Pre-Qualification Criteria
Key Tender Details
|
Particular
|
Details
|
|
Bid Number
|
GEM/2026/B/7623050
|
|
Tender Publishing Date
|
16 June 2026
|
|
Buyer / Department
|
Ministry of Defence, Department of Military Affairs, HQIDS
|
|
Tender Category
|
Government Tender
|
|
Service Category
|
Professional Training Services
|
|
Training Area
|
SIEM & Log Analysis / Cyber Security / SOC Operations
|
|
Training Mode
|
Offline, Classroom-Based Instructor-Led Training
|
|
Location
|
Bhopal, Madhya Pradesh
|
|
Number of Trainees
|
7
|
|
Approx. Batch
|
1 batch
|
|
Approx. Duration
|
30 working days
|
|
Daily Training Duration
|
4 hours per day
|
|
Total Training Hours
|
120 hours
|
|
Contract Period
|
1 month
|
|
Bid Type
|
Two Packet Bid
|
|
Evaluation Method
|
Total value-wise evaluation
|
|
Reverse Auction
|
Enabled
|
|
Bid Validity
|
180 days from bid end date
|
Important Dates
|
Event
|
Date / Time
|
|
Tender Publishing Date
|
16 June 2026
|
|
Pre-Bid Meeting
|
Not mentioned in the available bid documents
|
|
Bid Submission Closing Date
|
26 June 2026, 03:00 PM
|
|
Bid Opening Date
|
26 June 2026, 03:30 PM
|
|
Technical Clarification Time
|
2 days during technical evaluation
|
|
Auto Extension
|
7 days, up to 2 times, if minimum bid conditions are not met
|
Scope of Work
The selected training provider will conduct offline professional training on SIEM and Log Analysis for 7 personnel. The scope includes delivery of the Certified Cyber Security Operations Analyst training programme, certification support, lab-based learning and practical exposure to SOC operations.
The training provider will be responsible for arranging a qualified trainer, setting up the required computer lab and hardware at DSCC Bhopal, supplying printed and soft study material, conducting hands-on lab exercises, providing feedback sessions and assisting candidates with the certification examination process.
The course is expected to cover SIEM fundamentals, log collection, log normalization, SIEM search and querying, correlation rules, security use cases, incident investigation, dashboards, reporting, threat intelligence integration, SOC automation and final lab assessment.
Training Coverage
The course curriculum includes the following major modules:
- SIEM fundamentals and SOC operations
- Log management fundamentals
- Log sources including firewalls, servers, endpoints, IDS/IPS, VPN and cloud logs
- SIEM architecture, collectors, forwarders, indexers, dashboards and correlation engines
- Log formats and parsing, including syslog, JSON, CEF, LEEF, Windows logs and Apache logs
- Syslog configuration and Windows log collection
- Agent-based log forwarding and endpoint telemetry
- Log normalization, filtering and noise reduction
- SIEM search fundamentals and advanced search queries
- Correlation concepts and correlation rule creation
- Alert generation and alert tuning
- Authentication monitoring, network monitoring and endpoint security monitoring
- Web and proxy log analysis
- Threat hunting basics
- Incident analysis workflow, IOC-based detection and MITRE ATT&CK mapping
- Timeline analysis and case management
- Dashboard creation, reporting and compliance
- Threat intelligence integration
- SOC automation and playbooks
- Final lab assessment and incident report preparation
Generic SIEM concepts may be mapped to tools such as Splunk, IBM QRadar, Microsoft Sentinel, ArcSight and similar SIEM platforms.
Pre-Qualification Criteria
The bidder should be a qualified training institute or professional training service provider with relevant experience in cyber security, SIEM, Log Analysis and SOC-related training. The firm must be an authorized training partner for providing SIEM and Log Analyst certification courses and must submit documentary proof of authorization.
The training provider should have experience in conducting similar training for government organizations, departments, institutions, Defence organizations, PSUs or enterprise clients. Relevant past purchase orders, experience certificates, completion certificates and previous supply or service orders should be submitted for technical evaluation.
The firm should also demonstrate capability to conduct offline training at the buyer’s premises and provide the required training hardware setup, study material and certification support.
Eligibility Criteria
Eligible bidders should meet the following requirements:
|
Criteria
|
Requirement
|
|
Authorized Training Partner
|
Required for SIEM and Log Analyst / CCOA certification training
|
|
Certification Authority
|
ISACA certification support is required for CCOA
|
|
Trainer Certification
|
Trainer should hold valid CCOA certification
|
|
Trainer Experience
|
Minimum 5 years’ relevant instructor experience as per ATC / scope requirement
|
|
Additional Trainer Certifications
|
CISA, CISM, CISSP, ISO 27001 Lead Auditor / Implementer preferred
|
|
Cybersecurity Experience
|
Experience in Cybersecurity, Information Security Governance, SIEM, Log Analysis or IT Risk Management training
|
|
Communication Skills
|
Good communication and presentation skills required
|
|
Similar Project Capability
|
Bidder should provide details of capability in handling similar projects
|
|
Training Mode Acceptance
|
Bidder must accept offline training at DSCC Bhopal
|
|
Hardware Setup
|
Bidder must provide required hardware setup until completion of training and certification exam
|
|
Compliance Statement
|
Clause-wise compliance to scope of work and ATC required
|
Financial Criteria
The GeM bid details mention minimum average annual turnover of ₹3 lakh for the bidder over the last 3 years. However, the ATC/quality requirement sheet also asks for documentary proof of turnover of approximately ₹15 lakh per annum. Bidders should verify the final applicable turnover requirement on the GeM portal before submission.
Audited balance sheets or a Chartered Accountant / Cost Accountant certificate should be uploaded to support turnover claims. If the bidder is less than 3 years old, the turnover for completed financial years after incorporation may be considered as per GeM conditions.
Tender Fee, EMD and ePBG
|
Requirement
|
Details
|
|
Tender Fee
|
Not mentioned / Nil as per GeM bid practice
|
|
EMD Amount
|
₹37,450
|
|
EMD Exemption
|
Yes, for eligible categories as per GeM GTC, including eligible MSE service providers and DPIIT-recognized startups subject to valid supporting documents
|
|
EMD Advisory Bank
|
State Bank of India
|
|
EMD Beneficiary
|
DSCC Public Fund Account, Department of Military Affairs, HQIDS, Ministry of Defence
|
|
Mode of EMD
|
Through GeM bid submission process; EMD / bid security may be submitted as per acceptable GeM modes. Surety bond is also accepted as per the bid document
|
|
ePBG Percentage
|
5%
|
|
ePBG Duration
|
3 months
|
|
MSE Purchase Preference
|
Yes
|
|
MII Compliance
|
Yes
|
Required Table for SkillCouncils.com
|
Detail / Requirement
|
Tender Requirement
|
|
Minimum Average Annual Turnover
|
₹3 lakh as per GeM bid; ATC also asks approx. ₹15 lakh per annum documentary proof
|
|
Net Worth Requirement
|
Not mentioned in the available documents
|
|
Minimum Experience
|
3 years for same/similar services as per GeM bid; 5 years SIEM / Log Analysis / Cybersecurity training experience indicated in scope/ATC
|
|
Submission Mode
|
Online through GeM
|
|
EMD Exemption
|
Yes, for eligible MSEs / Startups / other eligible categories as per GeM GTC
|
|
Tender Fee Required
|
Not mentioned / Nil
|
|
EMD Amount
|
₹37,450
|
|
Mode of EMD
|
GeM submission process; acceptable bid security modes as per GeM GTC; surety bond accepted
|
|
Training Mode
|
Offline
|
|
Bid Type
|
Two Packet Bid
|
|
Reverse Auction
|
Enabled
|
|
Location
|
Bhopal
|
|
Industry
|
Cybersecurity Training / IT & Software / Skill Development
|
Submission Guidelines
Bidders must submit their bid online through the GeM portal before the bid closing deadline. The tender follows a Two Packet Bid system, requiring separate technical and financial submission as per GeM process.
The technical bid should include all eligibility documents, certificates, compliance statements and proof of experience. Price-related information should not be included in the technical bid. Bidders should submit a clause-wise compliance statement clearly mentioning compliance or deviation, if any.
The bidder should upload all documents requested under the bid, ATC and scope of work. Any missing or incomplete document may affect technical evaluation. The bidder must also upload the ATC compliance table separately on the firm’s letterhead with compliance marked as Yes or No.
Document Checklist
Bidders should prepare and upload the following documents:
|
Document
|
Requirement
|
|
GeM Registration Details
|
Required
|
|
Experience Certificates / Past Work Orders
|
Required for similar training experience
|
|
Completion Certificates
|
Required wherever available
|
|
Bidder Turnover Proof
|
Audited balance sheets or CA / Cost Accountant certificate
|
|
ISACA Authorization / Training Partner Certificate
|
Required
|
|
CCOA / Trainer Certification Proof
|
Required
|
|
Instructor Profile
|
Required
|
|
Instructor Experience Certificate
|
Required
|
|
OEM / Certification Agency Authorization
|
Required, wherever applicable
|
|
Commercial Registration Certificate
|
Required
|
|
Tax Registration Certificate
|
Required
|
|
PAN Card Copy
|
Required
|
|
Bank Details / Cancelled Cheque
|
Required
|
|
ISO/IEC 27001 Certificate
|
Required as per scope conditions
|
|
ISO 9001 Certificate
|
Required as per scope conditions
|
|
ISO 14001 Certificate
|
Required as per scope conditions
|
|
Company Profile
|
Required
|
|
Compliance to Scope of Work
|
Required
|
|
ATC Compliance Table on Letterhead
|
Required
|
|
Self-Undertaking for Offline Training
|
Required
|
|
Self-Undertaking for Hardware Setup
|
Required
|
|
Self-Undertaking for Exam / Certification Support
|
Required
|
|
Supporting Documents for EMD / Turnover / Experience Exemption
|
Required if exemption is claimed
|
|
MSE / Startup Certificate
|
Required if relaxation or exemption is claimed
|
|
