RBI/Central Office/DIT/1/18-19/ET/19 Please, refer to the RFP published on the Bank’s website www.rbi.org.in on July 31, 2018 inviting submission of bids from eligible vendors for Providing certification services under ISO 27001:2013 For Department of Information Technology through e – tendering route. 2. In this context, a Corrigendum containing the following changes to the RFP document has been uploaded in MSTC Limited website. The Modified provisions may be read as follows. S. No | Section/ Page No. | Activity / Deliverables | Description | 1 | 8/ 17 (Clause-3) | Closure of audit findings and Documentation | Bank | 2 | 8/ 17 (Clause-5) | Project Milestones | First Surveillance audit to ensure ongoing compliance | 3 | 8/ 17 (Clause-6) | Project Milestones | Second Surveillance audit to ensure ongoing compliance | 4 | Annex-VI/ 48/ Clause-4 | Checklist for Technical Evaluation | Experienced and skilled professionals having certifications and ISO 27001 audit experience (ISO 27001:2013 valid Lead Auditor/Lead Implementer certificate) to carry out ISO 27001:2013 certification audit. | 5. | Section-4/10/ Phase-1(Clause-vii) | Scope of work - Key requirements of ISO 27001:2013 | The Bidder is required to provide assistance to internal teams of RBI at each location for bridging the gaps identified. | 3. Interested parties may access the document to ensure their adherence to the above. All other terms and conditions of the RFP shall remain unchanged. Chief General Manager-in-Charge Department of Information Technology | |