOD's computer networks and systems support the nation's defence and are crucial both for daily business operations and mission-critical activities. Maintaining the security and integrity of The MOD's networks and systems is a matter of national security and requires the continuous identification and remediation of vulnerabilities that can be exploited by malicious cyber actors. To reduce the cyber risk the MOD has been working with the ethical hacking community to find vulnerabilities in the MOD's systems. This is being done in the forms of a Vulnerability Rewards Programme (VRP), Bug Bounty challenges, an in-person bug bounty and a supply chain Vulnerability Disclosure Programme (VDP).

## Key Details

| Field | Value |
| --- | --- |
| Publication source | Contracts Finder |
| Latest notice | https://www.contractsfinder.service.gov.uk/Notice/571b4b97-4028-404e-bcd1-74257d54465a |
| Notice type | Award Notice |
| Procurement type | Framework |
| Procurement category | Services |
| Procurement method | Selective |
| Procurement method details | Call-off from a framework agreement |
| Tender suitability | SME |
| Awardee scale | SME |
| All stages | Award |

## Dates

| Field | Value |
| --- | --- |
| Publication date | 10 Jan 2024 |
| Submission deadline | 25 Sep 2013 |
| Future notice date | Not specified |
| Award date | 15 Oct 2023 |
| Contract period | 31 Oct 2023 - 30 Apr 2025 |
| Recurrence | Not specified |

## Values

| Field | Value |
| --- | --- |
| Tender value | £2,517,676 |
| Lots value | Not specified |
| Awards value | £2,517,676 |
| Contracts value | Not specified |

## Status

| Field | Value |
| --- | --- |
| Tender status | Complete |
| Lots status | Not specified |
| Awards status | Active |
| Contracts status | Not specified |

## Buyer

| Field | Value |
| --- | --- |
| Main buyer | MINISTRY OF DEFENCE |
| Locality | CORSHAM |
| Post town | Swindon |
| Postcode | SN13 9GB |
| Country | England |
| ITL 1 | TLK South West (England) |
| ITL 2 | TLK7 Gloucestershire and Wiltshire |
| ITL 3 | TLK72 Wiltshire |
| Local authority | Wiltshire |
| Electoral ward | Corsham Without |
| Westminster constituency | Chippenham |
| Delivery location | TLK South West (England) |

## Supplier

| Field | Value |
| --- | --- |
| Number of suppliers | 1 |
| Supplier names | HACKERONE |

## CPV Codes

### Divisions

- 72 - IT services: consulting, software development, Internet and support

### Codes

- 72000000 - IT services: consulting, software development, Internet and support

## Release History

- 10 Jan 2024 at 13:19 - Award - Award Notice - https://www.contractsfinder.service.gov.uk/Notice/571b4b97-4028-404e-bcd1-74257d54465a

## Documents

- https://www.contractsfinder.service.gov.uk/Notice/571b4b97-4028-404e-bcd1-74257d54465a
  10th January 2024 - Awarded contract notice on Contracts Finder

## Provenance

This Markdown file is an alternate public rendering of the D3 Tenders contract record. The canonical page is https://d3tenders.com/contract/?ocid=ocds-b5fd17-38718daf-3a32-460d-b07c-6f47a89280de. The underlying structured data is available as OCDS JSON at https://d3tenders.com/contract/ocds-b5fd17-38718daf-3a32-460d-b07c-6f47a89280de.json.