Awarded contract
Published
Open Source Technology Improvement Fund, Inc
22 Suppliers have already viewed this notice
Track & Win Public Sector Contracts and Tenders. Sign up for Free
Description
The Open Source Technology Improvement Fund is a corporate non-profit dedicated to securing open source apps that we all depend on. Responsible for over 10,000 hours of coordinated work, 400+ patched vulnerabilities, and over 50 security engagements of critical open source projects, OSTIF is working toward being a leader in helping improve security in Open Source. Lot 1: The Soveriegn Tech Fund (STF), whose mission is to support Open Source Infrastructure, is seeking to commission the Open Source Technology Improvement Fund (OSTIF), Inc, and its partners to perform security audits of critical third-party FOSS Infrastructure projects and offer process improvements services to improve security posture. Security audits are crucial for critical open source infrastructure because they help identify and mitigate potential vulnerabilities and weaknesses in the software. By conducting security audits, critical open source software can proactively assess the security posture of their code and infrastructure and address any issues before they are exploited by malicious actors. These audits provide valuable insights into the overall security of the system, ensuring that it meets the highest standards and reducing the risk of security breaches. Additionally, security audits help build trust among users and industry by demonstrating a commitment to the security and integrity of the open source infrastructure. This assurance based approach complements and builds upon STF’s investments in securing Open Source infrastructure, particularly the Bug Resilience Project, STF’s preventative security program. OSTIF will execute security engagements for critical third-party FOSS infrastructure as determined by STF and the Managed Audit Program. Our proposed contracting structure would be a Master Services Agreement with particular audits requested via Statement of Work requested by STF. This will allow STF with the capacity for providing audits in collaboration with OSTIF as need arises to secure critical software infrastructure. For each audit, deliverables will come in the form of: Audit Reports, Vulnerability and Bug Fixes, and other associated Security Improvements made to the target projects.
Personalised AI Summary
Unlock decision maker contacts.
Create a Free Account on Stotles
Stotles is your single source for government tenders, contracts, frameworks and much more. Sign up for free.
Explore similar pre-tenders, open or awarded contracts
Browse open tenders, recent contract awards and upcoming contract expiries that match similar CPV codes.
Deutsche Gesellschaft für Internationale Zusammenarbeit (GIZ) GmbH
–
Published 7 months ago
Stadtwerke Verkehrsgesellschaft Frankfurt am Main mbH (VGF)
–
Published 7 months ago
Awarded
Unterauftrag 3 THIEMCB5G
Brandenburgische Technische Universität Cottbus-Senftenberg
–
Published 7 months ago
Stadt Solingen
–
Published 7 months ago
Land Baden-Württemberg vertreten durch die IT-Baden-Württemberg (BITBW)
–
Published 7 months ago
Kassenärztliche Vereinigung Rheinland-Pfalz
–
Published 8 months ago
Leibniz Universität Hannover
–
Published 8 months ago
Deutsche Gesellschaft für Internationale Zusammenarbeit (GIZ) GmbH
–
Published 8 months ago
Rheinische Friedrich-Wilhelms-Universität Bonn, Abt. 5.3
–
Published 8 months ago
Explore top buyers for public sector contracts
Discover open tenders, contract awards and upcoming contract expiries of thousands of public sector buyers below. Gain insights into their procurement activity, historical purchasing trends and more.
CPV Codes
Sign up to the Stotles Tender Tracker for free
Find even more contracts with advanced search capability and AI powered relevance scoring.