Cybersecurity Supply Chain Risk Management (SBOM & VEX Compliance)
Contract Overview
Solicitation details, issuing organization, response deadlines, documents, and interested companies for this government contract opportunity.
AI Contract Overview
The contract requires the development and ongoing maintenance of Software Bill of Materials (SBOM) and the generation of Vulnerability Exploitability eXchange (VEX) reports for all software deliverables to ensure full compliance with NIST standards and Executive Order 14028. This work is essential for securing the software supply chain by providing transparent, accurate documentation of software components and their associated vulnerabilities, enabling timely risk assessment and mitigation. The deliverables must meet federal cybersecurity requirements and support traceability across the software lifecycle to protect critical systems and data. This subcontract is issued by the U.S. Embassy London under the Department of State, with performance located in London. The solicitation was posted on July 13, 2026, and responses are due by August 7, 2026. The North American Industry Classification System code 541512 indicates the scope falls under custom computer programming services, specifying that the work involves specialized technical expertise in cybersecurity and software inventory management. The requirement is focused on operationalizing SBOM and VEX capabilities to meet evolving federal mandates and enhance supply chain integrity for U.S. government software assets abroad.
General Info
Agency
NAICS
Place of Performance
London, GB-LND, GBRSet-Aside
Documents
(0)AI Contract Breakdown
Uniform Contract FormatNo contract breakdown available.
Cannot generate Contract Breakdown because no documents were found from this contract's source.
Timeline
Response Deadline
Organization & Contact Information
Full Description
Similar Contracts
Same NAICS industry code
More opportunities from Department Of State → US Embassy London
Same awarding agency
