The information technology requirements of the UNFCCC secretariat are constantly evolving in response to developments in technology and changes in the activities of the UNFCCC secretariat. The nature of the activities supported by the UNFCCC secretariat is seen as a high profile, visible target and therefore existing information systems need to be secure and new information systems need to be developed in a manner that ensure the security of the information they process. Any security incident could cause damage to the reputation of the UNFCCC secretariat and the Kyoto Protocol mechanisms.
In order to be able to react effectively to the evolving security threats, the UNFCCC secretariat wishes to establish one or more framework agreements for the provision of a quantity of cyber and information security services at prescribed prices or pricing conditions. Services to be provided under the framework agreement encompass a whole range of cyber and information security services, including:
We have organized the dialogue in focus areas. Questions on each of the focus areas can be accessed on the left side of the screen. Please respond to these questions and participate in the dialogue by submitting comments, information or further questions related to each focus area.
Are you in a position to match IT security specialists from the skill sets provided in Annex 2 and if not, what would be a more appropriate structure to define them?
Are you in a position to derive standard work packages from the description of the Managed Services provided in Annex 3, and if not, what additions or clarifications would be necessary?
Is the scope of the needed services clear?
The award decision will be based on technical and financial criteria. Is the level of technical detail sufficient to ensure responses from vendors will be comparable and that all costs will be considered in the financial proposal?
Are the expectations and desired outcome of the tender clearly defined?
What is the usual pricing methodolgy for the managed services described in the attachment?
With reference to Annex 3, par 2. Technological Areas for Professional Services: in list of areas, is it included “Mobile App Security” ?
With reference to Annex 3, par 3.4 ICT Security Expert Support during Secretariat Conferences: is the infrastructure to deliver the services (e.g. Monitoring/Detection) to be provided by contractor ?
So in terms of process I believe today is the last day for questions, what can be expected next and when does UNFCCC expect the completed RFP with the offer?