GovScope GovScope

Brief

Find Evil LLC

USAC RFP: Penetration Testing as a Service

Decision

Pursue the USAC PTaaS opportunity strictly as a subcontractor.

While Find Evil LLC offers elite DFIR and multi-cloud forensics expertise, the solicitation focuses heavily on Penetration Testing as a Service. A lack of federal past performance and pending socio-economic certifications limit competitive standing for a prime bid.

Case workspace - 5 views

Share
Export

Current view

PDF documentMarkdown fileWord document

Core package

PDF package (.zip)Markdown package (.zip)Word package (.zip)

Why this call

The recommended path makes sense, but it still needs specific partner, proof, or execution validation before it is ready to act on.

  1. The core requirement is Penetration Testing as a Service (PTaaS), including ethical hacking and web application testing.
  2. Federal past performance is typically expected to win a prime federal contract of this scope.
  3. The RFP explicitly requires Contractor Staff to be on-site at USAC Headquarters in Washington, DC at least 2 days per week.

Next capture moves

  1. Record No Go as Prime; pursue only as subcontractor.
  2. Identify established federal cybersecurity contractors likely to bid on USAC IT-26-027.
  3. Produce a one-page capability-to-scope map that shows where the company fits and where it does not.

Decision watchouts

Why not prime

Unresolved On-Site Hybrid Work Requirement

On-Site Hybrid Work Requirement is still unresolved in the validated evidence set.

Prime-delivery mismatch

The current evidence points to a gap between the solicitation's PTaaS program shape and the company's documented prime-delivery proof.

Capability Misalignment

The core requirement is Penetration Testing as a Service (PTaaS), including ethical hacking and web application testing.

Still to verify

Business-status discrepancy

Profile claims active 8(a)/HUBZone/SDB, but Capability Statement says Pending/Eligible

Opportunity

USAC RFP: Penetration Testing as a Service

Penetration Testing as a Service (PTaaS) across 16-20 core systems, including ethical hacking, web app, and API testing.

Agency / customer
USAC (FCC-associated)
Due date
2026-03-30
Place of performance
Washington, DC 20005

Company

Find Evil LLC

Core capabilities
Digital Forensics and Incident Response (DFIR), Compromise Assessment, Cloud Forensics
Strengths
Elite DFIR capabilities, Multi-cloud forensics
Major gaps
Lack of federal past performance, No DC-based personnel, Pending socio-economic certifications
Business statuses
Small business, Profile claims active 8(a)/HUBZone/SDB, but Capability Statement says Pending/Eligible, 8(a) is claimed in the canonical company profile but not corroborated in SBA summary, HUBZone is claimed in the canonical company profile but not corroborated in SBA summary

Review the full analysis and requirements

Open Capture Assessment View Requirements Matrix