4, July 2022

ESA Open Invitation to Tender: 1-11365
Open Date: 01/07/2022 08:27 CEST
Closing Date: 19/09/2022 13:00 CEST

Security Support Services.The objectives are to ensure the effective management and operation of information security management systems (ISMS) according to ISO 27001 and to provide security engineering expertise. The procured services will be consumed by the ESA IT Department and by of ESA Directorates. At present, similar activities are covered under Contract 4000127420, which terminates on 31 April 2023.With this Procurement Proposal, the Initiating Service wants to ensure evolution and continuity of the related industrial support services.Scope:- Organisation: Services are provided to ESA-internal customers upon request.- Location: In principle services are provided remotely from the Contractor’s offices and from ESRIN, and ESOC. Services may be furnished from any other ESA site in exceptional circumstances and as required for particular activities at the request of ESA.- Key features of the servicesto be provided: Information Security Consultancy Services (e.g., ISO 27001, data protection, cyber risk and threat) Security Operations Support (e.g., technical change assessment, post-incident analysis, vulnerability management support) Security Engineering Support- Technical system design- Documentation Support- Security certification and accreditation support- Development of software tools for process digitalization and automationDevelopment activities will be limited to modification of existing open-source products without modifying their license (e.g., Apache License or GPL). The resulting modifications will become open-source in accordance with the applicable open-source licensing scheme.The expected benefits are the following:- Continuous improvement of information security management.- Improved information security risk and threat awareness.- Improved capability and capacity to design and implement information security measures.- Capability to provide security engineering services to other teams, departments, and directorates- Harmonization of information security activities across ESA.- Continued compliance with ISO 27001 and related standards.Regarding cost accounting, the services are procured by the ESA IT Department and charged via SLA to other Directorates per consumption. Exceptionally, specific services may be charged directly to the Cost Centers or the WBS provided by the Directorate receiving the services.

Estabilishment: ESOC
ECOS Required: No
Classified: No
Price Range: > 500 KEURO
Authorised Contact Person: Anca-Mirela Popeia
Initiating Service: HIF-IH
IP Measure: N/A
Prog. Reference: N/A – N/A Fund
Tender Type: Open Competition
Technology Keywords: 26-OTHERS
Products Keywords: 5-Non Space Procurement/Services

If you wish to access the documents related to the Invitation to Tender, you have to log in to the ESA Portal.