Bank of Mauritius clarifies requirements for banking sector Threat Intelligence Sharing Platform tender

The Bank of Mauritius published responses to bidder queries on its request for proposals to supply and implement a Threat Intelligence Sharing Platform for the banking sector. The clarifications confirm that the tender covers both delivery of the platform and ongoing services to maintain it, integrate threat intelligence feeds, provide updates and reports, and facilitate intelligence sharing across participating institutions. Key parameters include initial coverage of all 19 commercial banks, with scalability to 60 entities by Year 3, assuming up to five users per participating entity and up to 15 Bank of Mauritius security and administrative users. The Bank confirmed it currently uses Rapid7 as its security information and event management system and has a third-party managed security operations centre; the platform should support API-based interoperability with common security tools and standards, including SIEM and SOAR platforms, endpoint and network security tools, and external threat intelligence feeds. System logs are expected to be retained for seven years, and compliance should include the Mauritius Data Protection Act 2017 and the General Data Protection Regulation. Bidders are required to submit a detailed implementation plan and timeline, with the definitive list of specific data feeds and providers to be finalised during requirements gathering. The Bank also clarified service expectations, including eight hours per month of requests-for-intelligence support for the community as a whole and at least one full day of annual intelligence training for up to two nominated participants per entity plus Bank of Mauritius representatives, with onsite delivery preferred where feasible.