Tender Title: Vulnerability and Penetration Testing Services

Reference Number: GEM/2025/B/6147403

Issuing Authority:

Department of Electronics and Information Technology, Ministry of Electronics and Information Technology

Scope of Work and Objectives

The primary objective of this tender is to procure comprehensive vulnerability and penetration testing services. These services are essential for assessing the security posture of digital infrastructure, identifying potential vulnerabilities, and ensuring that the systems are robust against cyber threats. The successful bidder will be responsible for conducting both external and internal penetration tests, providing analysis on secure configurations, and reporting on discovered vulnerabilities with suggested remediation strategies.

Eligibility Criteria

To qualify for this tender, bidders must meet the following eligibility requirements:

• Must be a registered entity with relevant experience in providing vulnerability and penetration testing services.
• Must demonstrate expertise and possess adequate resources to fulfill the requirements of the tender.
• A proven track record in delivering similar services successfully will be highly regarded.

Technical Requirements

Bidders are required to provide detailed information on the following technical specifications:

• Methodologies to be used for conducting penetration tests.
• Tools and technologies that will be employed during testing.
• Reporting formats for vulnerability analysis, including priority levels and remediation guidance.
• Compliance with industry standards and frameworks such as OWASP and NIST.

Financial Requirements

All bidders must submit a detailed financial proposal along with their tender submission. This proposal should outline the cost structure for the vulnerability and penetration testing services, including any potential additional costs for follow-up assessments or remediation consulting.

Document Submission Details

Bidders are required to submit their tender documents electronically, adhering to the specified formats in the guidelines. Submissions must include:

• Completed tender forms.
• Technical and financial proposals.
• Proof of registration and necessary certifications.
• Any additional supporting documents as specified.

Special Provisions

This tender provides benefits for Micro, Small, and Medium Enterprises (MSEs), promoting inclusivity in the bidding process. Startups are also encouraged to participate, reflecting the Ministry’s commitment to fostering innovation and supporting new business ventures.

Evaluation Process

The evaluation of bids will be conducted based on predefined criteria that include technical proficiency, financial viability, and compliance with specified terms. The evaluation committee will assess the submissions, followed by possible interviews or presentations from shortlisted candidates before final selection.

Delivery Locations

Services will be required at designated locations as specified by the issuing authority, generally encompassing various departmental premises under the Ministry's jurisdiction.

Contact Information

For any inquiries regarding the tender, please reach out to the contact point provided in the official documents. Ensure that all queries are directed through the specified communication channels to facilitate efficient response.

Additional Information

The successful bidder will be expected to adhere to strict compliance requirements including, but not limited to, quality assurance standards and data protection regulations. Regular updates and communication will be mandatory throughout the project lifecycle, ensuring alignment with departmental guidelines.