TenderDekho Logo
GEM

Bharat Petroleum Corporation Ltd Cyber Security Audit Tender IT Audits 2025 India

Bid Publish Date

30-Dec-2025, 10:12 am

Bid End Date

12-Jan-2026, 11:00 am

Location

MUMBAI , MAHARASHTRA

Latest Corrigendum Available

Progress

Issue30-Dec-2025, 10:12 am
Corrigendum09-Jan-2026
AwardPending
Explore all 4 tabs to view complete tender details

Quantity

1

Bid Type

Two Packet Bid

Categories 3

CA FIRM ACCOUNTANT FIRM SECURITY AUDIT

Tender Overview

Organization: Bharat Petroleum Corporation Ltd. The procurement targets a Cyber Security Audit service focusing on Information Technology Audits of Systems And Business Applications. Scope includes configuration, implementation, data migration, and architecture audits within a central government/state-owned context, assessed against formal shortlisting criteria. Key differentiators include strict pre-qualification on cyber security certifications, multi-order experience thresholds, and ATT/POA submission requirements. The tender emphasizes technical and legal compliance over generic capabilities and relies on verifiable past performance in similar audits. This opportunity is positioned for bidders capable of meeting CERT-In, GST, and bank-related documentation standards, with robust governance around IT security processes. Unique clauses include a quantity/duration adjustment right up to 25% at contract issue and after issuance.

Technical Specifications & Requirements

  • Category: Cyber Security Audit and IT Audits of Systems and Business Applications
  • Experience thresholds: 1) one similar order worth at least ₹21.81 Lakh, or 2) two orders totaling at least ₹13.63 Lakh each, or 3) three orders totaling at least ₹10.90 Lakh; for MSE bidders, thresholds are slightly lower (e.g., ₹18.54 Lakh, ₹11.58 Lakh, ₹9.27 Lakh respectively).
  • Audit scope: configuration/implementation/data migration/architecture audit for central/state govt entities, PSUs, or public sector units.
  • Documentation requirements: company incorporation, 3-year existence, PAN, GST registration, CERT-In empanelment, MSE Udyaam registration if applicable, bank details, POA, and relevant work completion certificates.
  • The tender highlights a non-BOQ structure with emphasis on compliance, reliability, and auditable evidence of past performance.

Terms, Conditions & Eligibility

  • EMD/Performance prerequisites: not explicitly stated in the extract; bidders must satisfy standard government bid prerequisites including legal entity proof and tax registrations.
  • Legal/entity criteria: company/LLP/firm with certificate of incorporation, 3-year financial existence, and valid registration with tax authorities.
  • CERT-In compliance: CERT-In certificate and empanelment required; MSE relaxations if applicable with Udhyam CA certificates.
  • Bid adjustments: quantity or contract duration may change by up to 25% at contract issue or during issuance, binding bidders to accept revised terms.
  • Payment and penalties: not detailed; ensure readiness for standard government payment terms and potential LDs per ATC clauses.

Key Specifications

  • Product/service: Cyber Security Audit and IT Audits of Systems And Business Applications

  • Scope: Configuration/Implementation/Data Migration/Architecture Audit for Central/State Govt organizations or PSUs/Pubic Limited

  • Experience thresholds: 1 order ≥ ₹21.81 Lakh OR 2 orders ≥ ₹13.63 Lakh OR 3 orders ≥ ₹10.90 Lakh (lower for MSEs)

  • Documentation: CERT-In empanelment, GST, PAN, CIN, bank details, POA, work completion certificates

  • Contract flex: 25% quantity/duration adjustment at issuance

  • No BOQ items; evaluation based on technical and legal compliance

Terms & Conditions

  • EMD and security deposit details are not explicitly specified; ensure readiness with standard bid deposits

  • Certification requirements include CERT-In and potential MSE relaxations via Udhyam CA certificates

  • Delivery/contract duration adjustments allowed up to 25% at contract issue

Important Clauses

Payment Terms

Not explicitly stated in the extract; bidders should anticipate standard government payment terms after certificate verification and acceptance of deliverables per ATC

Delivery Schedule

No explicit delivery timeline provided; contract terms may include delivery milestones aligned with audit project phases and approvals

Penalties/Liquidated Damages

Penalty regimes not detailed; ATC clauses likely describe LDs for delay or non-compliance with IT audit standards

Bidder Eligibility

  • Entity type: Company, LLP, or registered firm with 3 years existence

  • CERT-In compliant bidder with empanelment certificate

  • GST registration, PAN, and tax registrations in good standing

  • Experience in cyber security audits and system/architecture audits in government or PSU contexts

Past Similar Tenders (Historical Results)

5 found

Cyber Security Audit - Security and Compliance Audit

Central Board Of Excise And Customs (cbec)

MUMBAI, MAHARASHTRA

Posted: 20 June 2025
Closed: 30 June 2025
GEM

Cyber Security Audit - Security and Compliance Audit

Central Water Commission (cwc)

PUNE, MAHARASHTRA

Posted: 18 September 2025
Closed: 29 September 2025
GEM

Cyber Security Audit - Security and Compliance Audit

Office Of Special Court Mumbai

MUMBAI, MAHARASHTRA

Posted: 30 July 2025
Closed: 9 August 2025
GEM

Cyber Security Audit - Security and Compliance Audit

Petroleum And Explosives Safety Organisation

NAGPUR, MAHARASHTRA

Posted: 30 April 2025
Closed: 10 May 2025
GEM

Cyber Security Audit - Security and Compliance Audit

Directorate General Of Quality Assurance ( Dgqa)

PUNE, MAHARASHTRA

Posted: 16 April 2025
Closed: 26 April 2025
GEM

🤖 AI-Powered Bidder Prediction

Discover companies most likely to bid on this tender

Live AI
Historical Data

Required Documents

1

Certificate of Incorporation/registration (Company/LLP/Partnership)

2

3 years of financial existence documentation (as of tender date)

3

GST Registration Certificate

4

PAN Card

5

CERT-In registration and empanelment certificate

6

MSE registration documents (if applicable) with Udhyam registration and CA certificate

7

Cancelled cheque for bank details

8

Power of Attorney on letterhead

9

Work completion certificates and Purchase Orders with verification by TPIA

10

Any additional legal/entity documents requested in Terms and Conditions

Corrigendum Updates

1 Update
#1

Update

09-Jan-2026

Extended Deadline

12-Jan-2026, 11:00 am

Opening Date

12-Jan-2026, 11:30 am

Frequently Asked Questions

Key insights about MAHARASHTRA tender market

How to bid for BPCL cyber security audit tender in India 2025

To bid, ensure your entity is registered (Company/LLP/firm) with 3 years existence, provide CERT-In empanelment, GST, PAN, and bank details, plus work completion certificates showing relevant cyber security audits in govt/PSU contexts. Include POA and CN/COI. Prepare past-performance evidence and ensure you meet the 25% contract adjustment clause.

What documents are required for BPCL IT audit bid in 2025

Submit incorporation certificate, 3-year existence proof, GST registration, PAN, CERT-In empanelment, Udhyam registration if applicable, bank details, POA, and work completion certificates verified by TPIA. Include relevant orders demonstrating cyber security/audit experience and organization details.

What are the cyber security audit standards for BPCL tender

Bidders must demonstrate experience in cyber security audits and system audits with government scope and comply with CERT-In requirements. While IS/ISO standards are implied, ensure you present certificates and audit methodologies aligned to central/state govt expectations.

When is BPCL cyber security audit bid submission deadline

Exact submission dates are not provided here; monitor the tender portal for updates. Ensure readiness with all documents, including CERT-In empanelment, GST, and work certificates, before the stated deadline once posted.

What is the EMD or security deposit for BPCL IT audit tender

The extract does not specify EMD amount; bidders should prepare typical government EMD as per portal guidelines, and align with bank guarantees or online payment methods when the bid notification is released.

What are the eligibility criteria for BPCL cyber security audit

Eligibility includes legal entity status (Company/LLP/firm), 3-year existence, GST and PAN registrations, CERT-In empanelment, Udhyam if applicable for MSEs, and evidence of 1–3 similar cyber security/IT audits in the last 3 years with work orders and completion certificates.

What documents prove past experience for BPCL IT audits

Provide work completion certificates and PO copies duly verified by a third-party agency (TPIA), showing contracts for cyber security/configuration/architecture audits within the last 3 years, including reference to related work orders and client details.

What is the scope of BPCL IT audit service procurement

Scope includes configuration/implementation/data migration/architecture audits for IT systems and business applications within BPCL or similar govt/public sector contexts, with emphasis on governance, security controls, and audit evidence suitable for central/state government oversight.