Professional Documents
Culture Documents
2022
To,
Mr.
DDDD
Department of Commerce
Ministry of Commerce
Subject: Regarding Appointing Auditor for Security Audit of Software Inhouse Developed/3 rd Party
in the Department of Commerce
Dear Sir,
2. e-Governance systems:
a) VIP Reference Monitoring System
b) Conference Room Booking System (CRBS)
c) Equipment Complaint System (ECS)
d) Electronic Requisition System for Stationery Items (ERSSI)
e) Uploading OM/Office Orders/Notices/ Circulars
f) Pre-Budget Proposals Compilation System etc
These systems have been developed over a period of time by NIC resources internally in old
technology. These Application are currently running on Local Server located in Vanijya Bhawan
Intracommerce which has become obsolete. Thus, all the applications have be shifted to cloud for
further operation. There was need to redevelop all these applications in current technology
environment and get them security audited to obtain clearance certificate for hosting on cloud as it
is mandatory as per CERT-in. So far following applications are already redeveloped using outsourced
manpower hired by DoC under the guidance of NIC officers: -
In view of the above, we have to obtain cyber security audit clearance certificate of above 8
developed applications, 7 underdeveloped and to be developed time to time on the request by
Departments, it is proposed that the Department may appoint a Cyber Security Auditor for getting
3rd Party Security Audit Clearance Certificate of all the applications developed in the Department.
With regards,
Yours Sincerely,