- CV Help
- All Jobs
- Contact us
Provision of consultancy services for the information security management system assessment and certification of the national information technology authority
National information technology authority
10th June 2019
REQUEST FOR EXPRESSIONS OF INTEREST FOR PROVISION OF CONSULTANCY SERVICES FOR THE INFORMATION SECURITY MANAGEMENT SYSTEM ASSESSMENT AND CERTIFICATION OF THE NATIONAL INFORMATION TECHNOLOGY AUTHORITY — UGANDA REGIONAL COMMUNICATION INFRASTRUCTURE PROGRAM (RCIP) UGANDA
Reference Number: NITA-U/RCIP/CONSULT/18-19/00108
The Government of Uganda represented by the National information Technology Authority - Uganda (NITA-U) has received funding from the World Bank toward the cost of the Regional Communications Infrastructure Program [RCIP] Uganda and intends to utilize part of this funding for consultancy services.
The consulting services ('the Services") include the Information Security Management Systems Assessment and Certification of the National Information Technology Authority - Uganda. The scope of the assessment will therefore include NITA-U Data Center and Disaster Recovery
Site. The assessment will assist NITA-U to meet compliance requirements with the latest ISO 27001 Standard and attain certification.
NITA-U now.-" invites eligible consulting firms ("Consultants") to indicate their interest in providing the Services. Interested Consultants should provide information demonstrating that they have managerial and organizational capacity as well as the required qualifications and relevant experience to perform the Services.
The shortlisting criteria are:
- The ﬁrm shall be legally registered organizations in Uganda or overseas
- The firm must demonstrate previous continuous experience and expertise in handling Information Security Management System and ISO 27001 audits and assessments in at least 3 (three) assignments of similar type, scope and nature within the last 5 (ﬁve) years
- The firm must demonstrate at least two (2) similar assignments in scope and previous expertise in supporting organizations attain the ISO 27001 certiﬁcation within the last ﬁve years
- The consultants must demonstrate ability to ﬁeld onsite a team of experts with required qualiﬁcations and experience for the assignment who shall collectively have experience in ISO 27001 Auditing and Certification for data centers.
interested eligible Consultant Firms should also submit detailed Company profile, contact address. And any other relevant qualification documents.
The attention of interested Consultants is drawn to paragraph 1.9 of the World Bank's Guidelines: Selection and Employment of Consultants under IBRD Loans and IDA Credits and Grants by World Bank Borrowers, dated January 2011, revised July 2014 ("Consultant Guidelines"), setting forth the World Bank's policy on conﬂict of interest. Consultants may associate with other firms in the form of a joint venture or a sub-consultancy to enhance their qualiﬁcations. The type of association whether a joint venture or a sub-consultancy, where applicable, must be clearly indicated in the Expression of Interest.
The consulting firm will be selected in accordance with the selection Based on Consultants Qualiﬁcation (COS) method set out in the Consultant Guidelines.
Further information can be obtained at the address below during ofﬁce hours from 08.00 to 17.00hours Kampala time on working days and from NITA-U website (www.nita.go.ug )
Expressions of Interest clearly marked "information Security Management Systems Assessment and Certification of the National Information Technology Authority - Uganda" must be delivered in a written form to the address below in person or by e-mail by 10th June 2019 at 11 .00a.m.
National Information Technology Authority of Uganda
Plot 7A Rotary Avenue (Former Lugogo Bypass)
P. 0. Box as-151, Kampala-Uganda