:- IDBI /PCELL/ RFP/

Transcription

1 Sr. No RFP Page No Section / Clause/Para No Existing clause 1 6 Control Sheet Schedule for receipt of Bids: - 31 st March 2017 at 1600 Hrs. 2 6 Control Sheet Schedule for Opening of Technical Bids: 31 st March 2017 at 1630 Hrs. Modified/Revised clause Schedule for receipt of Bids: - 6 th April 2017 at 1600 Hrs. Schedule for Opening of Technical Bids : 6 th April 2017 at 1630 Hrs Eligibility Criteria The bidder should provide the list of clients for APT solution implemented during last two years up-to (Relevant PO / client confirmation mail or letter regarding successfully implementation of APT solution) Eligibility Criteria Delivery, Installation and Commissioning : period & Location Product licenses should be perpetual and AMC would be around 25-30%. Delivery and installation of APT solution will be at DC, Belapur & DR- Chennai within Eight weeks from the date of release of PO. Inspect SMTP, POP3, The OEM/Bidder should provide the list of clients for APT solution implemented during last two years up-to (Relevant PO / client confirmation mail or letter regarding successfully implementation of APT solution). Product licenses should be perpetual and AMC cost to decide by OEM/Bidder. Delivery and installation of APT solution will be at DC, Belapur & DR- Chennai within Twelve weeks from the date of release of PO. 5 27, 55 & Technical/Evaluation Inspect SMTP, POP3, IMAP Format II IMAP traffic traffic, FTP and SMB 6 27 & Additional Support of STIX / TAXII inclusion as Desirable for evaluation (Refer revised Technical Format I & II below) 7 Page no. 28, 56 & 96 Technical bid/ Evaluation bid part II Point no.17 A solution must support minimum 2X10 GB supported to Copper Gigabit Ethernet (GBE) and 4X10Gigabit Fiber (LC) interfaces The Solution should be able to handle and detect threats in a traffic of 6 GBPS Page 1 of 6

2 8 Page no. 56 Additional point for Scope of work 9 Page 56 Additional point for Scope of work 10 Page 57 - bb Scope of Work 11 Additional point for Technical specifications under section (3.1) Service Level Expectation OEM/ Bidder to provide hardware replacement within 3 days time if failed as part of RMA replacement policy. The bidder is required to adhere to the Service Level Agreements as mentioned below for the support phase. Time to Detect 10 to 15 minutes maximum inclusion as Critical TIME TO DELIVER - signature for new or zero day malware infection to be provided WITHIN minutes inclusion as Critical OEM/ Bidder to provide hardware replacement within 1 days time if failed as part of RMA replacement policy. The Tool or the vendor/bidder should have an Intelligence sharing network where Information learned from APT and advance malware threats can be shared across the vendor s customer base globally Please refer below revised SLA point no. 3.1 *Rest all terms & conditions as per RFP. Date: - 27 th March 2017 Place: - Mumbai Page 2 of 6

3 Sr Evaluation Parameter * TECHNICAL BID / EVALUATION FORMAT PART I The OEM/bidder must have implemented atleast two APT solution from the proposed OEM in a BFSI/ E-Commerce environment or at Banks with 100 branches/ offices globally The proposed APT solution Product features (Critical) The proposed APT solution Product features (Desirable) The bidder should have minimum 3 skilled OEM certified staff for APT solution The vendor/bidder must be Gold/Tier-1 or Silver/Tier-2 partner of the OEM for the proposed product. Approach, Methodology & Expertise ** (Presentation would be held) Sample reports to be submitted which would be evaluated). Minimum Requirement 2 BFSI/Ecommerce/Banks environment implementation Silver/Tier-2 partner Maximum Marks Details 2 implementations = 4 3 implementations = 5 4+ implementations = 7 Critical (Refer Part-II of Technical bid/evaluation Format) 2 marks to each. Desirable (Refer Part-II of Technical bid/evaluation Format) 1 marks to each Certified Staff =3 3+ Certified Staff = 4 4 Gold/Tier-1 partner = 4 Silver/Tier-2 partner = 3 Based on data submitted including (1) Project plan and Product details for all products/technology that 30 will be used in IDBI Environment. 2) Proposed process and formal presentation on the architecture for 1 hour Total 100 Qualifying Marks is 70 Attachments/Necessary documentary evidence/ proofs PO or Work order or Invoice Letter from client on client letter Head. / directly marked by the client to IDBI Product Brochures and any supporting documents clearly indicating the features Product Brochures and any supporting documents clearly indicating the features CV of resources along with certificates to be furnished. i. This evaluation will be carried out on a total score of 100 on the basis of the above evaluation parameters defined in this section. However, the detailed scoring mechanism is to be carried out as per Technical Bid Evaluation Criteria (Section 6). ii. The Bidders scoring a minimum of 70 marks based on the detailed evaluation in Technical Proposal Evaluation would be qualified and short listed for next Phase i.e Opening of Indicative Commercial Bid and ORA. iii. In Part II, bidder has to provide their compliance (Yes/No) for Critical & desirable specification. The same will also be evaluated for next phase commercial bid. Page 3 of 6

4 TECHNICAL BID / EVALUATION FORMAT PART II Sr. APT Gateways solution Critical Yes/No Desirable Yes/No 1 Automated Malware Analysis 2 Real-Time Threat detection 3 Solution should be deployed on premise and along with on premise sandboxing capability 4 5 Sandboxing capabilities of following Operating Systems (32 and 64 bit) : Win XP, Win7, Win8.x, Win10.x, Server 2008 R2, 2012 R2, Solution should be able to detect the persistent threats which come through executable files, PDF files, Flash files, RTF files, any type of file 6 Inspect SMTP, POP3, IMAP traffic, FTP and SMB 7 Inspect UDP traffic 8 Domain Fluxing ( Fast Fulx / Dynamic Reputation/ Domain Generation Algorithms) 9 Ransamware detection 10 C&C and Botnet detection using ANY protocol 11 Dormant threat detection capability 12 Suspected file collection and submission from Console. 13 Solution should be capable to integrate with devices like Firewall/IPS to mitigate risk by blocking similar session. (Checkpoint, Cisco) The solution should support discovery of infections via Ipv4 and Ipv6 Traffic Analysis Solution should integrate with SIEM technology specific to RSA SA (Security Analytics) v and above. Solution/appliance must have RAID redundancy (for hard drives), network redundancy (for management network interfaces), Power-Supply and Fan module redundancy. The Solution should be able to handle and detect threats in a traffic of 6 GBPS A solution should identify infections regardless of the host s Operating System and devices used (OSagnosticism) A solution should have Infections detection without sandbox features as well. Page 4 of 6

5 20 21 Solution should track the infection or threat history for a device, with the ability to access all forensic evidence for past infections. (6 months) A solution should support hostname resolution through either NetBios Lookup or reverse DNS. (Asset Identification) Sandboxing File type supports Multilevel Zip files (.doc,.xls,.ppt,.pdf,.exe,.zip,.rar,.tar,.gz,.tar.gz, 22.tgz,.zip,.bz2,.tar.bz2,.bz,.tar.Z,.cab,.rar,.arj,.exe,.dll,.avi,.mpeg,.mp3/4,.jpg, java script, JavaArchive JAR, LNK,.chm,.swf,.sys,.com,.hwp etc) 23 Support of STIX / TAXII 24 Sandboxing capabilities of following Operating Systems :- Linux, Unix and MAC OS, Android 25 Zero Day Malware Discovery 26 Malicious P2P Discovery 27 Inspect Proxy/ http traffic 28 Inspect DNS traffic 29 Inspect https traffic (Full Deep Packet / Encrypted Traffic Inspection) 30 Inspect Non-standard TCP port traffic Solution should be capable to integrate with 31 devices like Web proxy to mitigate risk by blocking similar session. Solution should be capable to integrate with 32 devices like Enterprise Antivirus product to mitigate risk by blocking similar threat by pushing hashes / signature. Solution should be able to support XFF (X- 33 Forwarded-For) to identify the IP Address of a host in a proxy/nat environment. 34 Solution should be able to Identify suspicious embedded object in document file like OLE & Macro extraction, Shell code& exploit matching Page 5 of 6

6 3.1 The bidder is required to adhere to the Service Level Agreements as mentioned below for the support phase. Sno. Service Area Service Level Penalty APT Gateway Solution Appliance /server Affected Onsite Visits next day for level 0 issues Penalty as XX% will be calculated yearly while Support Payments Webex session same day of issue for level 1 would be made annually issues Telephonic support at same time issue faced for level 2 issues. 1 >8 hrs. Level 0 0.5% 2 >4 hrs. Level 1 1.0% 3 >1 hrs. Level 2 1.5% Page 6 of 6