ClosedServicesEuropeanOpen

Penetration Testing

Rijksdienst Caribisch Nederland · Open · 226565

0 of 6 core insights found

Measures presence, not accuracy · documents remain authoritative

ScopeAdvicePoints of attentionSuitability requirementsAward criteriaTimeline

Type

Services

72800000

Estimated value

Not published

To deadline

Ongoing

Knock-outs

n/a

exclusion grounds

Award basis

Best price-quality ratio

Assess manuallyconfidence low

The Rijksdienst Caribisch Nederland (RDCN) is requesting an open tender for periodic penetration testing of the entire IT landscape, including applications, network components, and platforms. Due to continuous changes in the IT environment, systems must be tested regularly to comply with the information security policy. The tender requires a combination of white-box, grey-box, and black-box methodologies to uncover both internal and external vulnerabilities. The contractor shall provide a structured test plan, detailed reports including risk analyses, and recommendations for mitigation. Confidentiality, compliance with laws and regulations, and a clear communication structure are essential. The services must be scalable, taking into account the geographical distribution of the RDCN locations in the Caribbean.

Services · Open · European procedure

European

Contracting authority

Rijksdienst Caribisch Nederland

Contract type

Services

Open

Estimated value

Estimate not published

Submission deadline

Ongoing

17:00

Scope

European

European procedure

Lots

Single contract

Main CPV code

72800000

Location

Kralendijk

CharacteristicsCPV 72ServicesEU tenderpenetration testwhite boxgrey box

01What is being requested

The Rijksdienst Caribisch Nederland (RDCN) is requesting an open tender for periodic penetration testing of the entire IT landscape, including applications, network components, and platforms. Due to continuous changes in the IT environment, systems must be tested regularly to comply with the information security policy. The tender requires a combination of white-box, grey-box, and black-box methodologies to uncover both internal and external vulnerabilities. The contractor shall provide a structured test plan, detailed reports including risk analyses, and recommendations for mitigation. Confidentiality, compliance with laws and regulations, and a clear communication structure are essential. The services must be scalable, taking into account the geographical distribution of the RDCN locations in the Caribbean.

The IT landscape, including the associated applications and network components of the Rijksdienst Caribisch Nederland, is subject to continuous change. New applications are implemented and old applications are regularly updated. The tender has been established because the entire IT landscape is subject to regular changes and, according to the information security policy, a test must be performed periodically. The penetration test is not limited to applications; parts of the network or a platform are also regularly tested. The following methodologies are applied when performing the penetration

72800000Services

02Exclusion grounds

Exclusion grounds — consult the ESPD

No specific exclusion grounds were extracted. In a European tender, the mandatory and discretionary grounds of art. 2.86/2.87 of the Dutch Procurement Act almost always apply — check the European Single Procurement Document (ESPD).

03Value in context

Estimate not published

The contracting authority did not publish an estimated value — common for a large share of contracts. The EU threshold for diensten is € 221.000, for reference.

04Likely competitors

#Likely bidderFitWins

1Ordina Unknown8620×

2Centric Netherlands B.V.SME8556×

3KPN B.V.SME8327×

4Secura B.V.SME8314×

5Protinus IT B.V.SME8232×

6Capgemini Nederland BV - OverallSME8224×

05Legal themes that may be relevant here

Advies 290> Meervoudig onderhandse aanbesteding van RAW-raamovereenkomst met een looptijd van één jaar voor rioolreiniging en rioolinspectie Advies 83> Openbaar nationale aanbestedingsprocedure voor een raamovereenkomst voor vertaaldiensten. IIB dienst en gebondenheid aan algemen Advies 426> Het betreft een Europese openbare procedure voor WMO-vervoer, leerlingenvervoer, participatiewetvervoer en lokaal vervoer, plus Advies 84> Openbaar nationale aanbestedingsprocedure voor een raamovereenkomst voor vertaaldiensten. IIB dienst en gebondenheid aan algemen Advies 111> Europese openbare aanbestedingsprocedure voor vogeltellingen. Als een door de aanbestedende dienst betrokken beoordelaar op de v

06Frequently asked questions

What is the scope of the requested penetration tests?

The penetration tests cover the entire IT landscape, including applications, network components, and platforms. This is necessary because the IT landscape and the associated applications are subject to continuous change.

Which methodologies are used during the execution of the penetration tests?

When performing the penetration tests, white box, grey box, and black box methodologies are applied to test security.

Why has this tender for penetration testing been established?

The tender has been established because the IT landscape changes regularly and, according to the information security policy, a test must be performed periodically.

Automatically compiled from the official tender data and documents.

07Estimated value versus the market

p25
€ 327K

median
€ 800K

p75
€ 2,5 mln

deze opdracht

Gegunde waarden in CPV 72 · diensten n=1436