RFP QuestBeta
ClosedStage · contract

Cranfield University

Website Penetration Test

IT ServicesCPV 72222300
ValueValue not published
Deadline24 Feb 2016
Published15 Feb 2016
RegionEast of England
Timeline
Published 15 Feb 2016ClosedCloses 24 Feb 2016
Match for your company
Sign up free to see how well this tender matches your company — the score, the signals that align, and where the gaps are.
The brief

The overall aim of the project is to independently measure the effectiveness of security controls within the website, from an external perspective, outline any vulnerabilities and recommend improvements.

Specific objectives are: • Assess the level of exposure that the site could present • Assess whether access levels can be escalated (known as privilege escalation) • Assess whether an unauthorised user can modify the site contents for other users • Assess whether any forms on the site allow unauthorised modification of data outside their intended purpose (i.e.

SQL Injection attacks) • Assess the level of this exposure from an external attack (in regards to the protection of data held in the system) to ensure that security controls and coding controls are fit for purpose • Measure the degree of compliance with good practice • Identify actions that will reduce any identified risks to an acceptable level • Recommend improvements in security controls to prevent unauthorised access and misuse of the service (i.e. obtaining data of registered users of the site)

Key requirements

What the supplier must deliver

01

Assess the level of this exposure from

Assess the level of this exposure from an external attack (in regards to the protection of data held in the system) to ensure that security controls and coding controls are fit for purpose.

Derived from the notice text — always confirm against the original documents.

Buyer intelligence

Make the case to bid

Reveal who to approach at Cranfield University, and generate a go-to-market strategy from their news, accounts and people.

Source & provenance
OCID
feb75ee3-a9bc-4dbf-bab8-2769e5aa6dc0
Stage
contract · Contract
Source
Contracts Finder
Buyer ref
246/SG/IS/WEB/FEB2016
View the original notice on Contracts Finder

Contains public sector information licensed under the Open Government Licence v3.0. Source data © Crown copyright.

Market context

Who wins this kind of work

The suppliers and buyers around this opportunity — drawn from official award data. Drag to orbit; click a node to explore.

Top suppliers & buyers in IT Services

Assembling the market network…

Cranfield University’s tender network

Assembling the network…

Also open now

Similar open tenders

Website Design

University of Exeter

Closes 16 Jul 2026IT Services
£10kValue

In-Service Inspection and Testing of Electrical Equipment

Renfrewshire Council

Closes 7 Aug 2026Engineering & Architecture
Value not publishedValue