Tender detail

Regional cyber exercise package

Summary

The procurement concerns a regional cyber exercise package intended to strengthen and validate cybersecurity capabilities through hands-on training and to improve incident response capabilities in Central Asia. The bidder must have at least five similar cyber training or exercise references from the last 36 months and must prove ownership or exclusive use rights for the cyber range environment used to deliver the services.

Reference number
313330-0000
Buyer
E-riigi Akadeemia Sihtasutus
Country
Estonia (EST)
Procedure
Open procedure
CPV
72222300 Information technology services
Deadline
2026-07-31
Status
Open
Contract subject
Services
Estimated value
Not published
Source
RHR

Participation requirements

Tender requirements are available in the official tender documents.

Compliance requirements

The bidder must confirm the standard exclusion grounds, including convictions for participation in a criminal organisation, corruption, fraud, terrorist offences, money laundering or terrorist financing, and the other exclusion grounds set out in the tender documents. If an exclusion ground applies, the bidder may provide evidence of self-cleaning where allowed. Subcontractors to be used in performance are also subject to checks at the first tier.

Qualification criteria and exclusion grounds

The bidder must have successfully designed, delivered and evaluated at least five cyber training or exercise projects for government authorities within the last 36 months, similar to the subject of this procurement. Similar experience means large-scale Capture the Flag competitions and/or live-fire cyber exercises, national or international, that meet all of the following: at least 60 participants, attack-and-defence scenarios with at least 30 different attack vectors chained in one attack path compliant with the MITRE defence framework from the Blue Team side, at least two consecutive days of active exercise execution, and structured scoring, real-time monitoring and a post-event evaluation or After-Action Report. The bidder must also demonstrate clear ownership or exclusive rights of use of the proposed cyber range environment platform, supported by a public source reference and the overview and extracts required by the technical specification. The bidder must confirm that the bid fully complies with the tender documents, that any equivalent solution is explained and evidence is attached if needed, that no disallowed subcontractor is used, and that the bid is not subject to international sanctions. If the notice does not contain a precise requirement, the exact details must be checked in the tender documents.