Matthew Nelson
The U.S. Navy issued a request for information on commercial off-the-shelf tools that have potential to support an online network used to store and analyze data on system vulnerabilities, FedScoop reported Friday.
According to the RFI notice, the military service is conducting market research into COTS and non-developmental items to address technical requirements for its Vulnerability Remediation Asset Manager.
VRAM is a web-based system that operates with the Department of Defense's Assured Compliance Assessment Solution.
The Navy is looking to equip the network with applications for listing targeted vulnerabilities by priority, parsing large files and modifying user permissions.
The branch also wants commercial tools that would maintain scan data from DoD's ACAS platform for up to 90 days and monitor compliance with cyber directives, fleet advisory messages and command, control, communications, computers, and intelligence system updates.
Interested vendors can submit input through June 16.
