Tenders are invited for Security Information and Event Management (SIEM) Solution Closing Date: Friday, 03. Jul 2026 Intervention Sector(s): Science & Technology Al Majmoua is seeking a qualified vendor to procure, deploy, and integrate a centralized, on-premises Security Information and Event Management (SIEM) solution. This initiative is managed under the "DAEM" projectfunded by the Embassy of Denmark through the RDPP III initiativesupporting Al Majmouas broader IT governance roadmap and its ongoing transition into a fully licensed financial institution compliant with Banque du Liban (BDL) frameworks. The project will eliminate existing visibility blind spots by aggregating, parsing, and correlating security logs from across the organizations network, server, firewall, and cloud infrastructures into a unified platform. The engagement is divided into three end-to-end workstreams managed by the vendor: Workstream 1: SIEM Software Procurement Scope: Providing an appropriately sized perpetual or multi-year base license for the SIEM platform. Key Tasks: Supplying all necessary core software engines and management modules, along with first-year vendor technical support, maintenance patches, and standard administrative documentation. Workstream 2: On-Premises Deployment Scope: Base installation and platform configuration on a local virtual machine (VM) provided by Al Majmoua. Key Tasks: Preparing the VM environment, installing system components, configuring role-based access control, setting up log retention/archival parameters, and establishing email and SMS notification paths for critical event alerting. Workstream 3: Log Source Integration and Configuration Scope: Connecting and indexing security logs from four main corporate environments. Key Tasks: Setting up log collection agents or agentless log forwarding to monitor Active Directory (logins, account changes, lockouts), Microsoft Azure (Azure AD sign-ins, security center alerts, IIS logs), Perimeter Firewalls + Azure WAF (allow/deny events, intrusion alerts, VPN sessions), and Core Switches (VLAN traffic, port status). The engagement concludes with correlation rules configuration, end-to-end validation testing, and a mandatory minimum 2-hour operational training session for Al Majmouas internal IT team. How to apply Proposals that do not meet all mandatory qualifications will not be evaluated further. Minimum 3 years of experience in the deployment and integration of enterprise SIEM solutions. Demonstrated experience integrating a SIEM platform with Microsoft Active Directory environments. Demonstrated experience collecting and ingesting logs from Microsoft Azure (Azure Monitor, Azure AD, or equivalent). Demonstrated experience with firewall Syslog integration (Cisco, Fortinet, or equivalent brands). Preferred Qualifications Vendor or implementation partner holds relevant security certifications (e.g., CISSP, CEH, CompTIA Security+, Microsoft Security certifications). Experience working with financial institutions or organizations subject to regulatory compliance frameworks (ISO 27001, PCI-DSS, BDL circulars). Familiarity with Lebanese market operational constraints and prior engagements in Lebanon or the MENA region. The proposed SIEM solution holds recognized third-party certifications or analyst recognition (e.g., ISO 27001 certified platform, Gartner Peer Insights listing). Application Process Interested candidates should submit the following: A brief cover letter explaining their interest and qualifications for the role. Company profile and relevant certifications. Detailed Technical proposed approach (methodology, tools, work plan). Work plan with timelines. Financial proposal (itemized costs) References from at least 3 organizations of similar scope. References from previous clients. Registration Fiscal number. Please fill the table attached in the TOR taking into consideration all points related to the application process and send to
[email protected] your technical and financial offer by COB Friday the 3rd of July 2025 You can address questions for clarifications at the following email address
[email protected] until the 26th of June 2026. Tender Link : https://daleel-madani.org/civil-society-directory/lebanese-association-development-al-majmoua/calls/security-information-and-event-management-siem-solution
