Cyber Security and Information Services

Open/public
Start date: 30-05-2016 - 00:00
End date: 17-06-2016 - 23:59

The information technology requirements of the UNFCCC secretariat are constantly evolving in response to developments in technology and changes in the activities of the UNFCCC secretariat.  The nature of the activities supported by the UNFCCC secretariat is seen as a high profile, visible target and therefore existing information systems need to be secure and new information systems need to be developed in a manner that ensure the security of the information they process.  Any security incident could cause damage to the reputation of the UNFCCC secretariat and the Kyoto Protocol mechanisms. 

In order to be able to react effectively to the evolving security threats, the UNFCCC secretariat wishes to establish one or more framework agreements for the provision of a quantity of cyber and information security services at prescribed prices or pricing conditions.  Services to be provided under the framework agreement encompass a whole range of cyber and information security services, including:

  • Network based security and secure configuration
  • Application security
  • Device configuration
  • Vulnerability and penetration testing
  • Identity and Access Management

We have organized the dialogue in focus areas. Questions on each of the focus areas can be accessed on the left side of the screen. Please respond to these questions and participate in the dialogue by submitting comments, information or further questions related to each focus area.

25. Maj 2016 - Pamela Lippert, United Nations FCCC
Questions
Terms of Reference
Skill Profile

Are you in a position to match IT security specialists from the skill sets provided in Annex 2 and if not, what would be a more appropriate structure to define them?

25. Maj 2016 - Pamela Lippert, United Nations FCCC
Questions
Terms of Reference
Work Packages

Are you in a position to derive standard work packages from the description of the Managed Services provided in Annex 3, and if not, what additions or clarifications would be necessary?

25. Maj 2016 - Pamela Lippert, United Nations FCCC
Questions
Terms of Reference
Requirement definition

Is the scope of the needed services clear?

25. Maj 2016 - Pamela Lippert, United Nations FCCC
Questions
Pricing Structure
Pricing

The award decision will be based on technical and financial criteria. Is the level of technical detail sufficient to ensure responses from vendors will be comparable and that all costs will be considered in the financial proposal?

25. Maj 2016 - Pamela Lippert, United Nations FCCC
Questions
Terms of Reference
Understanding of Requirement

Are the expectations and desired outcome of the tender clearly defined?

25. Maj 2016 - Pamela Lippert, United Nations FCCC
Questions
Pricing Structure
Methodology

What is the usual pricing methodolgy for the managed services described in the attachment?

8. Juni 2016 - Giovanna Porfirio, AlmavivA S.p.A.
Questions
Terms of Reference
Clarification on Annex 3 par2

 With reference to Annex 3, par 2. Technological Areas for Professional Services: in list of areas, is it included “Mobile App Security” ?

8. Juni 2016 - Giovanna Porfirio, AlmavivA S.p.A.
Questions
Terms of Reference
Clarification on Annex 3 par 3.4

With reference to Annex 3, par 3.4 ICT Security Expert Support during Secretariat Conferences: is the infrastructure to deliver the services (e.g. Monitoring/Detection) to be provided by contractor ?

10. Juni 2016 - Anonymous
Questions
Terms of Reference
Deadlines

So in terms of process I believe today is the last day for questions, what can be expected next and when does UNFCCC expect the completed RFP with the offer?