Provision of services for the assessment of cyber security ecosystem in the Republic of Serbia

New clarification added: Question:Please clarify, if related to two references proving bidders track record in last three years, copies of actual contracts executed with the clients should be submitted as part of the proposal? Please note that contracts are confidential, and as such cannot be shared with the third parties without clients' consent.Answer:Yes, at least two contracts relevant to this ToR needs to be submitted, supported by a reference letters issued by the purchasers of the services. As you wrote in your e-mail there is an option to ask for the clients' consent. If no consent is provided then you should upload e-mails from the respective clients confirming this. Still, reference letters have to be provided. You can also submit contracts by not revealing the confidential information (hide the confidential parts), if this is in line with the client's policy. In order to be able to evaluate your proposal properly we need to have documents proving your experience relevant to this ToR.

New clarification added: Question:Please clarify, if our understanding of the team structure to be proposed and evaluation of the team members outlined below is correct.Proposed team should include Team Leader and Team Members that fit minimum requirements stated under qualification criteria, and they will be essentially Key Personnel (or core team) on the project. Only CVs of the Key Personnel are subject to evaluation, and only for Key Personnel signed Statements of Exclusivity and Availability are to be provided.In addition to Key Personnel, pool of non-key experts can be proposed, however for their CVs no points are allocated during the evaluation of the technical proposal, i.e. their CVs are not subject to evaluation.Is there an envisaged workload split, in terms of proportion of man/days allocated to the Key Personnel vs. man/days allocated to Non-Key Experts?Answer:Your understanding of the team structure is right and there is no envisaged workload split in terms of proportion of man/days for Key and Non-Key Personnel.  

New clarification added: Question:Within the Qualification criteria it is stated that “At least two contract relevant to this ToR needs to be submitted, supported by a reference letter issued by the purchasers of the services, to qualify for further evaluation”.If relevant projects confirming our track record in the past three years relate to UN funded projects, please clarify if providing a reference letter is still needed? We have not been provided with reference letters for such projects before. Would providing the contact details of the UN personnel responsible for the projects delivered suffice?Answer:If the contract you wish to submit was signed with UNOPS Serbia Office, then no reference in support to such contract is needed, since we keep record on contractors' performance. For contracts with any other UN organization reference letters are necessary.   

New clarification added: Question:The Form I states in part "I confirm that I am not engaged in other projects in a position for which my services are required during the periods where my services are required under this RFP." Yet your answer to an earlier question of clarification mentions that only the Team Leader must be engaged at least 50% of the leader's time on this project. Can we adjust the quoted language above to remove the implication that all team members who sign it must work only on this project for the 15-17 month period? It is unrealistic that team members other than the leader can devote 100% of their time.Answer:The sentence in the Form I says: during the periods where my services are required under this RFP. For example, if the Team Leader is engaged 50% of his time on this project it has to be 50% of his time. He should not to be engaged on several projects during the planned 50% at the same time. He is free to work on other projects during other 50% of his time.Also, it does not mean that all team members have to work only on this project all the time, but to work on this project during the period required by the plan. For example, you planned one expert to be engaged for 15 days in a certain period - it means, he should be available to work the planned 15 days on this projects and not to be engaged by several other projects during the planned 15 days. In the periods when their services are not required they are free to be engaged by as many projects as they like. 

New clarification added: Question:Is Form I to be completed by each non-company putside expert or subcontractor, or only by the team leader?Answer:The Form I has to be filled by the Team Leader and Team Members. 

New clarification added: Question:Please clarify, what information is required for the Form G Performance Statement Form. Should the Offeror provide the information about its relevant experience and implemented projects? Answer:Yes the Offeror should provide information about relevant implemented projects as per the table in the Form G. 

New clarification added: Question:Please clarify if involving external individual (not a company) as a key expert, is considered subcontracting? In the Form C, part related to List of Subcontractors or suppliers it is mentioned to state full legal name, indicating that it relates to companies, not individuals.Answer:No, the part for subcontracting in the Form C relates to companies, not individuals.

New clarification added: Question:We are kindly aksing you to clarify, if original certificates of incorporation are in languages other than English, do we need to provide translation of the documents into English language?Answer:If original certificates of incorporation are in Serbian language then translation is not needed, but if the document is in any other language the translation into English is necessary. 

New clarification added: Question: In the document RFP - Section II, Schedule of requirements, under point 5 - Outputs, Fourth Phase is stated:"Facilitate the third 3 days workshop in Serbia on the governance of the CII with relevant state institutions, resulting in implementing and executing cyber risk mitigation framework with at least two Operators of Essential Services (OES)"Could you please clarify what is meant by "implementing and executing cyber risk mitigation framework with at least two OES"? Our understanding is that within the scope of the project an assessment on the governance of the CII and on the execution of cyber risk management framework with two OES is to be performed, including providing recommendations for the enhancement, but not providing support in the implementation.Answer:Yes, an assessment on the governance of the CII and on the execution of cyber risk management framework with two OES is to be performed and recommendations for it's enhancement provided.  

New clarification added: Question:Please confirm that the language of the reports to be produced and working language for the workshops is English, as the Schedule of Requirements defined only the language of communication with "Norway for You - Serbia".Answer:The reports are to be provided in English language as they are submitted to the Project Team "Norway for You - Serbia", the workshops will be in English and Serbian with translation provided.

New clarification added: Question:Do all companies in the consortium need to meet the minimum 3 years requirement of continuous business or it can be the case of only the consortium leader?Answer:It can be the case of the consortium leader only.

New clarification added: Question:As the Team Leader must be engaged in the project at least at 50% of his working time, are there any indications on the extent of the engagement foreseen for the key Team Members, such as the cybersecurity expert, and the legal expert? Answer:No, this request applies to the Team Leader only. 

New clarification added: Question:In case of consortium of two or more companies, should each company be registered under the UNGM platform or one of them is enough?In this case the registered company should be the lead partner?Answer:In case of consortium it is necessary that the leading partner is registered in UNGM platform since it will submit the proposal. Other members of the consortium may register as well. The registration on UNGM is useful, since all registered companies will be able to search for tenders in the future - the registration process if simple and free (basic level). 

New clarification added: Question:There should not be any adverse report regarding the provided services for at least three years preceding the date of bid opening. No Adverse Action Confirmation Form is required”.However, Form H: No Adverse Action Confirmation Form, included in document RFP- Section III: Returnable Bidding Forms refers to period of last five (5) years.Please clarify if when filling out Form H, period should be changed to 3 years.Answer:Yes, please adjust the Form H to the tender criteria.

New clarification added: Question:Related to Eligibility and Formal Criteria "Offeror has no pending claims for local and national taxes or other duties such as workers’ contribution compensation. Certificate of no claims for taxes is required, or any other valid proof, issued by relevant authorities and not older than 6 months from the date of the proposal", please clarify if documentary evidence needs to be submitted by each JV/consortium member identified in the Form A?Answer:Certificate of incorporation issued by the relevant government body is required for all members in case of consortia, as stated in the tender. Certificate of no claims for taxes is needed for the leading company in the consortia. 

New clarification added: Question:In the case when all companies involved in a bid are members of one large global network, please clarify if it is necessary to include each individual firm involved in the JV/Consortium/Association structure (Form A), or it is possible to have a local firm operating in the country of service execution submitting the proposal on behalf of the global network?Answer:You have to distinct if the offer is submitted by one company or by consortium. There is a difference between a membership in a global network and consortium. If the company is a member of one large global network the basic information on the network could be presented as well information on the status of the company in the referenced network (separate document). The company operating in the country should be registered in accordance with the local laws and it can submit the Offer for itself (if no other companies are involved in the offer and potential future implementation). In that case the Offeror does not fill the Form A.​In the case of consortium the Form A: Joint Venture Partner Information Form should be properly filled with all members of consortium that participate in submission of offer and potential future implementation.   

New clarification added: Question:Form G - Performance Statement Form - Is this template that will be used during the project by the procuring organization, or one vendors must address as part of our proposal? Answer: Form G - Performance Statement Form has to be filled by the Offeror as a part of the proposal. It includes information of previous provision of services or goods.Question:  Will a Performance Security hold-back be used in this procurement, and if so, at what amount?Answer: Performance security is not required in this tender. QuestionIs the procuring organization willing to negotiate some contract provisions with the successful proposer, such as limitation of liability?AnswerNegotiation with the selected best Offeror are always possible. The content of negotiations cannot be determined in forward. 

New clarification added: Question:1. For the technical requirements (Form D), can a standalone technical proposal document be submitted covering the specified areas or are we required to use the form?Answer:2. You can submit the stand alone document. It is important that all sections listed in the Form D are covered (description of the organization, methodology, approach, etc...). Also, please insert the number of pages (instead of the responses) to provide information where the specific sections can be found in the standalone document. Alos, the From D has to be signed as all other Forms.  

New clarification added: Question:We would like to kindly ask, if possible, for a two weeks extension of the submission deadline, i.e., February 10th. The main reason for our request is that this tender was published still during the last part of the Christmas holiday season when most of us were out from the office. We feel that we could prepare a more competitive proposal if the deadline is slightly postponed.Answer:Thank you for expressing your interest in our tender. Potential extension of the deadline will depend on the number of bids we receive. If the response is not satisfactory the deadline will be extended. 

New clarification added: Q1: As we are a financing and logistics corporation, having a sub-contracting agreement with a Cyber Security services provider, would you accept our offer and provide us full point in case we submit nominating and providing the CV of our sub-contractor ?A1: The Bidders are invited to submit proposals in accordance with the requirements set out in the tender. All offers will be evaluated against the TOR and the criteria after the tender closure.