Port of Seattle

The buyer seeks a security consulting firm to perform security testing on critical systems and networks. The scope includes security application testing, external penetration testing, network and firewall design assessments, and network traffic reviews. The current scope covers four applications and four networks, potentially increasing to seven each. The consultant will work with the Project Manager to schedule tests, assessments, and reviews to meet federal compliance requirements.

• 8/13/2024 - Pre-Proposal Conference
• 8/15/2024 - Last Day to Ask Questions
• 9/6/2024 - Proposal Due Date
• 9/23/2024 - Notice of Selection
• 10/7/2024 - Execute Agreement

• Minimum three years experience in assigned area of expertise
• Industry standard hacker or penetration certification preferred for Penetration Testers
• Industry standard application security tester certification preferred for Application Security Testers

• Perform security application testing
• Conduct external penetration testing
• Assess network and firewall design
• Review network traffic
• Create annual testing schedule
• Provide security configuration consultation services
• Deliver vulnerability findings and remediation plans
• Perform retests after remediation