What is the object of the project?

The Ministry of Digital Governance wishes to award a contract to a specialised Contractor for the provision of Risk Monitoring and Threat Intelligence services within the EU, in order to ensure the early detection, analysis and response to cyber threats that may affect the security of its information systems. These services should contribute to the ongoing risk assessment, attack prevention and improvement of the Promoter’s cyber resilience, in compliance with the applicable normative and regulatory frameworks, such as GDPR and NIS.

As part of the Risk Monitoring service, the Contractor shall provide continuous monitoring and analysis of the level of risk faced by the Project Owner, through attack surface mapping, vulnerability assessment and real-time monitoring of suspicious activities. The service shall include risk reporting, analysing potential impacts and formulating proposals to improve the Promoter’s overall cybersecurity strategy.

Similarly, as part of the Threat Intelligence service, the Contractor shall provide services for the collection, analysis and dissemination of information on cyber threats, both regularly and on a strategic level. This information shall be derived from commercial, open (OSINT) and closed sources (Dark Web monitoring) and shall provide specialised analyses on cybercriminal activities, attack techniques and potential targeted threats to the Promoter. In addition, the Contractor shall support the process of integrating this information into the defense policies of the Promoter, enhancing its capabilities to prevent and respond to security incidents.

The complete service shall be provided through a web-based platform with threat and risk management capabilities, and through specialised reporting and advisory services that will allow the Promoter to optimise its defenses against modern cyber threats.