Provision of a Security Incident and Event Management System (SIEM) and a Managed SOC Service operating 24x7x365 and capable of meeting Ervia’s needs and include the following capabilities: 24*7*365 Monitoring and Alerting Service, Event and Data Collection, Dashboard and Reporting, Event Correlation, User and Entity Analytics, High Volume Log Management, User Monitoring, Application Monitoring, Real Time Data Collection, Incident Management, Threat Intelligence, OT and Telemetry capability, Forensic Investigation Scope of contract: includes: Provision, implementation and support of a scalable solution for initially up to 6 000 events per second (EPS) and or equivalent IP / Volume based licensing model with potential to grow significantly over subsequent number of years and incorporating additional systems (through inclusion of existing or future new systems). (As per PQQ Document).
Deadline
The time limit for receipt of tenders was 2018-10-02.
The procurement was published on 2018-08-30.
Object Scope of the procurement
Title: Enterprise Security Operations Managed Service
18/021
Products/services: Security software package📦
Short description:
“Provision of a Security Incident and Event Management System (SIEM) and a Managed SOC Service operating 24x7x365 and capable of meeting Ervia’s needs and...”
Short description
Provision of a Security Incident and Event Management System (SIEM) and a Managed SOC Service operating 24x7x365 and capable of meeting Ervia’s needs and include the following capabilities: 24*7*365 Monitoring and Alerting Service, Event and Data Collection, Dashboard and Reporting, Event Correlation, User and Entity Analytics, High Volume Log Management, User Monitoring, Application Monitoring, Real Time Data Collection, Incident Management, Threat Intelligence, OT and Telemetry capability, Forensic Investigation Scope of contract: includes: Provision, implementation and support of a scalable solution for initially up to 6 000 events per second (EPS) and or equivalent IP / Volume based licensing model with potential to grow significantly over subsequent number of years and incorporating additional systems (through inclusion of existing or future new systems). (As per PQQ Document).
Provision of a Security Incident and Event Management System (SIEM) and a Managed SOC Service operating 24x7x365 and capable of meeting Ervia’s needs and include the following capabilities:
— 24*7*365 Monitoring and Alerting Service,
— Event and Data Collection,
— Dashboard and Reporting,
— Event Correlation,
— User and Entity Analytics,
— High Volume Log Management,
— User Monitoring,
— Application Monitoring,
— Real Time Data Collection,
— Incident Management,
— Threat Intelligence,
— OT and Telemetry capability,
— Forensic Investigation.
Scope of contract includes:
— Provision, implementation and support of a scalable solution for initially up to 6 000 events per second (EPS) and / or equivalent IP / Volume based licensing model with potential to grow significantly over subsequent number of years and incorporating additional systems (through inclusion of existing or future new systems),
— The SIEM solution must be capable of providing a secure means of integration with the relevant Ervia, Irish Water and Gas Networks Ireland systems (IT and OT Systems).Real-time collection and analysis of events from host systems, security devices and network devices. The solution must use global energy sector threat intelligence to identify existing and emerging threats,
— Ervia have a requirement for a Siem technology implementation to be co located between Ervia and Supplier premises. In addition to the SIEM solution Ervia wishes to engage with the supplier to provide a managed SOC service for which the operating model should be a hybrid approach which leverages global knowledge and skilled persons for augmenting the in house Security Operations team and help to drive the maturing of Ervia security threat intelligence capability and incident response / resolution’,
— It must be fully compatible with existing Ervia IT and OT systems and technologies, and be fully scalable (for future expansion if necessary),
— Provision of a managed SOC service to configure, tune, and respond to relevant severity events, this response will include an initial SIEM based investigation and alerting of events,
— The provider must have a dedicated Security Operations Centre staffed 24/7/365 by appropriately qualified personnel,
— Provide predefined functions that can be lightly customized to meet Ervia’s specific requirements,
— Comply with all Irish and EU regulations, including GDPR and recommendations on how the vendor will help Ervia comply with the EU NIS Directive,
— Provision of advanced security intelligence relating to Ervia’s business,
— Professional services to establish document and mobilise target operating model with Ervia’s Security Operations team, including training where applicable,
— Capability to provide auxiliary resources and services to manage security devices where necessary and to react to security incidents.
Show more Award criteria
Price is not the only award criterion and all criteria are stated only in the procurement documents
Duration of the contract, framework agreement or dynamic purchasing system
The time frame below is expressed in number of months.
Description
Duration: 36
Duration of the contract, framework agreement or dynamic purchasing system
This contract is subject to renewal ✅ Description
Description of renewals: Option to renew for periods up to 24 months.
Information about the limits on the number of candidates to be invited
Envisaged number of candidates: 5
Information about variants
Variants will be accepted ✅ Information about options
Options ✅
Description of options: Option to extend for additional periods up to 1 + 1 years.
Description
Additional information:
“You must submit through the Etenders system before the deadline. The submission deadline is strict and no submissions will be possible after the date and...”
Additional information
You must submit through the Etenders system before the deadline. The submission deadline is strict and no submissions will be possible after the date and time specified in the PQQ documents. Please note that all tenders are electronic, as such NO paper copies will be accepted or read. Please submit via the Etenders system not later than 12:00 hrs (local time) Tuesday 2.10.2018.
Legal, economic, financial and technical information Conditions for participation
List and brief description of conditions:
“Please refer to tender documents available to download from www.etenders.gov.ie only.” Economic and financial standing
Selection criteria as stated in the procurement documents
Technical and professional ability
Selection criteria as stated in the procurement documents
Conditions for participation
Legal form to be taken by the group of economic operators to whom the contract is to be awarded:
“Requests to participate may be submitted by single entities or by groups of service providers. A group will not be required to convert into a specific legal...”
Legal form to be taken by the group of economic operators to whom the contract is to be awarded
Requests to participate may be submitted by single entities or by groups of service providers. A group will not be required to convert into a specific legal form in order to submit a request to participate, but may if the Contracting Entity considers it necessary to ensure that the contract is carried out to its satisfaction, be required to do so prior to award of the contract. The Contracting Entity also reserves the right to contract with each member of the group on the basis of joint and several liability, or with one member of the group as a main contractor with a number of sub-contractors or on any other basis as the Contracting Entity considers appropriate.
Show more Information about a particular profession
Reserved to a particular profession
Reference to the relevant law, regulation or administrative provision:
“If applicable, please refer to tender documents available to download from www.etenders.gov.ie only.” Information about staff responsible for the performance of the contract
Obligation to indicate the names and professional qualifications of the staff assigned to performing the contract
Procedure Type of procedure
Negotiated procedure with prior call for competition
Administrative information
Time limit for receipt of tenders or requests to participate: 2018-10-02
12:00 📅
Languages in which tenders or requests to participate may be submitted: English 🗣️
Languages in which tenders or requests to participate may be submitted: Irish 🗣️
The time frame below is expressed in number of months.
Minimum time frame during which the tenderer must maintain the tender: 6
Complementary information Information about electronic workflows
Electronic ordering will be used
Electronic invoicing will be accepted
Electronic payment will be used
Additional information
“You must submit through the Etenders system before the deadline. The submission deadline is strict and no submissions will be possible after the date and...”
You must submit through the Etenders system before the deadline. The submission deadline is strict and no submissions will be possible after the date and time specified in the PQQ documents. Please note that all tenders are electronic, as such NO paper copies will be accepted or read. Please submit via the Etenders system not later than 12:00 hrs (local time) Tuesday 2.10.2018.
Show more Review body
Name: The High Court
Postal address: The Four Courts
Postal town: Dublin
Postal code: 7
Country: Ireland 🇮🇪
Phone: +353 18886000📞
E-mail: highcourtcentraloffice@courts.ie📧
URL: http://www.courts.ie🌏 Review procedure
Precise information on deadline(s) for review procedures:
“Precise information on deadline(s) for review procedures:
Please refer to Statutory Instrument 131 of 2010, European Communities (Award of Contracts by...”
Precise information on deadline(s) for review procedures
Precise information on deadline(s) for review procedures:
Please refer to Statutory Instrument 131 of 2010, European Communities (Award of Contracts by Utility Undertaking) (Review Procedures) Regulations 2010 (and in particular Regulation 7 and 10(2)).
Show more
Source: OJS 2018/S 169-385773 (2018-08-30)
Additional information (2018-10-02) Contracting authority Name and addresses
Postal address: PO Box 900, Webworks, Eglinton Street
Postal code: Cork
Object Scope of the procurement
Short description:
“Provision of a Security Incident and Event Management System (SIEM) and a Managed SOC Service operating 24x7x365 and capable of meeting Ervia’s needs and...”
Short description
Provision of a Security Incident and Event Management System (SIEM) and a Managed SOC Service operating 24x7x365 and capable of meeting Ervia’s needs and include the following capabilities:
— 24*7*365 monitoring and alerting service,
— event and data collection,
— dashboard and reporting,
— event correlation,
— user and entity analytics,
— high volume log management,
— user monitoring,
— application monitoring,
— real time data collection,
— incident management,
— threat intelligence,
— OT and telemetry capability.
Forensic Investigation Scope of contract includes:
— provision,
— implementation and support of a scalable solution for initially up to 6000 events per second (EPS) and/or equivalent IP/Volume based licensing model with potential to grow significantly over subsequent number of years and incorporating additional systems (through inclusion of existing or future new systems). (As per PQQ Document).
Complementary information Original notice reference
Notice number in the OJ S: 2018/S 169-385773
Changes Text to be corrected in the original notice
Section number: IV.2.2
Place of text to be modified: Date
Old value
Date: 2018-10-02 📅
Time: 12:00
New value
Date: 2018-10-09 📅
Time: 12:00
Source: OJS 2018/S 193-437601 (2018-10-02)
Contract award notice (2020-01-30) Object Scope of the procurement
Short description:
“Provision of a Security Incident and Event Management System (SIEM) and a managed SOC service operating 24x7x365 and capable of meeting Ervia’s needs and...”
Short description
Provision of a Security Incident and Event Management System (SIEM) and a managed SOC service operating 24x7x365 and capable of meeting Ervia’s needs and include the following capabilities: 24x7x365 monitoring and alerting service, event and data collection, dashboard and reporting, event correlation, user and entity analytics, high volume log management, user monitoring, application monitoring, real time data collection, incident management, threat intelligence, OT and telemetry capability, forensic investigation scope of contract: includes: provision, implementation and support of a scalable solution for initially up to 6 000 events per second (EPS) and/or equivalent IP/volume based licensing model with potential to grow significantly over subsequent number of years and incorporating additional systems (through inclusion of existing or future new systems). (As per PQQ Document).
Show more Description
Main site or place of performance: Cork, South West.
Description of the procurement:
“Provision of a Security Incident and Event Management System (SIEM) and a managed SOC service operating 24x7x365 and capable of meeting Ervia’s needs and...”
Description of the procurement
Provision of a Security Incident and Event Management System (SIEM) and a managed SOC service operating 24x7x365 and capable of meeting Ervia’s needs and include the following capabilities:
— 24*7*365 monitoring and alerting service,
— event and data collection,
— dashboard and reporting,
— event correlation,
— user and entity analytics,
— high volume log management,
— user monitoring,
— application monitoring,
— real time data collection,
— incident management,
— threat intelligence,
— OT and telemetry capability,
— forensic investigation.
Scope of contract includes
— provision, implementation and support of a scalable solution for initially up to 6 000 events per second (EPS) and/or equivalent IP/volume based licensing model with potential to grow significantly over subsequent number of years and incorporating additional systems (through inclusion of existing or future new systems),
— the SIEM solution must be capable of providing a secure means of integration with the relevant Ervia, Irish Water and Gas Networks Ireland systems (IT and OT systems). Real-time collection and analysis of events from host systems, security devices and network devices. The solution must use global energy sector threat intelligence to identify existing and emerging threats,
— Ervia have a requirement for a SIEM technology implementation to be co-located between Ervia and supplier premises. In addition to the SIEM solution Ervia wishes to engage with the supplier to provide a managed SOC service for which the operating model should be a hybrid approach which leverages global knowledge and skilled persons for augmenting the in house security operations team and help to drive the maturing of Ervia security threat intelligence capability and incident response/resolution,
— it must be fully compatible with existing Ervia IT and OT systems and technologies, and be fully scalable (for future expansion if necessary),
— provision of a managed SOC service to configure, tune, and respond to relevant severity events, this response will include an initial SIEM based investigation and alerting of events,
— the provider must have a dedicated security operations centre staffed 24/7/365 by appropriately qualified personnel,
— provide predefined functions that can be lightly customized to meet Ervia’s specific requirements,
— comply with all Irish and EU regulations, including GDPR and recommendations on how the vendor will help Ervia comply with the EU NIS Directive,
— provision of advanced security intelligence relating to Ervia’s business,
— professional services to establish document and mobilise target operating model with Ervia’s Security Operations team, including training where applicable,
— capability to provide auxiliary resources and services to manage security devices where necessary and to react to security incidents.
Show more
Additional information:
“You must submit through the eTenders system before the deadline. The submission deadline is strict and no submissions will be possible after the date and...”
Additional information
You must submit through the eTenders system before the deadline. The submission deadline is strict and no submissions will be possible after the date and time specified in the PQQ documents. Please note that all tenders are electronic, as such no paper copies will be accepted or read. Please submit via the eTenders system not later than 12.00 (local Time) 2.10.2018.
Procedure Administrative information
Previous publication concerning this procedure: 2018/S 169-385773
Award of contract
1️⃣
Contract Number: 1
Title: Enterprise Security Operations Managed Service
Information on non-award
Other reasons (discontinuation of procedure)
Complementary information Additional information
“You must submit through the eTenders system before the deadline. The submission deadline is strict and no submissions will be possible after the date and...”
You must submit through the eTenders system before the deadline. The submission deadline is strict and no submissions will be possible after the date and time specified in the PQQ documents. Please note that all tenders are electronic, as such no paper copies will be accepted or read. Please submit via the eTenders system not later than 12.00 hrs (local time) 2.10.2018.
Show more Review procedure
Precise information on deadline(s) for review procedures:
“Please refer to Statutory Instrument 131 of 2010, European Communities (Award of Contracts by Utility Undertaking) (Review Procedures) Regulations 2010 (and...”
Precise information on deadline(s) for review procedures
Please refer to Statutory Instrument 131 of 2010, European Communities (Award of Contracts by Utility Undertaking) (Review Procedures) Regulations 2010 (and in particular Regulation 7 and 10(2)).
Show more
Source: OJS 2020/S 024-054921 (2020-01-30)