Services - 639213-2020

31/12/2020    S255

Greece-Maroussi: Supporting Activities on Cybersecurity Strategies, Indexes and Frameworks

2020/S 255-639213

Contract notice


Legal Basis:
Regulation (EU, Euratom) No 2018/1046

Section I: Contracting authority

I.1)Name and addresses
Official name: European Union Agency for Cybersecurity
Postal address: 1 Vasilissis Sofias Street
Town: Maroussi
Postal code: 15124
Country: Greece
Telephone: +30 2814409711
Internet address(es):
Main address:
The procurement documents are available for unrestricted and full direct access, free of charge, at:
Additional information can be obtained from the abovementioned address
Tenders or requests to participate must be submitted electronically via:
Tenders or requests to participate must be submitted to the abovementioned address
I.4)Type of the contracting authority
European institution/agency or international organisation
I.5)Main activity
Other activity: Cybersecurity

Section II: Object

II.1)Scope of the procurement

Supporting Activities on Cybersecurity Strategies, Indexes and Frameworks

Reference number: ENISA F-CO2-21-T01
II.1.2)Main CPV code
73000000 Research and development services and related consultancy services
II.1.3)Type of contract
II.1.4)Short description:

ENISA seeks to contract the services of a minimum of 3 and maximum of 8 service providers which can provide support for ENISA’s work on Cybersecurity Strategies, on mapping the impact of cybersecurity by means of quantitative and qualitative indexes and on developing cybersecurity taxonomies and (quantitative and qualitative) assessments of cybersecurity, throughout the years 2021-2024. ENISA envisages various projects per year in this area, on specific topics such as supporting National Cybersecurity Strategies activities related to citizen awareness, identification of information sources and desktop research on cybersecurity indexes and workflows, mapping workflows and doing business analysis for the collection of information and specifications for cybersecurity indexes, etc. The successful bidders should be able to demonstrate significant experience and skills in this area, with emphasis on the aspects dealt with in the annual ENISA work programme.

II.1.5)Estimated total value
Value excluding VAT: 600 000.00 EUR
II.1.6)Information about lots
This contract is divided into lots: no
II.2.2)Additional CPV code(s)
73210000 Research consultancy services
II.2.3)Place of performance
II.2.4)Description of the procurement:

The objectives of the support services in the area of activities on cybersecurity strategies, indexes and frameworks may take but are not limited to, the following forms:

• perform research and analysis on the topics mentioned above; relevant existing literature, reports, white papers, legislation, policies, strategies, initiatives and other research projects;

• provide support for stakeholder engagement activities of ENISA and in particular interviews with related stakeholders (e.g. planning, design, implementing, drafting minutes, etc.). Stakeholders are identified by ENISA and include among else policy makers, MS representatives, developers, manufacturers, solution vendors, industry associations, standardization bodies, certification organisations, as well as SMEs, SME associations, customer associations, government organizations, large enterprises, etc.;

• support ENISA in collecting input (initial phase) and feedback (review phase) from related stakeholders for the studies and reports mentioned above. This involves the setting up of online tools and/or platforms for surveys, questionnaires, polls, etc. based on the content and the requirements set by ENISA on the topics mentioned above;

• support ENISA in processing the results from interviews, surveys and questionnaires. This may include extraction of statistical values, design of infographics, compilation of summary reports/slides, quantitative and qualitative assessments, etc.;

• support ENISA in developing targeted methodologies for building cybersecurity taxonomies and frameworks, quantifying impact assessments, identifying information workflows, information and knowledge synthesis and their valorisation. Assist ENISA in evaluating the inter-relationships between different elements of the cybersecurity ecosystem, in quantitatively and qualitatively assessing their impact and in identification of relevant measurable key performance indicators;

• support ENISA in the drafting of reports based on information collected (via interviews and surveys) or based on stocktaking. Support activities in this category may include proofreading, editorial work, plagiarism checks, substantiating findings by correlating to research and analysis, etc.;

• based on ENISA provided taxonomies, support the mapping of ENISA good practices and recommendations to relevant existing literature, reports, white papers, legislation, policies, strategies, initiatives and other research projects;

• perform SWOT analysis for various kinds of technical and organisational cases related to the scope of this tender, to present this to ENISA;

• maintain up-to-date repositories of relevant existing literature, reports, white papers, legislation, policies, strategies, initiatives and other research projects throughout the length of the project and provide technical means (e.g. online platforms, structured formats, etc.) to present this to ENISA;

• provide tools and/or services to support ENISA in validating the findings, results, good practices and recommendations with stakeholders, such as online questionnaires, online platforms for gathering comments, etc.;

• assist ENISA in the organisation of workshops and the drafting of minutes of the workshops;

• present effectively achieved results by using presentation techniques (paper documents, on-line documents, slides, demonstrators, graphs, videos, etc.);

• compile collection of relevant contacts;

• support ENISA in updating existing inventories, online tools, research and analysis, surveys, etc.

Various specific contracts based on the annual ENISA Work Programme will be launched periodically to the successful framework contractors based on the ‘Reopening of Competition’ procedure. Depending on the changing needs of the contracting authority and budget availability, this overall budget could be increased by up to 50 % by employing a ‘negotiated procedure without prior publication of a contract notice’.

II.2.5)Award criteria
Price is not the only award criterion and all criteria are stated only in the procurement documents
II.2.6)Estimated value
Value excluding VAT: 600 000.00 EUR
II.2.7)Duration of the contract, framework agreement or dynamic purchasing system
Duration in months: 12
This contract is subject to renewal: yes
Description of renewals:

The ensuing framework contracts will be for an initial 12-month period, renewable on a yearly basis up to a maximum of 3 years.

II.2.10)Information about variants
Variants will be accepted: no
II.2.11)Information about options
Options: no
II.2.13)Information about European Union funds
The procurement is related to a project and/or programme financed by European Union funds: no
II.2.14)Additional information

Section III: Legal, economic, financial and technical information

III.1)Conditions for participation
III.1.2)Economic and financial standing
Selection criteria as stated in the procurement documents
III.1.3)Technical and professional ability
Selection criteria as stated in the procurement documents
III.2)Conditions related to the contract
III.2.3)Information about staff responsible for the performance of the contract
Obligation to indicate the names and professional qualifications of the staff assigned to performing the contract

Section IV: Procedure

IV.1.1)Type of procedure
Open procedure
IV.1.3)Information about a framework agreement or a dynamic purchasing system
The procurement involves the establishment of a framework agreement
Framework agreement with several operators
Envisaged maximum number of participants to the framework agreement: 8
IV.1.8)Information about the Government Procurement Agreement (GPA)
The procurement is covered by the Government Procurement Agreement: no
IV.2)Administrative information
IV.2.2)Time limit for receipt of tenders or requests to participate
Date: 29/01/2021
Local time: 18:00
IV.2.3)Estimated date of dispatch of invitations to tender or to participate to selected candidates
IV.2.4)Languages in which tenders or requests to participate may be submitted:
IV.2.6)Minimum time frame during which the tenderer must maintain the tender
Duration in months: 3 (from the date stated for receipt of tender)
IV.2.7)Conditions for opening of tenders
Date: 01/02/2021
Local time: 09:30

ENISA Athens office, Vasilissis Sofias Street 1, 151 24 Maroussi, Attiki, GREECE.

Information about authorised persons and opening procedure:

A maximum of 1 legal representative per participating tenderer may attend the opening session. Tenderers shall inform the Agency in writing of their intention to attend by e-mail to at least 2 working days prior to the opening session. Failing that, the contracting authority reserves the right to refuse access to its premises.

Section VI: Complementary information

VI.1)Information about recurrence
This is a recurrent procurement: no
VI.2)Information about electronic workflows
Electronic invoicing will be accepted
Electronic payment will be used
VI.3)Additional information:
VI.4)Procedures for review
VI.4.1)Review body
Official name: Court of Justice of the European Union
Postal address: boulevard Konrad Adenauer, Kirchberg
Town: Luxembourg
Postal code: 2925
Country: Luxembourg
Telephone: +352 4303-1
Fax: +352 4303-2600
VI.4.2)Body responsible for mediation procedures
Official name: The European Ombudsman
Postal address: 1 avenue du Président Robert Schuman, PO Box 403
Town: Strasbourg
Postal code: 67001
Country: France
Telephone: +33 388172313
Fax: +33 388179062
VI.5)Date of dispatch of this notice: