Security Surveillance Centre Services (SOC as a Service) Text automatically translated in your browsing language Automatically translated

VZ 04/2025

The subject of the public contract is the provision of services of a security surveillance centre, i.e. the collection and evaluation of logs in the contracting authority's ICT environment, namely: - takeover of the service for collecting and evaluating logs in the ICT environment; - collection of events (logs) from ICT equipment within the scope defined by the contract; - secure storage and archiving of logs within the scope defined by the contract; - evaluation of collected events according to defined rules in order to identify potential security breaches; - conducting forensic analysis in case of significant incidents; - provision of exit services. The ICT environment of the Ministry of Labour and Social Affairs includes tens of thousands of users, critical and important information systems, dozens of applications, thousands of integration links, thousands of active elements, dozens of different suppliers and its scope covers the entire Czech Republic. The Ministry of Labour and Social Affairs operates critical and important systems regulated by Act No. 181/2014 Coll., on Cyber Security, which clearly defines the requirements for the collection of logs and their evaluation. A properly set-up log collection and analysis service fully covers the risk not only of own damage resulting from the misuse of protected information (personal data leaks, fraud, etc.), but also of sanctions by the supervisory authority (National Cyber and Information Security Authority – ‘NÚKIB’). The services of the Security Monitoring Centre shall meet the following essential requirements: - collect all relevant information from all facilities in the ICT environment of the Ministry of Labour and Social Affairs, - evaluate events in order to identify potential security breaches, - comply with the requirements of Decree No. 82/2018 Coll. (Cybersecurity Decree – ‘the VKB’), in accordance with the following paragraphs: o § 22 Recording of events of the information and communication system, its users and administrators; § 23 Detection of cyber security incidents; o § 24 Collection and evaluation of cyber security incidents. Detailed technical requirements for the solution demanded under this public contract are further described in Annex B to the tender documentation, which consists of the draft Contract, including the specification and other annexes and requirements. Text automatically translated in your browsing language Automatically translated

Electronic via:
https://nen.nipez.cz/profil/MPSV

Electronic submission: required
https://nen.nipez.cz/profil/MPSV

Not available

17/04/2025 10:00

Any country
CZ Česko

72600000 - Computer support and consultancy services

72261000 - Software support services

72263000 - Software implementation services

72224100 - System implementation planning services

75130000 - Supporting services for the government

79000000 - Business services: law, marketing, consulting, recruitment, printing and security CVP code deduced from the text of the procedure AI-generated

Technická úroveň kybernetické bezpečnosti

135,000,000.00 CZK

Not available

Not available