|Introduction : |
Description of the Assignment:
Bosnia and Herzegovina lacks a comprehensive legislative and strategic framework on cyber security, including cybercrime, cyberbullying, data management and protection, 'children's protection on the Internet, and privacy protection. The EU's 2021 Progress Report for Bosnia and Herzegovina confirms this and further emphasizes that the 'country's capacities to respond to cyber security threats remain inadequate.
The situation is similar when it comes to the state of cyber security in the country's private sector. Micro, small, and medium-sized enterprises (MSMEs) are the backbone of the Bosnia and Herzegovina economy, representing 97% of all registered businesses.
In response to the COVID19 pandemic, UNDP in Bosnia and Herzegovina developed the Digital Pulse – a digital maturity self-assessment tool for companies in six business areas, cyber security among others. The response data analysis from 400+ companies shows that their digital maturity is least developed in the cyber security area, with close to 90% of companies having no systemic approach to cyber security. Some 70% of MSMEs have no data backup system implemented, with data and information security relying on basic antivirus and firewall software that comes with the device operating system. As 65% of respondents have doubts about the cyber security abilities of their employees, security and cyber threat awareness and training come as the most expressed need of the MSMEs in Bosnia and Herzegovina, followed by support in implementing cost-effective cyber security solutions and access to up-to-date information to be able to manage cyber threats of the future successfully.
Against this context, in 2023 and 2024 the UNDP's Sustainable Growth Sector intends to pilot an initiative to increase the awareness and resilience of the private sector in the sphere of cyber security under the umbrella of the Czech-UNDP Partnership for SDGs. To that end, the specific goal is to increase awareness and bridge the cybersecurity skill gaps of micro, small, and medium businesses (MSMEs) identified through the Digital Pulse Cybersecurity readiness module by providing relevant and high-quality training for the selected companies and trainers from relevant training centers from the country. It also entails the provision of technical assistance to selected companies to identify the main risks in their business and undertake the necessary preemptive actions to improve the overall cyber security.
Period of assignment/services (if applicable): 88 days over 7 month period (October 2023-April 2024)
Proposal should be submitted directly in the portal no later than indicated deadline.
Any request for clarification must be sent in writing via messaging functionality in the portal. UNDP will respond in writing including an explanation of the query without identifying the source of inquiry.
Please indicate whether you intend to submit a bid by creating a draft response without submitting directly in the system. This will enable the system to send notifications in case of amendments of the tender requirements. Should you require further clarifications, kindly communicate using the messaging functionality in the system. Offers must be submitted directly in the system following this link: http://supplier.quantum.partneragencies.org using the profile you may have in the portal. In case you have never registered before, you can register a profile using the registration link shared via the procurement notice and following the instructions in guides available in UNDP website: https://www.undp.org/procurement/business/resources-for-bidders. Do not create a new profile if you already have one. Use the forgotten password feature in case you do not remember the password or the username from previous registration.