TenderDekho Logo
GEM

Controller General Of Defence Accounts Cyber Security Audit Tender Pune Maharashtra 2026 ISI/Cert‑IN Empaneled CISSP Auditor

Bid Publish Date

20-Jan-2026, 5:43 pm

Bid End Date

10-Feb-2026, 6:00 pm

Value

₹1,60,000

Location

PUNE , MAHARASHTRA

Progress

Issue20-Jan-2026, 5:43 pm
AwardPending
Explore all 4 tabs to view complete tender details

Quantity

1

Bid Type

Two Packet Bid

Key Highlights

  • - CERT‑IN empanelled company required; proof must be submitted with bid
  • - CISSP certified auditor to certify audit work
  • - Experience in conducting similar government web application audits
  • - OEM/Original Equipment Manufacturer authorization if using distributors
  • - Malicious code certification: certify no embedded malicious code and protect IP
  • - Quote must cover 4 quarters (one year) of contract
  • - 50% variation permitted in contract quantity or duration at issue and after issuance

Tender Overview

The Government of India tender is issued by the Controller General Of Defence Accounts for a Cyber Security Audit / Security and Compliance Audit in Pune, Maharashtra. Estimated value is ₹160,000 for a one‑year contract, with pricing requested for four quarters. Unique conditions require the auditor to be CERT‑IN empanelled and the audit team leader to be a CISSP certified professional, conducting audits of a government web application. An OEM authorization path exists for authorized distributors, and mandatory malware/embedded code certification is required. The scope emphasizes external security verification, compliance assessment, and hosting suitability for government systems. The clause on audit eligibility and special ATCs indicates a controlled, certifications‑driven approach.

Technical Specifications & Requirements

  • No BOQ items are listed; the procurement title and ATCs imply a web application security audit for a government agency.
  • Mandatory credentials include CERT‑IN empanelment, and the auditor must certify that the application is free from embedded malicious code, with liability for IP infringement.
  • Audit team leadership must hold CISSP certification; firm must have prior experience auditing similar government web applications.
  • OEM authorization is required if using authorized distributors; price must cover four quarters (1 year) of contract value.
  • Special ATCs specify that audits are conducted by empanelled entities and that hosting certificates will be issued post‑audit by certifying bodies.

Terms, Conditions & Eligibility

  • EMD: Not specified in data; bidders must meet buyer’s terms and provide documentation proving financial standing and non‑liquidation status.
  • Experience: Demonstrated experience in conducting similar web application audits for government agencies; CISSP certified auditor required for audit certification.
  • Delivery & Payment: Quote for 4 quarters; terms on delivery cadence per quarter to be aligned with contract issuance; payment terms not specified in data.
  • Certificates & Documents: Mandatory CERT‑IN empanelment proof, OEM authorization form if applicable, and malware certificate. Bidders must upload cyber certifications and attestations with bid.

Key Specifications

    • Product/Service: Cyber Security Audit for government web applications
    • Audit standard: CISSP certified auditor required; CERT‑IN empanelled firm
    • Certifications: CISSP for auditor; CERT‑IN empanelled status; malware/embedded code certificate
    • Contract scope: 4 quarters (1 year) pricing; possibility of 50% variation in quantity or duration
    • OEM: Manufacturer authorization required for distributors

Terms & Conditions

  • Key Term 1: CERT‑IN empanelled bidder required with proof at bid submission

  • Key Term 2: CISSP certified auditor to lead audit; government web application experience essential

  • Key Term 3: Audit must include malware/embedded code certificate and IP protection commitment

Important Clauses

Payment Terms

Quote must cover 4 quarters; exact payment cadence not specified in data

Delivery Schedule

Audits to be conducted over a 1‑year period with quarterly deliverables aligned to contract issuance

Penalties/Liquidated Damages

Not specified in data; penalties to be defined in the ATC/contract

Bidder Eligibility

  • Must be CERT‑IN empanelled with proof

  • CISSP certified audit lead and government web app audit experience

  • Not under liquidation or similar financial distress

  • OEM authorization if using authorized distributors

Documents 7

GeM-Bidding-8818357.pdf

Main Document

Scope Of Work Document

SCOPE_OF_WORK

Other Documents

OTHER

Other Documents

OTHER

Other Documents

OTHER

Buyer uploaded ATC document

ATC

GEM General Terms and Conditions Document

GEM_GENERAL_TERMS_AND_CONDITIONS

Past Similar Tenders (Historical Results)

5 found

Indian Army Security Manpower Tender Amritsar Punjab 2026 Unarmed Guards 3 Nos

Indian Army

AMRITSAR, PUNJAB

Posted: 23 January 2026
Closed: 27 January 2026
GEM

INTEGRATED SECURITY SURVEILLANCE SYSTEM SERVICE - Theft Prevention, Remote Video Monitoring, Facili

Punjab State Corporative Supply & Marketing Federation Ltd. (markfed)

JALANDHAR, PUNJAB

Posted: 16 January 2026
Closed: 27 January 2026
GEM

Indian Navy Traffic Sign Boards & Security Templates Stickering Tender Goa 2026 NOFRA I & II

Indian Navy

SOUTH GOA, GOA

Posted: 15 January 2026
Closed: 27 January 2026
GEM

District Judge Nayagarh Odisha Visual Presenters & DNS Security Software Procurement 2026

District Judge, Nayagarh, Nayagarh

NAYAGARH, ODISHA

Posted: 15 January 2026
Closed: 26 January 2026
GEM

Indian Army Antivirus Total Security for 10 Users Tender Jammu & Kashmir 2026 ISO Certified OEM Install Life Time Validity

Indian Army

JAMMU, JAMMU & KASHMIR

Posted: 14 January 2026
Closed: 24 January 2026
GEM

🤖 AI-Powered Bidder Prediction

Discover companies most likely to bid on this tender

Live AI
Historical Data

Required Documents

1

- GST registration certificate

2

- PAN card

3

- Evidence of CERT‑IN empanelment

4

- CISSP certificate of the audit lead

5

- Experience certificates for similar government web application audits

6

- OEM authorization/certificates if applicable

7

- Malicious code certificate as specified in ATC

8

- Financial statements or proof of financial standing to demonstrate non‑liquidation

Frequently Asked Questions

Key insights about MAHARASHTRA tender market

How to bid for the cyber security audit tender in Pune Maharashtra 2026?

To bid, secure CERT‑IN empanelment, appoint a CISSP certified lead auditor, and submit proof of non‑liquidation along with OEM authorization if applicable. Include the malware certificate and evidence of audit experience with government web apps; price for 4 quarters must be quoted.

What documents are required for CGDA Pune cyber security audit tender 2026?

Submit GST and PAN, CERT‑IN empanelment proof, CISSP certification for the audit lead, government web app audit experience certificates, OEM authorization (if needed), malware certificate, and financial standing documents to demonstrate solvency; ensure bid package includes all mandatory attestations.

What are the mandatory standards for the CERT‑IN empanelled audit?

The tender requires CERT‑IN empanelment with audit capability for government systems; the audit lead must hold CISSP, and the firm must certify absence of embedded malicious code and protect IP; ensure hosting certificate readiness post‑audit per ATC.

When should the four‑quarter price quote be submitted for this tender?

Bidders must quote a single price covering all four quarters of a one‑year contract; the ATC indicates price should reflect annual scope, with potential 50% variation accepted by the buyer before contract issuance.

What is the audit scope for the Pune cyber security tender in 2026?

Scope centers on security and compliance audit of a government web application; emphasis on malware assessment, secure configuration, and regulatory alignment, led by a CISSP‑certified auditor from a CERT‑IN empanelled firm.

What are the OEM authorization requirements for this bid?

If the bidder relies on authorized distributors, provide OEM authorization details (name, designation, address, email, phone) with the bid; this attestation ensures supply chain accountability for security software/hardware components.

What is required to prove bidder financial health for this tender?

Provide a declaration that the bidder is not under liquidation or similar proceedings, supported by financial statements or solvency certificates; this evidence accompanies the bid to satisfy financial standing criteria.

What is the penalty framework for not meeting audit deliverables?

Penalties and LD terms are defined in the ATC/contract; bidders should anticipate potential remedies for delays or non‑compliance, with specifics to be confirmed at contract stage once bidder is selected.

Similar Tenders

5 found

Security Manpower Service (Version 2.0) - Office/Commercial/Institutions/ Residential; Unarmed Secu

Council Of Scientific And Industrial Research (csir)

📍 KOLKATA, WEST BENGAL

EMD: ₹4.3 L
Est: ₹2.0 Cr
⏰ Deadline: 2 months left
🛒 Type: Service
View GEM

Custom Bid for Services - Implementation of Server Security & Workload Protection solution includin

Oil And Natural Gas Corporation Limited

📍 EAST DELHI, DELHI

EMD: ₹10.0 L
⏰ Deadline: 4 weeks left
🛒 Type: Service
View GEM

AMC of Integrated Security and Surveillance System - CCAMC of 04 high energy cargo container scanne

Central Board Of Excise And Customs (cbec)

📍 NEW DELHI, DELHI

EMD: ₹46.4 L
Est: ₹23.2 Cr
⏰ Deadline: 4 weeks left
🛒 Type: Service
View GEM

Bhakra Beas Management Board AMC for Integrated Security & Surveillance System Kangra Himachal Pradesh 2025

Bhakra Beas Management Board

📍 KANGRA, HIMACHAL PRADESH

EMD: ₹28,000
Est: ₹14.0 L
⏰ Deadline: 4 weeks left
🛒 Type: Service
View GEM

Security Manpower Service (Version 2.0) - Office/Commercial/Institutions/ Residential; Unarmed Secu

Indian Council Of Agricultural Research (icar)

📍 BANGALORE, KARNATAKA

Est: ₹2.2 Cr
⏰ Deadline: 3 weeks left
🛒 Type: Service
View GEM