Bergen Municipality has entered into framework agreements for consultancy services for Bergen Municipality within personal protection and information security. A framework agreement has been be entered with three providers.

Mini competitions will be carried out between these tenderers for each individual call-off.

The framework agreement concerns assistance with different consultancy services within personal protection and information security.

Call-offs for this service area may include (but not exhaustively):

- Mapping, assessment and evaluation of security incidents.

- Processing protocol

- Risk and vulnerability analysis of information security (ROS).

Data Protection Impact Assessment (DPIA).

- Planning and implementing emergency preparedness exercises.

- Legal assessments.

- Strategic consultancy and preparation of decision basis.

- Prepare, apply and evaluate safety requirements in relation to procurements.

- Establish, review and control the Information Security Management System (ISMS).

- Plan, carry out and evaluate security testing at strategic and operational levels (document control, penetration testing, etc.).