All Tenders  →  Rwanda  /  Kigali

SECURITY AUDIT OF NATIONAL PUBLIC KEY INFRASTRUCTURE


RWANDA UTILITIES REGULATORY AUTHORITY

Category:
Bid notice date:
November 26th, 2017
Bid closing date:
December 19th, 2017
Bid document fee:
0 RF
Bid security:
0 RF
Procurement Ref No:
02/RURA/EOI/2017-2018

Rwanda Utilities Regulatory Authority (RURA) is a National Organ established by the Law N°09/2013 of

01/03/2013 with the mandate to regulate certain Public Utilities in Rwanda among which the ICT sector and to encourage private investments while protecting consumer interest in respect to affordability, availability and quality of services.

Accordingly to the Law n°24/2016 of 18/06/2016 governing information and Communication Technologies, especially in Article, 147,152 and 175; The Regulatory Authority shall set regulation on requirements for the issuance of a certificate or an electronic signature, determine the conduct of the certification service provider and determine terms and conditions for the licensing framework

2, DESCRIPTION OF SERVICES

According to the Regulations Governing Certification Service Providers in Rwanda, every applicant shall pass an Initial audit before granting any license, Thus, any Certification Authority (CA) needs to be audited before commencing its operation and also at least once a year; a Certification service provider shall be subject to audit in respect with its accreditation by the controller. The main purpose of the auditing is to check the compliance of CA against the set forth rules, procedures and the practices which govern its operations,

The main purpose of this auditing is to ensure compliance of the Rwanda PKI (Root CA and Government CA) against the set of established legal and regulatory frameworks, policies, operational procedures and practices which govern their operations. The Rwanda PKI should abide by the terms and conditions mentioned in their policies. As per the terms and conditions; Rwanda PKI will be audited for its infrastructure, security procedures etc,

The Rwanda Utilities Regulatory Authority would like then to invite consulting firms, specialized in the field of security audit, to express their interest to carry out the Audit of the National PKI infrastructure.

3. REQUIRED COMPETENCIES AND EXPERTISE

The following will be considered in the bidding process:

3.1. The firm should have five (5) years of similar experience (auditing Public Key Infrastructure) proven by at least three (3) approved certificates of completion from different organizations in the last five years;

3.2. Explanation of the approach to performing security audit, including the audit methodology, nature, timing and extent of audit procedures to be performed;

3.3. The proposed professional personnel of the core management team proposed for the engagement, their qualifications and experience proven by updated and signed CVs and copy degree certificates. Where the degrees are not in French or English languages, certified translated

degrees in one of these two languages must be provided. The required degrees should be in the

following fields:

0 Advanced University Degree (Master) in IT, Accounting, Finance or related fields or

first level degree in combination with a professional certification, i,e,, Chartered Accountant, Certified Public Accountant or Certified Chartered Accountant;

0 Professional certification of CISA (Certified Information Systems Auditor) is a must;

0 Additional professional certifications (CIA, CISM, CFE) ;

0 Additional professional certifications on information technology*

3.4. In case of a Joint Venture or Consortium, a signed agreement between the partner companies must be provided. And the Lead Company must be clearly specified; and must provide the Team Leader;

Bidding Documents


No bidding documents have been included in this request for tenders.

Personalized Content

To make things easier we can help you keep track of the businesses that you've viewed and contacted. To use these features please enable cookies.

×