KSBCL/SYS 2 020/ Date: 22/03/2014. Notice for Time Extension. Sub: Information Security Management System Implementation

Similar documents
CONSULTANCY SERVICES FOR PREPARATION AND SUBMISSION OF REPORTS ON ERP FINANCE MODULE (CODE: MSTC-ERP-CP)

(A Government of India Enterprise) MSTC LIMITED

Indian Highways Management Company Limited Expression of Interest

Telecommunications Consultants India Ltd. (A Government of India Enterprise)

Creation of Corporate Film for India Brand Equity Foundation (IBEF)

PREQUALIFICATION DOCUMENT

Request for Empanelment (RFE) of. Facilitators

Guidelines to Consultant

TENDER FOR EMPANELMENT OF MANUFACTURERS/SUPPLIERS FOR SUPPLY & INSTALLATION OF MODULAR FURNITURE AT BANK S VARIOUS OFFICES/BRANCHES PAN INDIA

REQUEST FOR PROPOSAL

NATIONAL ZOOLOGICAL PARK MATHURA ROAD, NEW DELHI

RFP for Export Reports generation and maintenance for India Brand Equity Foundation (IBEF)

NCC Infrastructure Holdings Limited

REQUEST FOR PROPOSAL (RFP) EMPANELMENT OF EXTERNAL TRAINING INSTITUTES FOR IMPARTING ONLINE PRE- RECRUITMENT TRAINING TO AGENTS.

Request for Proposal PROFESSIONAL AUDIT SERVICES

Amalgamation Study Consultant

APPLICATION FORM FOR ENLISTMENT OF VENDORS

TRAFFIC DATA COLLECTION REQUEST FOR PROPOSALS

NATIONAL ZOOLOGICAL PARK MATHURA ROAD, NEW DELHI

Request for Information and Qualifications RFIQ No Facility Asset Management Consulting Services

REQUEST FOR PROPOSALS SERVICES FOR. [Federal Media Network Training] Prepared by. IOM Somalia. [Somalia Stabilization Initiative - SSI]

REQUEST FOR PROPOSALS. For: As needed Plan Check and Building Inspection Services

Empanelment of Graphic Design House and Printing Agency

REQUEST FOR PROPOSALS: AUDIT SERVICES. Issue Date: February 13 th, Due Date: March 22 nd, 2017

TENDER DOCUMENT FOR INVITING BIDS PREPARATION & INSTALLATION OF TEMPORARY HOARDINGS

STATE BANK OF INDIA PREMISES & ESTATE DEPARTMENT 3 RD FLOOR, LOCAL HEAD OFFICE BHADRA, AHMEDABAD PH : (079)

Design concept for Fairs and Exhibitions

Empanelment of Consultancy Firms

Empanelment of Event Management and Public Relations (PR) Organisations

Request for Expression of Interest

Expression of Interest (EOI) For LEARNING MANAGEMENT SYSTEM

Invitation of Proposals for Empanelment of Agency for 3 rd party Inspection

Request for Proposal. Mobile Application for Customer Interface. October 6 th, 2017 Procurement Contact Holly Hussey

FOR CONSULTING SERVICES FOR DISASTER RESPONSE, ENGINEERING, AND GRANT MANAGEMENT SUPPORT

Request for Proposal PROFESSIONAL AUDIT SERVICES. Luzerne-Wyoming Counties Mental Health/Mental Retardation Program

Downloaded from

Inviting Expression of Interest

GRANT WRITING ASSISTANCE FOR THE HIGHWAY SAFETY IMPROVEMENT PROGRAM CYCLE 9

Tourism Marketing Strategy

PAKISTAN CIVIL AVIATION AUTHORITY REQUEST FOR PROPOSAL ENERGY PERFORMANCE CONTRACT AT JINNAH INTERNATIONAL AIRPORT

REQUEST FOR PROPOSALS RFP# CAFTB

REQUEST FOR REGISTRATION AS SUPPLIER FOR THE PERIOD STARTING 1 ST JULY 2016 AND ENDING 30 TH JUNE 2018

Request for Proposals City School District of Albany Empire State After-School Program Coordination and Programming June 14, 2017

Request for Proposal. Parenting Education

Request for Proposals (RFP)

No National Council of Educational Research & Training Sri Aurobindo Marg, New Delhi Tender Notice

LAS VIRGENES MUNICIPAL WATER DISTRICT 4232 Las Virgenes Road, Calabasas, California 91302

Request for Proposal. Independent Living

Request for Proposal. For. Selection of Architectural Consultants. For IT CAPACITY BUILDING & TRAINING CENTRES. Madhya Pradesh

Application Form A BACKGROUND

REQUEST FOR PROPOSALS PROFESSIONAL SERVICES GRANT WRITING ASSISTANCE FOR THE ACTIVE TRANSPORTATION PROGRAM

RFP for Design, print and production of the Annual Report for India Brand Equity Foundation

REQUEST FOR PROPOSAL BID NO: DY

ITEM RATE TENDER TENDER No. 14 / / ELDB

Montgomery Housing Authority 525 South Lawrence Street Montgomery, Alabama REQUEST FOR PROPOSALS RFP WEBSITE DEVELOPMENT AND REDESIGN

County of Alpena Website Design and Development RFP

RFP FOR ENGAGMENT OF CHARTERED ACCOUNT

TENDER DOCUMENT. For Selection of Surveyor Agency for Survey works at Panagarh Industrial Park of WBIDC

Marina Strategy: Section A Request for Proposal. 1. Request for Proposal. 2. Communication. 3. Key Contacts

REQUEST FOR PROPOSAL INFORMATION SECURITY CONSULTANT FOR ILLINOIS VALLEY COMMUNITY COLLEGE PROPOSAL #RFP2013-P03

EXPRESSION OF INTEREST FOR FNGO PROCUREMENT OF OPELIP

REQUEST FOR PROPOSAL FOR AUDIT SERVICES RFP W.E. Upjohn Institute for Employment Research 300 S. Westnedge Ave. Kalamazoo, MI 49007

PART V BASIC PRINCIPLES FOR SELECTION OF CONSULTANTS

WEBEL TECHNOLOGY LIMITED

REQUEST FOR PROPOSAL For: Rhode Island Tourism Economic Impact Analysis Project Overview Background SCOPE OF WORK Program Overview and Background

EXPRESSION OF INTEREST

Appointment of Internal Auditor

Request for Proposal. Interpretation/Translation Services

SACRAMENTO REGIONAL SOLID WASTE AUTHORITY REQUEST FOR PROPOSALS FOR CONSULTING SERVICES FOR A REGIONAL GREEN WASTE PROCESSING FACILITY

REQUEST FOR PROPOSAL

SOFTWARE TECHNOLOGY PARKS OF INDIA

City of Malibu Request for Proposal

AEROSPACE AND DEFENSE AWARDS

Request for Proposal. Selection of Soft Skill Training Firms for

REQUEST FOR PROPOSALS PROFESSIONAL SERVICES FOR RAISED MEDIAN AT EL DORADO STREET. Issued by:

REQUEST FOR PROPOSAL (RFP)

ACI AIRPORT SERVICE QUALITY (ASQ) SURVEY SERVICES

5102P - Functional Consultant for PeopleSoft Financial and Supply Chain Management Release 9.2 Upgrade 1. Introduction

INTERNATIONAL CENTRE OF INSECT PHYSIOLOGY AND ECOLOGY (icipe) REQUEST FOR PROPOSALS (RFP)

CENTRAL BANK OF LESOTHO REQUEST FOR PROPOSAL

Ontario College of Trades

REQUEST FOR PROPOSAL FOR POLICE OPERATIONS STUDY. Police Department CITY OF LA PALMA

Diu Smart City Limited (DSCL) REQUEST FOR PROPOSAL

Aliah University. along with signed Application and Declaration (Annexure III).

REQUEST FOR PROPOSALS (RFP) TRIENNIAL PERFORMANCE AUDIT FOR THE MADERA COUNTY TRANSPORTATION COMMISSION

City of Coquitlam. Request for Expressions of Interest RFEI No Workforce Scheduling Software

MUSSOORIE DEHRADUN DEVELOPMENT AUTHORITY, TRANSPORT NAGAR, DEHRADUN

Jammu & Kashmir State Power Development Corporation Limited

RFP FOR PROFESSIONAL SERVICES

Professional Development and Training Services

TENDER DOCUMENT FOR PREPARATION & INSTALLATION OF POLE KIOSKS FOR VIBRANT GUJARAT 2017 SUMMIT

REQUEST FOR PROPOSAL: SAN EXPANSION & OPTIMIZATION

Request for Proposals September Review and Evaluate the Azusa Light & Water Meter Replacement Project RFP

NOTICE FOR THE EXPRESSION OF INTEREST (EOI) : (REVISED)

BID DOCUMENT. Selection of CAG Empanelled Chartered Accountant Firms for Conducting External Audit of ORMAS (Skills)

REQUEST FOR PROPOSAL. Conduct a Resident Satisfaction Survey. City of Hyattsville, Maryland

Santa Ana Arts and Culture Master Plan

STANDARD REQUEST FOR QUOTATIONS (SRQ) (CONSULTANCY AND DESIGN)

RFP for Designing Branding Creatives for India s participation at MSV Brno as Partner Country for India Brand Equity Foundation

REQUEST FOR PROPOSAL

Transcription:

KARNATAKA STATE BEVERAGES CORPORATION LIMITED (A Govt. of Karnataka Enterprise) 78, Seethalakshmi Towers, Mission Road, Bangalore-560 027. Ph: 22483638/ 39 Fax: 22483645 KSBCL/SYS 2 020/2013-14 Date: 22/03/2014 Notice for Time Extension Sub: Information Security Management System Implementation Ref: our request for proposal no. KSBCL/SYS 2-020/2013-14, Dated 07/03/2014. The last date for receipt of proposal and date & time of opening the Technical proposal in respect of ISMS implementation in KSBCL is revised as follows: Particulars Existing date Revised date Last date for receipt of proposal Date & Time of opening the Technical proposal 22-03-2014, 17.00 hrs 05-04-2014, 17.00hrs 26-03-2014, 15.30 hrs 09-04-2014, 15.30 hrs For Karnataka State Beverages Corporation Ltd., Sd- General Manager (MI) Page 1 of 8

KARNATAKA STATE BEVERAGES CORPORATION LIMITED (A Govt. of Karnataka Enterprise) 78, Seethalakshmi Towers, Mission Road, Bangalore-560 027. Ph: 22483638/ 39 Fax: 22483645 KSBCL/SYS 2 020/2013-14 Date: 07/03/2014 REQUEST for PROPOSAL INFORMATION SECURITY MANAGEMENT SYSTEM IMPLEMENTATION 1. Background: The Karnataka State Beverages Corporation Ltd., (the Corporation) (a Government of Karnataka Undertaking) is a registered Private Limited Company under the Companies Act, 1956. The Corporation has the objective of Sourcing and Distribution of Indian made liquor, Foreign liquor, Beer and Spirits. The Corporation is fully dependent on the ICT for its operations. The Corporation has undergone an Accountant General Computerization Audit in 2010-11 and Information Systems (IS) Audit during the year 2012-13. The Corporation now intends to implement a robust Information Security Management System (ISMS) based on industry/ business standard framework/ guidelines. In this regard The Corporation invites Proposals from CERT-In Empanelled Information Security Auditing Organisations only having a valid certificate with a minimum of (3) three years experience and a proven track record in projects of similar nature, who wish to carry out the ISMS implementation at the Corporation. 2. Scope of Work: The scope work is to define, develop and implement a robust, comprehensive risk based Information Security Management System (ISMS) according to industry/ business standard framework/ guidelines to the Corporation. It shall include but not be limited to the following: Conduct Gap analysis by reviewing existing security Policies & Procedures (if any) and IT infrastructure vis-a-vis industry/business standard framework/ guidelines. IT risk assessment & validation of controls covering current state assessment, Business risk assessment, Device risk assessment, Network security assessment, Application Security assessment, Internal & External vulnerability assessment, Attack & penetration testing. Draft/ framing proper IT policies, procedures, guidelines, standard operating procedures (SOP) & review. Page 2 of 8

Formulate Security Architecture, devise Business Continuity Plan (BCP) & Disaster Recovery Plan (DRP); fixing vulnerabilities, patching and hardening with proper review cycle. Conduct security training programs for top management & users at various levels. Also provide training material in the form of manuals & presentations. Provide hand holding support to KSBCL for ISMS implementation. 3. Eligibility Criteria and Technical Evaluation Criteria: The details of the eligibility criteria and Technical Evaluation Criteria are as in Annexure-A and Annexure B respectively. 4. Duration: The duration of the ISMS implementation exercise is expected to be completed in around 12 (Twelve) weeks time. 5. Proposal submission: Award of the contract resulting from this RFP will be based upon the most responsive CERT-In Empanelled Information Security Auditing Organisations whose proposal will be the most advantageous to the Corporation in terms of cost, functionality, and other factors as specified elsewhere in this RFP. Proposal shall be submitted in sealed envelopes (Technical and Commercial) to The General Manager (MI), Karnataka State Beverages Corporation Ltd., No.78, Seethalakshmi Towers, Mission Road, Bangalore-560 027, so as to reach before 1700 hrs on 22 nd Mar 2014 latest. The words Proposal for Information Security Management System (ISMS) should be clearly superscripted on the envelope. 6. Closing date: Proposals received after the 1700 hrs on 22 nd Mar 2014 will not be considered. 7. Acceptance or rejection of proposal: The Corporation reserves the right to accept or reject any or all the proposals and to annul the exercise and reject all proposals without any reasons and thereby without incurring any liability to any participant or any obligation to inform those who have expressed interest of the grounds of its action. 8. Cost of proposal: The cost of proposal and submission of proposal is entirely the responsibility of Information Security Auditing Organisations, regardless of the conduct or outcome of the process. 9. Language of proposal: All proposal and supporting documentation shall be submitted in English. Page 3 of 8

10. Proposal currency: All costs and charges related to the proposal shall be expressed in Indian Rupees only with clear mention of taxes. 11. Period of bid validity: The proposal shall be valid for a period of 90 days from the closing date for submission of the proposal. 12. Proposal submission: Information Security Auditing Organisation s proposal in response to this RFP shall be submitted in two envelops. The submitted proposals are suggested to include each of the following sections and these will form part of the Work Order. I. Technical envelope containing the following; a) Executive Summary b) Approach and Methodology c) Project Deliverables d) Project Management Approach e) Documents as in Annexure A, indexed in the same way. f) Appendix: References g) Appendix: Project Team Staffing h) Appendix: Company Overview II. Commercial envelope containing the following; a) Detailed and Itemized Pricing b) Taxes and others. 13. Proposal Ownership: The proposal and all supporting documentation submitted by the Information Security Auditing Organisation in this RFP process shall become the property of the Corporation. 14. Modification and Withdrawal of Offers: Information Security Auditing Organisations are not allowed to modify their offer when once submitted. However, they are allowed to withdraw their offers anytime before the last date and time specified for receipt of offers. No offer can be withdrawn by these organisations after the closing date and time for submission of offers. 15. Opening of offers : Offers received within the prescribed closing date and time will be opened in the presence of only the Information Security Auditing Organisations who Page 4 of 8

have submitted their offer in response to this RFP on the date and time specified by the Corporation as mentioned in the schedule of events. 16. Evaluation and comparison of bids The Corporation reserves the right to modify or relax the eligibility criteria at any time, without assigning any reason, whatsoever. Only bids from Information Security Auditing Organisations meeting the eligibility criteria and submitting complete and responsive bids will proceed to the stage for being fully evaluated and compared. 17. Clarification of Offers : To assist in the scrutiny, evaluation and comparison of offers, the Corporation may, at its discretion, ask some or all Information Security Auditing Organisations for clarifications on the offer made by them. The request for such clarifications and the Information Security Auditing Organisations response will necessarily be through email to gmmi@ksbcl.com before 15-03-2014. 18. Responsibilities: This assignment is time bound. The Information Security Auditing Organisation shall maintain confidentiality of the information received, obtained or gathered by them during the process of conducting review or during interaction with the Corporation s Personnel. The details of this assignment & any other information of KSBCL must be kept confidential & shall not be disclosed to any other third party. 19. Reporting: The Corporation should be updated on the progress made at regular intervals. 20. Indemnification: The Information Security Auditing Organisation shall, at their own expense, defend and indemnify the Corporation against any claims due to loss of data / damage to data arising as a result of any negligence during this assignment. 21. Force Majeure: The Information Security Auditing Organisation or the Corporation is not responsible for delays or non-performance of any contractual obligations, caused by war, blockage, revolutions, insurrection, civil commotion, riots, mobilizations, strikes, blockade, acts of God, plague or other epidemics, fire, flood, obstructions of navigation by ice of port of despatch, acts of Govt. or public enemy or any other event beyond the control of either party which directly, materially and adversely affect the performance of any contractual obligation. Page 5 of 8

22. Terms of Payment: No advance payment request will be considered. Only 50 % payment will be made after initial audit and submission of gap analysis subject to satisfaction of the Corporation. Balance 50% on completion of implementation of ISMS subject to satisfaction of the Corporation. 23. Jurisdiction: Notwithstanding anything contained herein above, in case of any dispute, claim and legal action arising out of this assignment, the parties shall be subject to the jurisdiction of courts at Bangalore, India only. 24. Subcontracting: The Information Security Auditing Organisation shall not subcontract or permit anyone other than its personnel to perform any of the work, service or other performance required of the Information Security Auditing Organisation under the assignment without the prior written consent of the Corporation. 25. Substitution of Team Members: During the assignment, the substitution of resources identified for the assignment will not be allowed unless such substitution becomes unavoidable to overcome the undue delay or to meet service obligations, with prior written approval/consent of KSBCL. Any change of resource should be proposed well in advance. The resource proposed to be changed should have qualification & experience similar or better to the one proposed to be changed during the course of assignment. 26. Expenses: Expenses related to travelling, boarding and lodging expenses, if any, for assignment related work will be have to be borne by the Information Security Auditing Organisation. No Out of Pocket Expenses for carrying out the assignment will be paid by the Corporation. Page 6 of 8

Annexure-A Eligibility Criteria Sl No Criteria Supporting document 1. The Information Security Auditing Organisation must be a registered partnership firm or a limited company having its registered office in India. Registered Partnership deed/company Incorporation Certificate 2. The Information Security Auditing Organisation must be a profit-making organization for the last three (03) years. 3. The Information Security Auditing Organisation should have reported a segment turnover of at least Rs. 200 lakhs in the area relating to Information Security Management System implementation in the last financial year ended March 31, 2013. 4. Information Security Auditing Organisation should have an extensive experience in implementing Information Security Management System (ISMS) implementation in India at least for the last three (03) years 5. The Information Security Auditing Organisation should have never been blacklisted / barred / disqualified by any regulator / statutory body. 6. The Information Security Auditing Organisation should be CERT-In empanelled. Furnish Balance sheet & Profit-Loss statements certified by CA. Furnish Balance sheet & Profit-Loss statements certified by CA. Information Security Auditing Organisation must list all such security services assignments undertaken by them in the last three (03) years outlining the client name, brief project description, location, project duration & date of completion. The Information Security Auditing Organisation should provide an undertaking for same on its Letterhead. Information Security Auditing Organisation should submit a Certificate for being listed on CERT- In s empanelled vendor list for the block period 2012-2015. Page 7 of 8

Annexure-B Technical Evaluation Criteria (Minimum marks to be scored to be considered for Financial Evaluation = 75marks) Sl No Criteria Point System Maximum Points Documents to be submitted 1 Number of ISMS implementation projects executed by the Information Security Auditing Organisation in India in the last three Financial years viz 2010-11,2011-12, 2012-13 3 points per successful implementation per year subject to a maximum of 5 successful implementations per year 45 Documentary evidence, along with Client contact details in the form of Work Order/Purchase Order & Completion certificate from the client. 2 Prior Demonstrable experience by the Information Security Auditing Organisation in successful Implementation of ISMS in India for at least 3 Government organizations/ Public Sector clients in the last three Financial years 2010-11,2011-12, 2012-13 3 Information Security Auditing Organisation must be have on rolls, on permanent employment basis, personnel who hold professional certifications like CISA/ CISSP/ CISM/ CEH/ CHFI. 4 Information Security Auditing Organisation must be have on rolls, on permanent employment basis one (1) ISO 27001 Lead Auditor. 5 Information Security Auditing Organisation should have ISO 27001 Certification. 5 points per successful implementation 5 points for each personnel subject to a maximum of 25 points 15 Documentary evidence, along with Client contact details in the form of Work Order/Purchase Order & Completion certificate from the client. 25 Certified Resumes of the Personnel. 5 points 5 Certified Resume of the Personnel. 10 points 10 Copy of the ISO 27001 certificate. Total 100 Page 8 of 8

2024 © careersdocbox.com Privacy Policy | Terms of Service | Feedback