DA01--Zero Trust Application Realtime Protection (ZARP) RFI (VA-25-00050847) - Federal Contract Opportunity

Analysis of Federal Contract Opportunity Solicitation #: 36C10B25R0189 by G2X Lumen AI

Key Information

Notice ID
36C10B25R0189
NAICS Code
541519
Agency
VETERANS AFFAIRS, DEPARTMENT OF
Response Deadline
March 10, 2025
Type
Sources Sought
QR Code for this opportunity

Scan to view on mobile

Share this opportunity:

Executive Summary

Executive Summary

The Department of Veterans Affairs (VA) is conducting a Request for Information (RFI) for a comprehensive Zero Trust Application Security solution focusing on Runtime Application Self-Protection (RASP) and web application security. The opportunity aims to protect 1,000-1,500 web applications across multiple programming languages and runtime environments, with an initial pilot of 100 applications.

The VA seeks a solution that provides runtime threat detection, prevention, and potential vulnerability remediation, integrating with existing security infrastructure like Palo Alto NGFWs and Splunk. The solution must support a combination of deployment models (on-prem, hybrid, cloud-based) and adhere to the latest NIST security standards.

Detailed Analysis

Detailed Analysis

Agency and Opportunity Overview

  • Agency: Department of Veterans Affairs (VA)
  • Opportunity Type: Request for Information (RFI)
  • Focus: Zero Trust Application Security
  • NAICS Code: Not specified

Objectives and Requirements

  • Runtime threat detection and prevention
  • Support for multiple programming languages:
    • Java
    • .NET
    • Node.js
    • Python
    • Ruby
    • PHP
    • Go
  • Integration capabilities with:
    • Palo Alto NGFWs
    • Splunk
    • SIEM platforms
  • Compliance: Latest NIST security standards
  • Deployment Scale: 100 applications (pilot), 1,000-1,500 applications (enterprise)

Submission Guidelines and Timeline

  • Initial Installation: 30 calendar days from contract award
  • Submission does not count towards 10-page limit
  • Proof of Concept: Must be conducted in VA's environment
  • Response Timeline: 6 business days for questions, 4 business days for responses

Evaluation and Acquisition Strategy

  • Contract Type: Not specified
  • Potential Set-Aside: To be determined based on RFI responses
  • Evaluation Criteria:
    • Technical capabilities
    • Integration potential
    • Performance
    • Compliance with security standards
    • Scalability
    • Support and maintenance offerings

Frequently Asked Questions

Ready to Add This Federal Contract Opportunity to Your Pipeline?

Get full access to opportunity tracking, teaming partners, and AI-powered insights on G2X

Track Updates

Real-time amendments and Q&A

Find Partners

Connect with prime contractors

Download Documents

Access all solicitation files

Pipeline Tracking

Manage opportunities in your G2X pipeline

View Full Opportunity on G2X