Government Contract | Maryland
HP Fortify Static Code Analyzer (SCA)

Find Open Contracts in the Architecture and Engineering Industry

Find Contracts Now

Bid Information

Bid Alert No: 00000400976

Bid Title: HP Fortify Static Code Analyzer (SCA)

Agency Bid No. Title: MDM0031023357

Received Date: 10/23/2015

Close Date: 10/27/2015

Purchase Type: Not Stated

Delivery Point: Baltimore, Maryland

Delivery Date: Not Stated

Special Notices: Bidder Preregistration


Specifications include, but are not limited to:HP Fortify Source Code Analyzer (SCA) is a set of software security analyzers that search for violations of securityspecific coding rules and guidelines in a variety of languages. HP Fortify SCA enables the analyzers to pinpoint and prioritize violations so that fixes can be performed quickly and accurately. The analyzed information produced by SCA will assist the MHBE deliver more secure software, as well as making security code reviews more efficient, consistent, and complete Using HP Fortify SCA will provides results of security specific coding violations within 24 to 72 hours, providing detailed vulnerability reports which are used to provide documentation and evidence for MHBEs information security program.Consistent with the provisions of the Federal Information Security Management Act (FISMA), the information documented in MHBEs System Security Plan requires that MHBE establishes a Risk Management Framework to assist MHBEs efforts to continuously monitor risk and to ensure regulatory compliance of the M H BE solution. This framework is based on the foundational guidance provided by FIPS 199, FIPS 200 standards. As part of this framework, the MHBE is required to conduct a security risk assessment on an annual basis and routinely as part of continuous monitoring. The RA-5 Vulnerability Scanning (Moderate) controls as documented in the Minimum Acceptable Risk Standards for Exchanges (MARS-E) System Security Plan requires the organization to employ vulnerability scanning tools that include the capability to readily update the list of information system vulnerabilities scanned within every 90 days and when new vulnerabilities potentially affecting the system/applications are identified and reported.HP Fortify for Source Code Vulnerability Scanning will assist developers and security teams perform code reviews, enumerating software flaws, and improper coding practices and meet regulatory commitments.

Bid Related Documents

Download Document

Product Codes: 20890, 92045

Agency Information

Issuing Agency: State of Maryland - Department of Health and Mental Hygiene

State: Maryland

Agency Type: State and Local

Contact: Michelle Compton 750 E. Pratt Street, 16th Floor, Baltimore, Maryland, 21202

Phone: 410-547-8152




FREE Market Analysis

Get a FREE 90-Day Market Analysis and see the bids you’ve been missing