Quotations are hereby invited for the following: A service provider to supply network and server administrator and ICT security officer/administrator. Specifications: A service provider is required for the provisioning of the services as described hereunder, by providing dedicated staffing resources to Robben Island Museum (hereinafter referred to as ‘RIM’) for a period of 6 months (uninterrupted). The service will need to be rendered on-site at RIM’s offices (includes attending meetings off-site) as remote assistance will not be accepted. Services/duties required for the network and server administrator: • Manage relationships with external Service Providers; • Review and develop new ICT policies. Ensure that policies are relevant and adjusted for changes in business environment and legislature; • Advanced LAN/WAN Support as well as Server Administration and Maintenance; • Plan, co-ordinate, install, configure, support, and manage all Windows and Linux Systems and Servers; • Implement policies on Active Directory; • Maintain the Active Directory and ensure proper account management; • Maintain Microsoft Exchange and ensure availability of emails through all various channels and devices; • Maintenance of systems uptime and report thereon; • Liaise with the appointed Service Provider on network connectivity issues; • Identify and resolve (hardware and software) technical problems and malfunctions related to Windows Operating Systems; • Infrastructure planning and systems provisioning in a Windows environment; • Develop and implement policies and procedures for Windows administration; • Monitor and control infrastructure performance; • Ensure the configuration and documentation of installed network devices; • Facilitate the installation of network and access points; • Develop and maintain a Network diagram for the entire RIM environment; • Manage the Virtual LAN and allocation of IP Addresses across the network; • Allocate/ delegate work; • Train and develop junior IT Technicians and Interns; • Monitor outstanding or pending calls; • Address user complaints and call escalations. Services/duties required for an ICT security officer/administrator: Backup and Restore: • Servers and desktops/laptops must be backed up daily and the status of the backups must be captured in a daily operation report; • Backup and Restore procedures; • A restore plan must be prepared and approved; • Once a month the incumbent must perform a restore of the backup; • To engage and involve the user department(s) for their participation and sign off to confirm that a restore was done successfully; • Backup and Restore reports must be submitted on Monthly basis. Patch management: • To ensure that systems running on servers, desktop/laptops must run on the latest software; • Must review and approve Patch management procedures; • Must be able to install and assist in tracking and helping with the installation of patches and/or updates using the patch management software; • To prepare and submit Patch management reports on monthly basis. Antivirus Management: • To ensure that servers and desktop/laptops are running on the latest antivirus software; • Must review and approve Antivirus management procedures; • Must use RIM’s Antivirus management systems to monitor and protect RIM environment from malware, phishing, spam, ransomware, etc; • To review the Antivirus dashboard daily and reported to the Senior ICT manager weekly; • To prepare and submit Antivirus management report on monthly basis. Disaster Recovery Planning and Testing: • ICT Continuity Plans must be reviewed, updated, and approved; • To ensure that DR sites established is still operational; • ICT Continuity must be tested at least twice a year; • Status of ICT Continuity must be report to Senior ICT Manager. ICT Security: • ICT Security policy and procedures to be reviewed and approved; • To develop an implementation plan that will be used to track and report on Cyber Security User awareness campaign; • ICT Security awareness/alert messages must be sent to users at least twice a month as part of the awareness campaign; • Vulnerability assessment must be performed quarterly; • To use the Audit improvement plan to resolve audit findings. (投標 №94019379cn)