Compliance requirements
The bidder must confirm the standard exclusion grounds, including convictions for participation in a criminal organisation, corruption, fraud, terrorist offences, money laundering or terrorist financing, and the other exclusion grounds set out in the tender documents. If an exclusion ground applies, the bidder may provide evidence of self-cleaning where allowed. Subcontractors to be used in performance are also subject to checks at the first tier.
Qualification criteria and exclusion grounds
The bidder must have successfully designed, delivered and evaluated at least five cyber training or exercise projects for government authorities within the last 36 months, similar to the subject of this procurement. Similar experience means large-scale Capture the Flag competitions and/or live-fire cyber exercises, national or international, that meet all of the following: at least 60 participants, attack-and-defence scenarios with at least 30 different attack vectors chained in one attack path compliant with the MITRE defence framework from the Blue Team side, at least two consecutive days of active exercise execution, and structured scoring, real-time monitoring and a post-event evaluation or After-Action Report. The bidder must also demonstrate clear ownership or exclusive rights of use of the proposed cyber range environment platform, supported by a public source reference and the overview and extracts required by the technical specification. The bidder must confirm that the bid fully complies with the tender documents, that any equivalent solution is explained and evidence is attached if needed, that no disallowed subcontractor is used, and that the bid is not subject to international sanctions. If the notice does not contain a precise requirement, the exact details must be checked in the tender documents.