Transcription of REQUEST FOR PROPOSAL (RFP) FOR SELECTION ... - …
1 Document Type: Public Page 1 of 103 IT security Cell, Risk Management Dept., Baroda Corporate Centre, bank of Baroda Mumbai RFP for SELECTION of IT security Systems integrator for security Operations Centre RFP Ref No: BCC:CISO:RFP:104/01 Date : 15 March 2012 REQUEST FOR PROPOSAL (RFP) FOR SELECTION OF IT security SYSTEMS integrator FOR security OPERATIONS CENTRE RFP Reference No. BCC: CISO: RFP:104/01 Date : 15 March 2012 bank of Baroda, Baroda Corporate Centre, C-26, G Block, Bandra Kurla Complex Bandra (East), Mumbai - 400 051.
2 Document Type: Public Page 2 of 103 IT security Cell, Risk Management Dept., Baroda Corporate Centre, bank of Baroda Mumbai RFP for SELECTION of IT security Systems integrator for security Operations Centre RFP Ref No: BCC:CISO:RFP:104/01 Date : 15 March 2012 Important Dates: Sr. No. Particulars Dates and Timelines 1 Issuance of RFP document by the bank 00:00 hours on 15th March 2012 2 Last date of submission of any queries and Last date for reporting any error, omissions or faults in the RFP document 17:00 hours on 26th March 2012 3 Pre-bid Meeting date/venue 15:00 hours on 03rd April 2012.
3 bank Of Baroda, Baroda Corporate Centre, C-26, G-Block, Bandra Kurla Complex, Mumbai 400 051 4 Last Date of submission of RFP response 15:00 hours on 17th April 2012 5 Technical bid opening date / time / venue 16:00 hours 17th April 2012 bank Of Baroda, Baroda Corporate Centre, C-26, G-Block, Bandra Kurla Complex, Mumbai 400 051 All times shown above are Indian Standard Time Important Clarifications: Following terms are used in the document interchangeably to mean: bank means bank of Baroda (including domestic operations, overseas operations, Overseas & Indian subsidiaries & Associate Banks) BCC means Baroda Corporate Centre.
4 BST means Baroda Sun Tower . security Systems integrator (SSI), Recipient, Respondent, Bidder and Vendor generally means Respondent to the RFP document unless context specifies otherwise. SIEM means security Information and Event Management DAM means Database Activity Monitoring VA/VM means Vulnerability Assessment/Vulnerability Management EPS means Events per second DC means bank s Data centre at Mumbai. DR, DRS means bank s Disaster Recovery centre at Hyderabad. RFP means this RFP document Document Type: Public Page 3 of 103 IT security Cell, Risk Management Dept.
5 , Baroda Corporate Centre, bank of Baroda Mumbai RFP for SELECTION of IT security Systems integrator for security Operations Centre RFP Ref No: BCC:CISO:RFP:104/01 Date : 15 March 2012 TABLE OF CONTENTS SECTION I .. 5 INTRODUCTION AND DISCLAIMER .. 5 INORMATION PROVIDED .. 5 FOR RESPONDENT ONLY .. 5 CONFIDENTIALITY .. 5 DISCLAIMER .. 6 ELIGIBILITY CRITERIA.. 6 COSTS BORNE BY RESPONDENTS .. 6 NO LEGAL RELATIONSHIP .. 7 RECIPENT OBLIGATION TO INFORM ITSELF .. 7 EVALUATION OF BIDS .. 7 ERRORS AND OMISSIONS.
6 7 ACCEPTANCE OF TERMS .. 8 RFP RESPONSE TERMS .. 8 NOTIFICATIONS .. 13 13 ERASINGS OR ALTERATIONS .. 13 RIGHT TO REJECT BIDS .. 13 PROCESS & TIMEFRAME .. 14 OTHER TERMS AND CONDITIONS .. 15 SECTION 16 bank OF BARODA-INTRODUCTION .. 16 PROJECT OBJECTIVE .. 16 PROJECT SCOPE .. 17 DELIVERABLES .. 23 SERVICE LEVEL AGREEMENT .. 24 DEPLOYMENT ARCHITECTURE .. 26 PROJECT TIMELINES .. 27 DETAILS OF INFRASTRUCTURE AT bank S DC/DR .. 28 SECTION III .. 29 GENERAL TERMS AND CONDITIONS .. 29 SECTION IV.
7 39 ANNEXURE-A : ELIGIBILITY 39 ANNEXURE-B : security system integrator S SELECTION / EVALUATI-ON PROCESS .. 42 ANNEXURE-C : COMPLIANCE CERTIFICATE .. 46 ANNEXURE-D : TECHNICAL BID FORMAT .. 47 ANNEXURE-E : SOC SOLUTIONS SPECIFICATIONS .. 51 ANNEXURE-F : PROFILE OF ONSITE MANPOWER AT DC & DR .. 85 Document Type: Public Page 4 of 103 IT security Cell, Risk Management Dept., Baroda Corporate Centre, bank of Baroda Mumbai RFP for SELECTION of IT security Systems integrator for security Operations Centre RFP Ref No: BCC:CISO:RFP:104/01 Date : 15 March 2012 ANNEXURE-G : EXPERIENCE DETAILS.
8 88 ANNEXURE-H : PROPOSED TEAM PROFILE .. 89 ANNEXURE-I : ESTIMATED EFFORT AND ELAPLSED TIME .. 90 ANNEXURE-J : OEM DETAILS .. 91 ANNEXURE-K : MANUFACTURER AUTHORIZATION FORM .. 92 ANNEXURE-L : OEM SIZING CONFIRMATION .. 93 ANNEXURE-M : COMMENTS ON TERMS & CONDITIONS & SERVICES/PRE BID QUERY 94 ANNEXURE-N : COMMERCIAL BID FORMAT .. 95 ANNEXURE-O : BILL OF MATERIAL .. 103 Document Type: Public Page 5 of 103 IT security Cell, Risk Management Dept., Baroda Corporate Centre, bank of Baroda Mumbai RFP for SELECTION of IT security Systems integrator for security Operations Centre RFP Ref No: BCC:CISO:RFP:104/01 Date.
9 15 March 2012 SECTION I INTRODUCTION AND DISCLAIMER This REQUEST for PROPOSAL document ( RFP ) has been prepared solely to enable bank of Baroda ( bank ) in the SELECTION of security system integrator through tender for setting up and operations of security Operations Centre for the bank , including its branches, subsidiaries, overseas branches etc. The RFP document is not a recommendation, offer or invitation to enter into a contract, agreement or other arrangement in respect of the product and services.
10 The provision of the product and services is subject to observance of SELECTION process and appropriate documentation being agreed between the bank and any successful Bidder as identified after completion of the SELECTION process as detailed in Annexure-B on security system integrator s SELECTION /Evaluation Process. INORMATION PROVIDED The RFP document contains statements derived from information that is believed to be true and reliable at the date obtained but does not purport to provide all of the information that may be necessary or desirable to enable an intending contracting party to determine whether or not to enter into a contract or arrangement with bank in relation to the provision of services.
