The subject of the procurement is services for the Ministry of Environment (hereinafter – the Buyer) and institutions under the Ministry of Environment, namely the Environmental Protection Agency, the Department of Environmental Protection under the Ministry of Environment, the Environmental Project Management Agency, the Lithuanian Geological Survey, the Lithuanian Hydrometeorological Service, the National Land Service, the State Forest Service, the State Territorial Planning and Construction Inspectorate under the Ministry of Environment, the State Service for Protected Areas, and the Public Institution Construction Sector Development Agency (hereinafter – Service Recipients) for the implementation of Security Operations Center tools (hereinafter – SOC tools) recommended by the National Cyber Security Center (hereinafter – NKSC) and defined in the project for the creation of the National SOC/CSIRT modular system at the infrastructure of the Buyer and Service Recipients, their maintenance, and security analytics using SOC tools (hereinafter – SOC services). The SOC tools are: 1. Elastic Stack Security Information and Event Management System (hereinafter – SIEM); 2. Security Onion Network Intrusion Detection System (hereinafter – NIDS); 3. Nessus Vulnerability Scanning Tool (hereinafter – VST); 4. Request Tracker for Incident Response (RTIR) Incident Management System (hereinafter – IMS). The implementation of the Buyer’s SIEM tool, its maintenance, and SOC services related to incidents escalated by the SIEM are not included in this procurement. However, all incidents recorded in the Buyer’s LogRhythm SIEM must be registered in the IMS. The services are to be provided for 12 months from the date of the purchase agreement. An extension of the service provision period is not anticipated. The maintenance services of the SOC tool are provided on weekdays, during working hours according to the SLA 9x5 model (weekdays from 8:00 to 17:00). The Buyer shall pay the Supplier for properly and timely rendered services every month at a fixed price for 1 (one) month no later than 30 (thirty) days from the date of receipt of the invoice according to the report provided by the Supplier. Invoices for the provided Services are submitted to the Buyer using the tools of the information system “SABIS”. The Supplier is subject to a penalty for non-compliance with confidentiality requirements: the Supplier pays the Buyer a fine of 8,000.00 EUR (eight thousand euros 00 ct), the payment of which does not exempt the Supplier from the obligation to compensate all direct losses incurred by the Buyer. The procurement is conducted in accordance with the Order No. D1-508 of the Minister of Environment of the Republic of Lithuania dated June 28, 2011 “On the Approval of the Description of the Procedure for Applying Environmental Protection Criteria in Green Procurement” and the subsections 4.4.3 and 4.4.4.1 of the approved “Description of the Procedure for Applying Environmental Protection Criteria in Green Procurement.” More detailed information is provided in the procurement conditions.

LOT-0001
Services for Configuration and Maintenance of SOC Systems for Institutions under the Ministry of Environment Participating in the Creation of the National SOC/CSIRT Modular System.
The subject of the procurement is services for the Ministry of Environment (hereinafter – the Buyer) and institutions under the Ministry of Environment, namely the Environmental Protection Agency, the Department of Environmental Protection under the Ministry of Environment, the Environmental Project Management Agency, the Lithuanian Geological Survey, the Lithuanian Hydrometeorological Service, the National Land Service, the State Forest Service, the State Territorial Planning and Construction Inspectorate under the Ministry of Environment, the State Service for Protected Areas, and the Public Institution Construction Sector Development Agency (hereinafter – Service Recipients) for the implementation of Security Operations Center tools (hereinafter – SOC tools) recommended by the National Cyber Security Center (hereinafter – NKSC) and defined in the project for the creation of the National SOC/CSIRT modular system at the infrastructure of the Buyer and Service Recipients, their maintenance, and security analytics using SOC tools (hereinafter – SOC services). The SOC tools are: 1. Elastic Stack Security Information and Event Management System (hereinafter – SIEM); 2. Security Onion Network Intrusion Detection System (hereinafter – NIDS); 3. Nessus Vulnerability Scanning Tool (hereinafter – VST); 4. Request Tracker for Incident Response (RTIR) Incident Management System (hereinafter – IMS). The implementation of the Buyer’s SIEM tool, its maintenance, and SOC services related to incidents escalated by the SIEM are not included in this procurement. However, all incidents recorded in the Buyer’s LogRhythm SIEM must be registered in the IMS. The services are to be provided for 12 months from the date of the purchase agreement. An extension of the service provision period is not anticipated. The maintenance services of the SOC tool are provided on weekdays, during working hours according to the SLA 9x5 model (weekdays from 8:00 to 17:00). The Buyer shall pay the Supplier for properly and timely rendered services every month at a fixed price for 1 (one) month no later than 30 (thirty) days from the date of receipt of the invoice according to the report provided by the Supplier. Invoices for the provided Services are submitted to the Buyer using the tools of the information system “SABIS”. The Supplier is subject to a penalty for non-compliance with confidentiality requirements: the Supplier pays the Buyer a fine of 8,000.00 EUR (eight thousand euros 00 ct), the payment of which does not exempt the Supplier from the obligation to compensate all direct losses incurred by the Buyer. The procurement is conducted in accordance with the Order No. D1-508 of the Minister of Environment of the Republic of Lithuania dated June 28, 2011 “On the Approval of the Description of the Procedure for Applying Environmental Protection Criteria in Green Procurement” and the subsections 4.4.3 and 4.4.4.1 of the approved “Description of the Procedure for Applying Environmental Protection Criteria in Green Procurement.” More detailed information is provided in the procurement conditions.