Information Security and Architecture Services on the Basis of a 3 Year Indefinite... Tender

Procurement Summary

Country : Switzerland

Summary : Information Security and Architecture Services on the Basis of a 3 Year Indefinite Quantity Contract

Deadline : 26 Feb 2020

Other Information

Notice Type : Tender

TOT Ref.No.: 40612999

Document Ref. No. : TGF-20-011

Competition : ICB

Financier : Global Fund to Fight AIDS, Tuberculosis and Malaria (GFFATM)

Purchaser Ownership : -

Tender Value : Refer Document

Purchaser's Detail

Purchaser : GLOBAL FUND TO FIGHT AIDS, TUBERCULOSIS AND MALARIA (THE “GLOBAL FUND”)
Global Health Campus Chemin du Pommier 40 1218 Grand-Saconnex Geneva Phone: +41 58 791 1700 Fax: +41 44 580 6820
Switzerland
Email :solicitation@theglobalfund.org
URL :https://www.theglobalfund.org/en/

Tender Details

Request for proposals are invited for Information Security and Architecture Services on the Basis of a 3 Year Indefinite Quantity Contract.

REQUEST FOR PROPOSALS (RFP)
INVITATION NOTICE
RFP No TGF-20-011
INFORMATION SECURITY AND ARCHITECTURE SERVICES ON THE
BASIS OF A 3 YEAR INDEFINITE QUANTITY CONTRACT
RFP Information Table
Issue Date: 12th February 2020
RFP Closing Date: 26th February 2020
RFP Closing Time: 5 pm (Geneva Time)
Proposal Submission Address: Following URL for Sourcing
Application:
https://access.theglobalfund.org/
Global Fund Contact and Contact
Information:
Solicitation@theglobalfund.org
1. The Global Fund to Fight AIDS, Tuberculosis and Malaria (the “Global Fund”) now invites
proposals for the above-captioned Project.
2. The Statement of Work for the Project is attached hereto as Attachment A.
3. The Global Fund will evaluate all proposals received in response to this Request for
Proposals (RFP) in accordance with the Evaluation Criteria in Attachment B.
4. The requirements and general information regarding the RFP submission are attached
hetero as Attachment C.
5. Certificate of Conformance and Conflict of Interest Declaration Form are attached as
Annex 1 and 2 respectively.
6. This RFP is in line with, and subject to, the Global Fund-s Procurement Regulations
(2017 as amended from time to time), which may be found at
http://www.theglobalfund.org/en/business/. The following are integral parts of this RFP:
a. The Global Fund Solicitation Rules (2017, as amended from time to
time), which may be found at: http://www.theglobalfund.org/en/business/;
b. The Policy on Ethics and Conflict of Interest for Global Fund
Institutions (2002, as amended from time to time), which may be found
at: http://www.theglobalfund.org/en/documents/governance/;
c. The Code of Conduct for Suppliers (2009, as amended from time to
time), which may be found at:
http://www.theglobalfund.org/en/documents/governance/;
d. The Sanctions Panel Procedures Relating to the Code of Conduct for
Suppliers (2014, as amended from time to time), which may be found at
http://www.theglobalfund.org/en/documents/governance/; and
Global Fund RFP Invitation Notice (TGF-20-011) 2
e. The Global Fund Terms and Conditions of Purchase of Goods and
Services (2018, as amended from time to time), which will also be an
integral part of any contract resulting from this solicitation, and which may be
found at http://www.theglobalfund.org/en/business/.
Submitting a proposal in response to this RFP constitutes an acceptance of the terms
indicated herein and of the terms of each of these documents, including the Global Fund
Terms and Conditions of Purchase of Goods and Services, and the Global Fund reserves
the right to reject the proposal of any entity or individual, as the case may be, that fails or
refuses to comply with, or accept, such terms.
7. This RFP shall not be construed as a contract or a commitment of any kind. This RFP in
no way obligates the Global Fund to award a contract, nor does it commit the Global Fund
to pay any costs or expenses incurred in the preparation or submission of proposals.
8. All communications with regard to this RFP shall be in writing and sent to the Global Fund
Contact and Contact Information indicated in the above RFP Information Table.
9. Proposals must be submitted at the Proposal Submission Address, and received by the
Global Fund by the RFP Closing Time and at the RFP Closing Date, all as indicated in the
above RFP Information Table.
* * * * *
THE GLOBAL FUND SOURCING APPLICATION
1. For audit and efficiency purposes, this RFP process is being managed electronically, and
bidders are required to submit their proposals in the following URL for Sourcing
Application: https://access.theglobalfund.org/.
2. Proposals must be submitted in TGF Sourcing Application, and received by the Global
Fund by the RFP Closing Time and at the RFP Closing Date, all as indicated in the above
RFP Information Table.
3. In case, you do not have a Supplier Id in TGF Sourcing Application, please send an email
with sufficient notice to solicitation@theglobalfund.org with the following title in the
subject:
o “TGF-20-011 - Request for login user id creation in TGF Sourcing / iSupplier portal
- Put your organization name”.
4. Unless otherwise indicated, proposals shall be submitted in pdf and should
be divided in two separate folders, one containing your cost proposal and one
containing your technical proposal.
The subject line of your attachment must be labelled as follows:
o TGF-20-011- organization name - technical proposal;
o TGF-20-011 - organization name - cost proposal.
Global Fund RFP Invitation Notice (TGF-20-011) 3
5. All communications with regard to this RFP shall be in writing and sent through the TGF
Sourcing Application platform using the online discussion as indicated in the above RFP
Information Table.
6. Any communication between a Bidder and the Global Fund regarding this RFP, which is
not through the designated channel (https://access.theglobalfund.org/), may invalidate
such Bidder-s proposal to this RFP.
7. The proposal(s) must be valid for 90 days from the deadline for submission.
Global Fund RFP Invitation Notice (TGF-20-011) 4
ATTACHMENT A
STATEMENT OF WORK
I. BACKGROUND
The Global Fund to Fight AIDS, Tuberculosis and Malaria (“the Global Fund”) was established in
January 2002 as a financial instrument, complementary to existing programs addressing
HIV/AIDS, tuberculosis and malaria. It is a 21st century organisation designed to accelerate the
end of AIDS, tuberculosis and malaria as epidemics. As partnership between government, civil
society, the private sector, and people affected by the disease, the Global Fund mobilizes and
invests nearly USD 4 billion a year to support programs run by local experts in more than 110
countries. The Global Fund operates with three core principles: partnership, country ownership
and performance-based funding. By challenging barriers and embracing innovative approaches,
the Global Fund strives for maximum impact.
Global Fund uses a range of Cloud and on-premise systems that cover several key functional areas
and is an important contributor to the success of Global Fund work. This covers a variety of topics
such as Microsoft O365 Email, Document Management, Collaboration, Identity Management and
Security. Sharepoint is the document repository for all digital documents.
Global Fund needs to ensure the confidentiality, integrity and availability of information. Global
Fund is therefore adopting the ISO/IEC 27001 standard as the framework of choice for
information security management. The framework facilitates Global Fund-s management in
setting the overall direction, strategy and oversight for the implementation of the requisite
organization, technology and processes. As part of this overarching ISO 27001 certification an
uplift in security maturity will be delivered via many security initiatives and projects.
To address above, the Global Fund seeks to leverage skilled resources to ensure increased speed
to delivery of projects, customer satisfaction and leverage up-to-date practices, research,
knowledge and expertise. With the adoption of Cloud technologies it is also important that
Global Fund keeps pace with new emerging changes to ensure that the Global Fund gets the best
return on investment from IT investments.
The purpose of this RFP is to identify suppliers that can provide these services on as needed basis.
These Suppliers will be awarded Indefinite Quantity Contracts (IQC) for an initial period of 3
years with an option to extend for up to maximum of 3 more years subject to satisfactory
performance.
The Global Fund will issue individual Purchase Orders to the Contractor under this IQC to cover
cost of specific projects related to the services described herein. Such Purchase Orders will
specify the Services to be performed, time of performance, the ceiling price, and other aspects of
the particular assignment. The Global Fund may issue Purchase Orders under this Contract on
either time and material or a Fixed Price basis
II. TERMS OF REFERENCE
Global Fund RFP Invitation Notice (TGF-20-011) 5
A. Objectives of the Consultancy
The Global Fund would like to engage organizations specializing in Microsoft technologies,
security & information risk assessments (penetration testing), enterprise and security
architecture, change management, communications, information security training and
implementing specialist security tools and technologies. The objective is to build out a security
foundation of new security capabilities across Global Fund to ensure the continued protection for
Global Fund information assets.
B. Scope of Work
The scope of work broadly covers the following technological and functional areas:
a. Microsoft Technologies, Azure and Office365 architecture, design,
security, development, implementation and optimization
b. SharePoint & Business integration
c. Security and IT assessments, penetration testing & 3rd party audits
The detailed scope of this service will include but not be limited to:
a) Microsoft technologies, Azure and Office365 architecture, design, security,
development, implementation and optimisation
• Microsoft, Azure and 0365 Azure architecture and service configuration & integration.
• Configure, optimize, tune and implement security best practices for Microsoft Azure and
0365 and configure and implement security tools and technologies. Including but not
limited to azure information protection, Cloud App, 0365 data protection (GDPR),
auditing logging, security and compliance centre and advanced emerging security
features
• Microsoft Workbench and Artificial intelligence expertise.
• Knowledge sharing best practices for Azure in and around CI and sustainability of ML
workflows for both exploratory and production

Documents

 Tender Notice