No National Council of Educational Research & Training Sri Aurobindo Marg, New Delhi Tender Notice

Similar documents
ISO 9001:2008 TENDER FOR SUPPLY, INSTALLATION, CONFIGURATION & TESTING RACK SERVER. Tender No. - NTSC/WST/Software Purchase/ /92

ITEM RATE TENDER TENDER No. 14 / / ELDB

SOFTWARE TECHNOLOGY PARKS OF INDIA

Advertisement/ Bid Inviting Notice

Request For Proposal for Deployment of Hardware, Software and Manpower for OPD Management at District Head Quarter Hospital, Puri.

REQUEST FOR PROPOSAL OF EMPANELMENT & ANNUAL RATE CONTRACT OF SUPPLIERS FOR STATIONERY ITEMS

Telecommunications Consultants India Ltd. (A Government of India Enterprise)

Empanelment of Consultancy Firms

PRE-QUALIFICATION NOTICE FOR EMPANELMENT OF ARCHITECTS/CONSULTANTS

KSBCL/SYS 2 020/ Date: 22/03/2014. Notice for Time Extension. Sub: Information Security Management System Implementation

TENDER NOTICE FOR ENGAGEMENT OF REPUTED AGENCY FOR PROVIDING NURSING & PARAMEDICAL STAFF ON CONTRACT BASIS

NOTICE INVITING TENDERS FOR

West Bengal State University

TENDER FOR EMPANELMENT OF MANUFACTURERS/SUPPLIERS FOR SUPPLY & INSTALLATION OF MODULAR FURNITURE AT BANK S VARIOUS OFFICES/BRANCHES PAN INDIA

REQUEST FOR PROPOSAL(RFP) FOR EMPANELMENT OF ARCHITECT/INTERIOR DESIGNER

Empanelment of Graphic Design House and Printing Agency

Tender Notice No: 4/2018 dated: 17/07/2018

SITC of RFID Car Parking System including Manpower support and CAMC भ रत य वम नपत तन प र धकरण AIRPORTS AUTHORITY OF INDIA CHENNAI AIRPORT, CHENNAI

Indian Institute of Information Technology, Design and Manufacturing, Kurnool (IIITDM Kancheepuram Campus) Chennai Tender Document.

STATE BANK OF INDIA PREMISES & ESTATE DEPARTMENT 3 RD FLOOR, LOCAL HEAD OFFICE BHADRA, AHMEDABAD PH : (079)

IICA-Centre of Business Innovation REQUEST FOR PROPOSAL STUDY OF INCUBATION BY CORPORATE IN INDIA. Indian Institute of Corporate Affairs

Empanelment of Event Management and Public Relations (PR) Organisations

NOTICE FOR THE EXPRESSION OF INTEREST (EOI) : (REVISED)

STATE BANK OF INDIA, ITS DEPARTMENT, HYDERABAD LHO. REQUEST FOR PROPOSALS (RFP)

APPLICATION FORM FOR ENLISTMENT OF VENDORS

Food Safety and Standards Authority of India

ODISHA MADHYAMIKA SHIKSHA MISSION. N-1/9, NAYAPALLI, PO-SAINIK SCHOOL, BHUBANESWAR Phone No ,

NATIONAL ZOOLOGICAL PARK MATHURA ROAD, NEW DELHI

Tender Notice For Search Engine Optimization of Website

ADMINISTRATION DEPARTMENT

Office of The Chief District Medical & Public Health Officer, Puri.

Institute of Leadership Development

NCC Infrastructure Holdings Limited

ADMINISTRATION DEPARTMENT

EMPANELMENT OF NEWS PAPER ADVERTISING AGENCIES FOR BANK S ADVERTISEMENT IN THE STATE OF KARNATAKA

FOR SUPPLY & PROVIDING LOCKER CABINETS OF DIFFERENT CONFIGURATION FOR STATE BANK OF INDIA BRANCHES AT DIFFERENT LOCATIONS IN THE STATE OF TELANGANA

Request for Proposal (RFP) For. Selection of Vendor for Maintenance of Computer Systems under Annual Maintenance Contracts for Delhi and NCR Area

AIRPORTS AUTHORITY OF INDIA ENGINEERING WING(ELECTRICAL) SILCHAR AIRPORT

RFP for Mobile Application for IBEF. Request for Proposal [RFP]

RFP FOR ENGAGMENT OF CHARTERED ACCOUNT

NATIONAL ZOOLOGICAL PARK MATHURA ROAD, NEW DELHI

Government of Bihar. STATE HORTICULTURE MISSION Barrack No. 13, Main Secretariat, Patna

Department of Biotechnology Ministry of Science & Technology Government of India

HEAD OFFICE, THIRUVANANTHAPURAM TENDER NOTICE. Tender No.: KFC/ TDR 1/BD 1 /14-15 Dt:

MINISTRY OF HEALTH & FAMILY WELFARE, GOVERNMENT OF INDIA (Department of AYUSH) Tender. For

(Q) Memo no 3 2 /OREDA '' Dated JCI ' Dated jai ^ 12,t^ Expression of Interest

a) For Electrical Safety Audit

Faculty of Engineering and Technology Jadavpur University NATIONAL COMPETITIVE BIDDING FOR PROCUREMENT OF EQUIPMENT

NOTICE INVITING EXPRESSION OF INTEREST

Jammu & Kashmir State Power Development Corporation Limited

Call for Empanelment of Consultants for Preparation of District Renewable Energy Plans

AIRPORTS AUTHORITY OF INDIA. NIT No. : AAI/AT/AGM(EE)/e-NIT-07/ Dt. 14/09/2017 NOTICE INVITING e-tender (3 Covers Open Tender)

HINDUSTAN AERONAUTICS LIMITED AIRCRAFT DIVISION VIMANAPURA POST BANGALORE KARNATAKA- INDIA

Creation of Corporate Film for India Brand Equity Foundation (IBEF)

Invitation of Proposals for Empanelment of Agency for 3 rd party Inspection

NORTH EASTERN REGIONAL AGRICULTURAL MARKETING CORPORATION LTD. (NERAMAC) (A GOVERNMENT OF INDIA ENTERPRISE) EXPRESSION OF INTEREST FOR

Request for Proposal. For. Selection of Architectural Consultants. For IT CAPACITY BUILDING & TRAINING CENTRES. Madhya Pradesh

Downloaded from

EMPANELMENT OF MODULAR FURNITURE MANUFACTURERS.

Directorate, Medical Education and Research, Mumbai -1. EOI Notice

Selection of Creative Agency For Graphic Design and Art Work for Advertisement & Promotion

Aliah University. along with signed Application and Declaration (Annexure III).

Punjab & Sind Bank (A Government of India undertaking)

Inviting Expression of Interest

RESPONSE TO QUERIES Request for Proposal for Empanelment of Consultants for Appraisal of Detailed Project Reports (DPRs) for Industrial Projects

: 2018_AAI_9051_1) NOTICE INVITING

Ref : ACASH/Exhb/ / Date :

Advt. No.A.12025/2/2015-Admn.II NATIONAL INSTITUTE OF HEALTH AND FAMILY WELFARE Baba Gang Nath Marg, Munirka, New Delhi VACANCY NOTICE

LIFE INSURANCE CORPORATION OF INDIA Divisional Office, 2 nd floor Jeevan Prakash Building, G.T.Road, Masoodabad, Aligarh

Request for Proposal. Equip, Operate and Manage HEMODIALYSIS UNIT. ESIC Super Speciality Hospital, Sanathnagar. Hyderabad, Andhra Pradesh

EXPRESSION OF INTEREST

TENDER DOCUMENT FOR PREPARATION & INSTALLATION OF POLE KIOSKS FOR VIBRANT GUJARAT 2017 SUMMIT

RFP for Export Reports generation and maintenance for India Brand Equity Foundation (IBEF)

to up to 16:00 hrs up to 16:00 hrs. Downloading of the documents Last date of submission of the bid

EXPRESSION OF INTEREST

Evaluation of Information Technology Systems & Organization

SURAT SMART CITY DEVELOPMENT LTD.

Interested parties may submit their EoI along with technical proposal on or before 22 nd February, 2016, hrs, IST to GM (CSR) IIFCL.

Department of Science & Technology Terms & Conditions of the Grant

STATE BANK OF INDIA EMPANELMENT OF AUDITORS FIRE SAFETY AUDITOR ELECTRICAL SAFETY AUDITOR TABLE OF CONTENTS: IMPORTANT DATES:

Ref : ACASH/Exhb/ / Date :

NATIONAL BRAIN RESEARCH CENTRE

Notice Inviting Expression of Interest (EOI) for Empanelment of Consultants for Engineering & Allied Services

REQUEST FOR PROPOSAL (RFP) EMPANELMENT OF EXTERNAL TRAINING INSTITUTES FOR IMPARTING ONLINE PRE- RECRUITMENT TRAINING TO AGENTS.

MUSSOORIE DEHRADUN DEVELOPMENT AUTHORITY, TRANSPORT NAGAR, DEHRADUN

CORRIGENDUM 1. Request for Proposal (RFP) for Project Management Consultancy Services

Expression of Interest (EOI) For LEARNING MANAGEMENT SYSTEM

The tenderer should also furnish the following information in Cover-1 (Prequalified Bid):

EXPRESSION OF INTEREST (EOI).

Solar Energy Corporation of India Limited New Delhi

Contractors who are desirous of tendering for above work and fulfills the Following requirements shall be eligible to apply:

Bank of Baroda Lucknow NOTICE FOR PRE-QUALIFICATION FOR ENGAGEMENT OF CONTRACTOR

Notice Inviting Tender

APPLICATION FORM FOR PERMISSION FOR SETTING UP COMMUNITY RADIO STATION (Seven Copies to be submitted)

Department of Civil Engineering - CHENNAI

EXPRESSION OF INTEREST (EOI) FOR COORDINATION OF SKILL DEVELOPMENT PROGRAMME

PR Number PR Date Indenter Department Sr.Sup.(HR) H.R. Not Transferable. Security Classification:

THE INSTITUTE OF CHARTERED ACCOUNTANTS OF INDIA (ICAI) APPLICATION FOR

REQUEST FOR PROPOSAL. for Empanelment of suppliers for Rate Contract of Printing & Stationery Items

No. F. 7-2/2017/LDE/R-I NATIONAL COUNCIL OF EDUCATIONAL RESEARCH & TRAINING SRI AUROBINDO MARG, NEW DELHI NOTICE

Transcription:

No National Council of Educational Research & Training Sri Aurobindo Marg, New Delhi-110016 Dated: 26 November, 2012. Tender Notice Sealed Tenders are invited for Security Auditing of web application for NTSE Scholarship. The National Council of Educational Research & Training (NCERT) is an autonomous body under the Ministry of HRD. The NCERT is interested in inviting limited sealed tender for Security Audit of web application for NTSE Scholarship from agencies empanelled by CERT-In. Sd/- Prof.&Head ESD, NCERT

Tender Document For Security audit of Web Based application for NTSE Scholarship Last date for Submission of Tender Tender Opening date : 03 December 2012, 3.00 PM : 03 December 2012, 3.30 PM Educational Survey Division National Council of Educational Research & Training Sri Aurobindo Marg, New Delhi 110 016

Educational Survey Division National Council of Educational Research & Training Sri Aurobindo Marg, NEW DELHI 110 016 Subject:- Tender for conducting the Security Audit of NTSE Scholarship Website from CERT-in empanelled agencies. NCERT invites sealed limited tenders for Security Audit Services of the web based application for NTSE scholarship, NCERT, Delhi from agencies empanelled by CERT-in. NTSE Scholarship Website located at www.ntsescholarship.com The Tender should reach to this office by 3-Dec-2012 at 3.00 PM by post or personally drop in the tender box placed in Educational Survey Division, Zakir Husain Block, 4 th Floor, Room No. 14, NCERT Sri Aurobindo Marg, Delhi which will be opened on 03-Dec-2012 at 03.30 PM by the tender committee in Educational Survey Division. The detail terms & conditions as Annexure-I and scope of work as Annexure-II are attached with this tender document and can be obtained from NTSE-2 Section on any working day from 10.00 A.M. to 4 P.M on or before 03-12-2012 at 11.00 AM free of cost. The same can be downloaded from the NCERT Website i.e. www.ncert.nic.in. The tendering firm shall have to attach earnest money amounting to Rs. 5,000/- in the form of DD/Pay Order/Bond in favour of Secretary NCERT, New Delhi with the tender application, failing which tender will be rejected. In case the date of opening of tender is declared holiday, tender shall be opened in next working day, but tender box will be sealed on schedule date and time.

Annexure-I TERMS & CONDITIONS 1. The web application will be hosted at NIC server after Security audit, so the security audit certificate should be in compliance with the NIC standards. 2. The envelope shall be prominently marked on top with "COMMERCIAL BID FOR CONDUCTING THE SECUIRTY AUDIT OF NTSE scholarship Web Application. The envelop should be properly sealed. 3. The tenders should reach this office by on 03-Dec-2012 at 3.00 PM. 4. The price bids of those firms will be opened who fulfills the terms and conditions. 5. Only those Organizations/firms registered with the CERT-in-empanelled are eligible for submitting the tender. 6. The tendering firm/organization will have to submit earnest money amounting to Rs.5,000/- in the form of A/C Payee demand draft/bankers Cheque, FDR, or Bank guarantee from a nationalized Bank in acceptable form, in favour of Secretary, NCERT, New Delhi, payable at Delhi. No tender will be accepted without requisite EMD. In the absence of earnest money, the tender shall be rejected. Earnest money shall carry no interest. 7. Incomplete or conditional tender will not be entertained. 8. Optional tender will not be accepted. 9. No tender will be accepted by hand and tender received after closing date and time will not be entertained. 10. The first round of security audit report should be submitted to NCERT within 15 days after the work order issued by NCERT and consecutive round report if any should be submitted within 5 working days. 11. In case, the firm does not complete the audit work within the stipulated period from the date of confirmed work order, EMD submitted by the firm will be forfeited. 12. The tenderer can remain present himself /herself or his/her authorized representative at the time of opening the tender. Only authorized representative will be allowed to attend the meeting of the Tender Committee. They should also bring an undertaking on the letter head of the firm/organization that any decision/negotiation taken by their representative shall be acceptable to the firm.

13. All the firms/organization participating in the Tender must submit a list of their owners/partners etc. along with their contact numbers and a Certificate to the effect that the firm/organization is neither blacklisted by any Govt. Department nor any Criminal Case is registered against the firm or its owner or partners anywhere in India be attached with this tender. Any firm/organization blacklisted by a Govt./Semi Govt. Deptt. shall not be considered for this tender and tender will be rejected straightway. 14. The Tender Committee reserves the right to reject any tender or negotiate with L-1 firm/organization. 15. The payment will be made only after submitting the final security audit certificate on completion of Audit of website. No advance payment will be made. 16. No claim for interest in case of delayed payment will be entertained by the Division. 17. A copy of terms & conditions attached as Annexure-I and Scope of work attached as Annexure-II duly signed by the tenderer, as a token of acceptance of the same should be attached along-with the tender. 18. The Tender Committee reserves the right to relax any terms and condition in the Govt. interest, with the approval of competent authority. 19. All disputes are subject to the jurisdiction of the Courts in the N.C.T. of Delhi. 20. If the firm/organization wants to know about the size, i.e. of the Website before submitting the tender, they can contact this office at Sr. System Analyst, Computer centre, Room No. 6, Ground floor, Zakir Hussain Block, Delhi on any working day between 11 AM to 4 PM. 21. Firms/Organization will also have to assist in patching vulnerabilities if any after security audit for the platforms i.e. Dot net/sql server at application level. NOTE :- (A) DOCUMENTS REQUIRED TO BE ATTACHED WITH BID IN THE FOLLOWING ORDER :- 1. E.M.D. in favour of Secretary, NCERT, Delhi amounting Rs. 5,000 /-. 2. Sale Tax/VAT Registration Certificate along with Tin No.. 3. Latest Sales Tax/Vat Clearance Certificate or copy of latest tax deposit challan. 4. Copy of authorization with CERT-in empanelment. 5. Copy of terms and conditions duly signed with seal of the firm/organization, in token of acceptance of terms and conditions.

6. All the firms participating in the Tender must submit a list of their owners/partners etc. and a Certificate to the effect that the firm is neither blacklisted by any Govt. Department nor any Criminal Case is registered against the firm or its owner or partners anywhere in India. 7. All Other supporting documents as required in the tender shall be attached. B. COMMERCIAL BID should be in the format given at Annexure-III and it should contain price only and no other documents shall be enclosed. SIGNATURE WITH SEAL OF TENDERER NAME IN BLOCK LETTERS: Company Name with Full Address:

Annexure-II Scope of Work for the Security Audit Primary objective of the security audit exercise is to identify major vulnerabilities of the NTSE web application from internal and external threats. Once the threats are identified and reported the auditors should also suggest possible remedies. The exercise should also undertake a review of the Information security policy document and suggest additions and deletions in light of the implementation of NTSE Scholarship website. The website is hosted at www.ntsescholarship.com Technical details of the web application :- Front end: Microsoft.Net with c# (approximately 130 Dynamic Pages ) Back end: Microsoft SQL Server 2008 R2 To ensure that the web based application for NTSE scholarship is free from the above vulnerabilities the audit exercise will need to undertake the following activities: 1. Identify the security vulnerabilities, which may be discovered during the NTSE scholarship website security audit including cross-site scripting, Broken links /Weak session management, Buffer Overflows, Forceful browsing, Form/ hidden field manipulation, Command injection, Insecure use of cryptography, Cookie posing, SQL injection, Server miss-configuration, Well known platform vulnerabilities, Errors triggering sensitive information, leak etc. 2. Identification and prioritization of various risks to the NTSE web application; 3. Identify remedial solutions and recommendations for making the web application secure. 4. Undertake user profiling and suggest specific access methodologies and privileges for each category of the users identified. The auditors will have to carry out an assessment of the vulnerabilities, threats and risks that exist in NTSE scholarship website through Internet Vulnerability Assessment and Penetration Testing. This will include identifying remedial solutions and recommendations for implementations of the same to mitigate all identified risks, with the objective of enhancing the security of the system. The bidder will also be expected to propose a risk mitigation strategy as well as give specific recommendations to tackle the residual risks emerging out of identified vulnerabilities assessment. The NTSE web application should be

audited as per the CERT-in Standards. The auditor is expected to submit the final audit report after the remedies/recommendations are implemented and confirmed with retest. After the report is submitted by the auditors, NCERT will be expected to remove all the vulnerabilities. The Audit Firm/company has to submit a summary compliance report at the end of the assessment phase and the final Report will certify the NTSE scholarship application in compliance with the NIC standards. Deliverables and Audit Reports The successful bidder will be required to submit the following documents in printed format (2 copies each) after the audit of the NTSE scholarship application. (i) (ii) (iii) (iv) (v) A detailed report with security status and discovered vulnerabilities weakness and mis-configurations with associated risk levels and recommended actions for risk mitigations. Summary and detailed reports on security risk, vulnerabilities and audit with the necessary counter measures and recommended corrective actions to be undertaken by NCERT. The final security audit certificate for the NTSE scholarship application should be in compliance with the NIC standards. All deliverables shall be in English language and in A4 size format. The vendor will be required to submit the deliverables as per terms and conditions of this document. SIGNATURE WITH SEAL OF TENDERER NAME IN BLOCK LETTERS: Company Name with Full Address:

Annexure-III COMMERCIAL BID (On Company Letter Head) To Head Educational Survey Division National Council Of Educational Research & Training Sri Aurobindo Marg, New Delhi 110 016 Date: Subject:- Tender for conducting the Security Audit of NTSE Scholarship Website from CERT-in empanelled agencies. Sl.No. Description Price Remarks 1. Security Audit of NTSE Scholarship Website available at www.ntsescholarship.com Total Note: Taxes if any may be given in Remark Column SIGNATURE WITH SEAL OF TENDERER NAME IN BLOCK LETTERS : Company Name with Full Address:

2024 © careersdocbox.com Privacy Policy | Terms of Service | Feedback