ENDPOINT PROTECTION PLATFORM (EPP) (BAC CONTROL NO. IP0426-0826-1)

The MERALCO Cybersecurity Group invites qualified and experienced vendors to participate for the refresh and expansion of MERALCO's existing Checkpoint Endpoint Protection Platform (EPP). The project includes the supply, installation, configuration, and commissioning of the necessary hardware, software, licenses, and professional services required to modernize and scale the current EPP environment.

This initiative aims to enhance the organization's endpoint security capabilities by providing a reliable, scalable, and enterprise-grade endpoint protection solution that supports the growing number of endpoint devices across the enterprise. The project will also include the secure commissioning of EPP capabilities within designated Operational Technology (OT) environments to further strengthen MERALCO's overall cybersecurity posture and support future operational and security requirements.

CALENDAR OF ACTIVITIES:

ACTIVITY	DATE	TIME
Submission of Letter of Intent (LOI) and Eligibility Requirements	June 01 – 08, 2026	Until 11:59 PM of June 08, 2026
Issuance of Bid Documents	June 19, 2026	Until 11:59 PM of June 19, 2026

Interested vendors must submit the following for eligibility to participate in the bidding:

A. For All Vendors:
1. 1. Certificate of Authorized Distributorship or Authorized Reseller Certificate as proof that Vendor is an authorized local partner or reseller of Checkpoint solution.
2. 2. At least five (5) years of proven experience or track record in implementing enterprise cybersecurity solutions, particularly in endpoint protection, endpoint security platforms, or related cybersecurity technologies. Supporting documents must clearly demonstrate the vendor's relevant experience in delivering such services. Acceptable supporting documents may include, but are not limited to, the following:
  1. a. Company overview showing years of operation and service offerings.
  2. b. Line of business or service portfolio that includes cybersecurity implementation services.
  3. c. Client list or reference projects involving endpoint protection or cybersecurity solutions
  4. d. Project documentation or case studies on relevant cybersecurity work
  5. e. Performance certificates or awards related to cybersecurity engagements.
  6. f. Declarations detailing experience and scope of past implementations.
3. 3. Certificate and/or supporting documents demonstrating a minimum of three (3) successful Checkpoint Endpoint Protection Platform (EPP) deployments in organizations within the Philippines, across diverse industries. Deployments must have been conducted by the local vendor, either independently or in partnership with the principal. Supporting documents must include, but are not limited to, certificates of completion, client attestations, or equivalent proof of successful implementation. Acceptable supporting documents may also include the following:
  1. a. Project name and scope clearly indicating deployment of Endpoint Protection
  2. b. Certificate of completion or equivalent document issued by the client.
  3. c. Proof of award (Notice of Award, Purchase Order, or Contract)
  4. d. Client attestation or endorsement confirming successful delivery.
  5. e. Redacted project reports or implementation summaries showing the role of the local vendor.
  6. f. Declarations from the vendor summarizing project outcomes.
B. For MERALCO Accredited Vendors (additional requirement):
1. 1. Certificate of MERALCO vendor accreditation. If the accreditation is for renewal, please also submit proof that you are undergoing the accreditation renewal process.
C. For Non-Accredited Vendors (additional requirements):
1. 1. Company Profile
2. 2. Securities & Exchange Commission (SEC) Registration Certificate
3. 3. Latest Audited Financial Statement (AFS) for the last three (3) years with the signed and notarized "Sworn Affidavit of Truth and Accuracy of Submitted Documents"

Non-accredited vendors must undergo the MERALCO accreditation process and must already be accredited by the time of the award.

The Letter of Intent (LOI) and the above-mentioned eligibility requirements must be submitted via email as PDF file attachments using a business email address only that includes the company's domain name. As part of cybersecurity protection, email addresses created from non-secure, free, or open third-party domains or sources will not be accepted as a company's email address. Submission of eligibility documents through external document sharing platforms is discouraged.

The following shall also serve as basis during the bid evaluation:

1. Assessment of vendor's financial condition through financial review. To be considered for the award, vendors must be able to show a gross revenue or capitalization that exceeds the total project value.
2. Offered product or solution is compliant to the minimum standard specifications of MERALCO, with no unresolved quality issues, and with no history of poor delivery performance.
3. Vendors must demonstrate the capability to fully implement and operationalize the proposed Endpoint Protection Platform, including integration, and go-live, no later than December 31, 2026. The implementation timeline must account for the following conditions:
1. a. No disruption or downtime to existing protected applications, as necessary.
2. b. Preservation of current security configurations, policies, rules, and blocklists.
3. c. Seamless integration with existing systems including SIEM, SOAR, Data Diode and other cybersecurity tools, as necessary
4. d. Completion of user acceptance testing (UAT) and security validation prior to go-live.

MERALCO reserves the right to:

1. Accept any bid and to reject any or all bids and/or to annul the bidding process in its entirety, at any time prior to award of contract, without thereby incurring any liability to the affected bidders or any obligation to inform the participating bidders of the ground for MERALCO's action; and
2. Issue an addendum to the Invitation to Bid at any time as a result of questions, change in acquisition schedule, or other relevant matters.

Interested vendors may obtain further information through the MERALCO Bids and Awards Committee Secretariat and Category Management for ICT via email to Meralco_BAC_Secretariat@meralco.com.ph and group.platform.cyber@meralco.com.ph, respectively.

Vendors must submit a Letter of Intent (LOI) in portable document format (PDF) with the required supporting documents via email to Meralco_BAC_Secretariat@meralco.com.ph and group.platform.cyber@meralco.com.ph using business email address. The Letter of Intent and eligibility documents must be received not later than 11:59 PM of June 08, 2026. Late submissions, whether complete or partially received in our servers, will be considered invalid. The Bid Documents shall only be provided to vendors who submit an LOI and meet the eligibility requirements. Subsequent bid submission for eligible vendors must also be as file attachments using business email address only. LOI email subject format should be: IP0426-0826-1 | LOI | ENDPOINT PROTECTION PLATFORM (EPP) | VENDOR NAME.

Bid Document Fee (non-refundable): Maximum of ₱ 50,000.00 (VAT Ex. shall be paid upon submission of bid documents)

(sgd.)

LUISITO B. ACUÑA

Chairman, MERALCO Bids and Awards Committee

MERALCO employs strict cybersecurity controls. Kindly refer to the following link for the Vendor Cybersecurity Advisory:
https://company.meralco.com.ph/news-and-advisories/supply-chain-management-invitations-bid

ENDPOINT PROTECTION PLATFORM (EPP) (BAC CONTROL NO. IP0426-0826-1)

Thanks for staying connected