TenderDekho Logo
GEM

Controller General Of Defence Accounts Vulnerability Testing Tender 2025 in India - Mobile/Web/IoT Security Audit with CERT-In Empanelment

Bid Publish Date

06-Jan-2026, 11:36 am

Bid End Date

17-Jan-2026, 12:00 pm

EMD

₹20,000

Progress

Issue06-Jan-2026, 11:36 am
AwardPending
Explore all 4 tabs to view complete tender details

Quantity

1

Bid Type

Two Packet Bid

Categories 5

CA FIRM INFORMATION SECURITY ACCOUNTANT FIRM WEB SECURITY AUDIT

Tender Overview

Controller General Of Defence Accounts invites bids for comprehensive vulnerability and security testing across mobile applications, web applications, network, and IoT devices with services including security code review, malware analysis, and OWASP Top 10 oriented audits. The opportunity includes an EMD of ₹20,000 and a flexible contract window allowing up to 25% changes in quantity or duration before and after contract award. Bidders must be CERT-In empanelled for the required goods/services, and the bid process enforces submission of specific certificates and past-experience proof. The absence of BOQ items implies a service-grade assessment rather than a fixed-item purchase, emphasizing capability and compliance over unitized quantities. This tender targets security service firms capable of cross-domain testing and incident analysis for defence-related software and devices. Knowledge of service delivery and payroll compliance in a defence procurement context will be advantageous.

Technical Specifications & Requirements

  • Focus areas include: Vulnerability and Penetration Testing for Mobile apps, Web apps, Network, and IoT devices; Security Code Review; Malware Analysis; Application Security Audit (OWASP Top 10); Secure Configuration Review for devices/OS; and Data Communications security.
  • As no explicit technical specs are published, emphasis is on demonstrable capability in multi-domain security testing, risk assessment, and reporting aligned to defence standards.
  • Emphasize: mandatory CERT-In empanelment; experience proof via contracts, execution certificates, or client attestations; flexible invoicing with excess settlement provisions.

Terms, Conditions & Eligibility

  • EMD: ₹20,000.
  • Eligibility entails CERT-In empanelment on bid opening date.
  • Contractors must provide past-project proof via contract-invoice self-certification, client execution certificates, or third-party notes.
  • Payment terms align with defence procurement norms; salaries of personnel deployed at the buyer site must be paid by the service provider, with subsequent reimbursement.
  • Contractual flexibility allows up to 25% changes in quantity/duration pre- and post-award.
  • Non-submission of required certificates/documents can lead to rejection; adherence to buyer-added terms is mandatory.

Key Specifications

  • Product/Service: Vulnerability & Penetration Testing across Mobile, Web, Network, IoT

  • Standards/Certifications: OWASP Top 10 coverage; CERT-In empanelment required

  • EMD: ₹20,000

  • Delivery/Service: Defence domain security testing and reporting

  • Experience: Demonstrated multi-domain security testing experience with client attestations

Terms & Conditions

  • 25% quantity/duration variation allowed before/after award

  • CERT-In empanelment mandatory on bid opening date

  • Payment terms require service-provider payroll payments first, with subsequent client reimbursement

  • Past-experience proofs acceptable via contracts, execution certificates, or client notes

  • EMD of ₹20,000 required with bid submission

Important Clauses

Payment Terms

Service provider salaries must be paid upfront; reimbursement to follow with statutory documents.

Delivery Schedule

Contract duration and quantity may be adjusted by up to 25% before contract issue and after award.

Penalties/Liquidated Damages

Not specified in data; bidders should verify during bid submission and terms review.

Bidder Eligibility

  • CERT-In empanelment active on bid opening date

  • Demonstrable experience in cross-domain security testing (mobile, web, IoT)

  • Compliance with payroll and statutory documentation for deployed personnel

Past Similar Tenders (Historical Results)

5 found

Sashastra Seema Bal Vulnerability and Penetration Testing Tender Shimla Himachal Pradesh 2025

Sashastra Seema Bal (ssb)

SHIMLA, HIMACHAL PRADESH

Posted: 16 December 2025
Closed: 26 December 2025
GEM

Vulnerability and Penetration Testing - Network; Malware Analysis, Secure Configuration Review (Dev

Armoured Vehicles Nigam Limited

THANE, MAHARASHTRA

Posted: 12 December 2025
Closed: 22 December 2025
GEM

Central University Of Haryana Vulnerability Testing Tender Web Application Security Audit 2025

Central University Of Haryana

MAHENDRAGARH, HARYANA

Posted: 24 November 2025
Closed: 4 December 2025
GEM

Directorate General Of Quality Assurance security testing tender 2025 DGQA Network Vulnerability Bidding

Directorate General Of Quality Assurance ( Dgqa)

Posted: 20 November 2025
Closed: 4 December 2025
GEM

Delhi Jal Board Vulnerability and Penetration Testing Tender Central Delhi 2025 - OWASP Top 10 Audit & Web/Mobile App Security

N/a

CENTRAL DELHI, DELHI

Posted: 14 November 2025
Closed: 24 November 2025
GEM

🤖 AI-Powered Bidder Prediction

Discover companies most likely to bid on this tender

Live AI
Historical Data

Required Documents

1

GST registration certificate

2

Permanent Account Number (PAN) card

3

Past experience certificates or execution certificates from clients

4

Financial statements or self-certification of turnover

5

EMD submission document (₹20,000)

6

CERT-In empanelment certificate

7

Technical bid documents and any OEM authorizations if applicable

Frequently Asked Questions

How to bid for CGDA vulnerability testing tender in India 2025?

To bid, ensure CERT-In empanelment is active, compile EMD ₹20,000 documentation, provide past-project execution certificates or client attestations, and submit technical bid with cross-domain security testing capabilities (mobile, web, IoT) along with OWASP Top 10 compliance evidence.

What documents are required for CGDA security testing bid in India?

Bidders must submit GST registration, PAN, EMD ₹20,000, CERT-In empanelment, financial statements, past-performance certificates or execution notes, and technical bid documents. OEM authorizations apply if relevant to the services offered.

What are the essential technical requirements for this tender in India?

The scope includes vulnerability testing, security code review, malware analysis, OWASP Top 10 based security audits, secure device/configuration reviews, and data-communication security assessments across mobile, web, network, and IoT platforms.

What is the contract quantity/duration flex for CGDA tender in 2025?

The buyer allows up to 25% increase or decrease in contract quantity or duration at bid issue and after contract award; bidders must accept revised quantities or duration as applicable.

What are the payment terms for defence security testing contracts in India?

Salaries of deployed personnel must be paid by the service provider upfront, followed by reimbursement to the provider with statutory PF/ESIC documents; specific Defence procurement payment terms apply.

Is CERT-In empanelment mandatory for bid submission in CGDA tender?

Yes, CERT-In empanelment is mandatory on bid opening; bidders must possess active empanelment for the required goods/services to be eligible.

Similar Tenders

5 found

Vulnerability and Penetration Testing - Network, Web Application; Security Infrastructure Review; V

Fatehpur District Central Cooperative Bank Ltd.

📍 FATEHPUR, UTTAR PRADESH

⏰ Deadline: 3 weeks left
🛒 Type: Service
View GEM

Vulnerability and Penetration Testing - Network, Web Application, Mobile applications, IOT devices;

Indian Council Of Agricultural Research (icar)

📍 CENTRAL DELHI, DELHI

Est: ₹2.0 L
⏰ Deadline: 2 weeks left
🛒 Type: Service
View GEM

Vulnerability and Penetration Testing - Network, Web Application, servers; Data Communications and

Tata Memorial Centre

📍 MUMBAI, MAHARASHTRA

EMD: ₹60,000
⏰ Deadline: 2 weeks left
🛒 Type: Service
View GEM

Directorate General Of Quality Assurance Vulnerability Testing Tender Hyderabad Telangana 2026 CERT-IN empaneled

Directorate General Of Quality Assurance ( Dgqa)

📍 HYDERABAD, TELANGANA

Est: ₹49,500
⏰ Deadline: 2 weeks left
🛒 Type: Service
View GEM
Urgent

Regional Pay And Accounts Office Vulnerability Testing Tender Network Security Audit 2026 Location Not Disclosed

Regional Pay And Accounts Office

📍 CENTRAL DELHI, DELHI

EMD: ₹1.0 L
Est: ₹54.0 L
⏰ Deadline: 6 days left
🛒 Type: Service
View GEM