Central University Of Haryana Vulnerability Testing Tender Web Application Security Audit 2025

Tender Overview

The Central University Of Haryana, Department Of Higher Education, seeks a service provider for vulnerability assessment and penetration testing of web applications, plus security audits including OWASP Top 10, secure configuration reviews for devices/OS, and vulnerability addressing. Estimated value is ₹150,000 with no BOQ items listed. Location is Haryana, and the procurement focuses on vulnerability testing, application security, and plug-in recommendations. The scope emphasizes audit quality, adherence to established security standards, and actionable remediation guidance. The absence of detailed specifications suggests a flexible approach to method and deliverables, with emphasis on comprehensive risk reporting and practical security enhancements.

• Organization: Central University Of Haryana
• Category: Vulnerability and Penetration Testing - Web Application; Security Infrastructure Review; OWASP Top 10
• Estimated value: ₹150,000
• Location: Haryana, India
• Key differentiator: emphasis on OWASP Top 10, secure configuration reviews, and plug-in solution recommendations
• Unique aspect: minimal BOQ information; focus on security assessment scope and remediation guidance

Technical Specifications & Requirements

• Product/Service: Vulnerability Assessment, Penetration Testing (Web Applications), Security Infrastructure Review, Application Security Audit, and Plug-in solution recommendations
• Scope elements: OWASP Top 10 assessment, secure configuration review for devices/OS, vulnerability addressing plan
• Data points: No specific hardware, software, or platform details provided; contractor must propose methodology, tools alignment, and deliverables
• Standards expectation: Not explicitly listed; bidders should infer best-practice security testing frameworks and produce remediation recommendations
• Estimated contract value: ₹150,000
• Delivery context: Post-engagement reporting with actionable mitigation steps

Terms, Conditions & Eligibility

• EMD: Not specified in data; bidders should verify in bid documents
• Quantity/Duration: Contract quantity/duration may adjust up to 25% at issue or post-issuance
• Excess charges: Optional addition up to a declared percentage; requires supporting documentation
• Certification requirements: Upload of certificates/documents as per Bid document/ATC
• Mandatory ATC: Compliance with uploaded ATC and corrigenda
• Documentation: GSTIN, PAN, experience certificates, financials, technical bids, OEM authorizations where required
• Penalties/warranty: Not specified here; check tender terms for LD or warranty clauses