Request for proposals to supply a penetration testing tool for the internal ICT team to conduct security assessments of small to medium-sized web applications over a 12-month period.
The Council for Scientific and Industrial Research (CSIR) seeks proposals for a penetration testing tool that will enable its internal ICT team to perform efficient security assessments on small to medium-sized web applications. The selected tool must facilitate automated penetration testing, ensuring early detection of vulnerabilities in the development and pre-production phases. It should align with industry standards such as OWASP Top 10 and support comprehensive reporting to assist in remediation efforts.
The tool should provide capabilities for governance, control, and safety, including role-based access, secure data handling, and compliance with the Protection of Personal Information Act (POPIA). Additionally, it must offer training and support for the CSIR staff to ensure effective utilization. This procurement aims to enhance the security posture of CSIR's web applications, safeguarding sensitive data and maintaining compliance with regulatory requirements.
This tender is suitable for software vendors specializing in cybersecurity solutions, particularly those offering penetration testing tools and services. Companies with expertise in web application security, compliance with data protection laws, and a proven track record in providing training and support for security tools are encouraged to apply.