Published date: 21 January 2019
Awarded contract - This means that the contract has been awarded to a supplier.
Contract summary
Industry
Information technology services - 72222300
Location of contract
West Midlands
Value of contract
£39,889.50
Procurement reference
PROC.02.0134
Published date
21 January 2019
Closing date
13 November 2018
Contract start date
4 January 2019
Contract end date
3 January 2021
Contract type
Service contract
Procedure type
Open procedure (below threshold)
Any interested supplier may submit a tender in response to an opportunity notice.
This procedure can be used for procurements below the relevant contract value threshold.
Contract is suitable for SMEs?
Yes
Contract is suitable for VCSEs?
No
Description
The objective is to ensure that Ofwat has a secure, robust and managed network infrastructure in place that satisfies the NCSC and their PSN accreditation and Ofwat's Internal Auditors.
Scope
The areas of expertise or services that we may require are:
• CLAS consultants with expertise in accrediting organisations to the PSN;
• Penetration testing and system health checks (compliant to security standards and NCSC's CHECK service);
• Phishing simulation program;
• Computer and server forensics;
• Auditing;
• Security policy advice and support (and any legal interfaces);
• Information risk, the information assurance maturity model (IAMM) and the information risk return to Cabinet Office (that now includes the Security Policy Framework [SPF] return);
• HMG Cyber security initiatives;
• Network Access Security;
• Boundary security and remote working security;
• Encryption of information assets at rest;
• Mobile device security;
• Email encryption and web security;
• Website security;
• Business continuity;
• Cloud security principles and their implementation;
• Security strategy and vision; and
• Training and education across the areas listed above.
For the support service we require an agreement where we can contact the supplier and request help on one or more of the areas above. Some of these services may be required at short notice although the Customer will endeavour to give a minimum two weeks notice of any requirement.
We currently have a known requirement for biannual security penetration and IT health checks to be conducted in January and June each year. This is currently a mandatory requirement for our PSN accreditation process.
We would require the agreement to include at least the minimum number of days required to conduct two IT Health check and penetration tests each year plus an additional 4 days that may be called on for any of the areas listed above.
(A sampling approach is acceptable when considering the penetration testing of its laptop population as all models are the same make and model and have a similar configuration).
More information
Additional text
-
For further information, please contact: procurement@ofwat.gsi.gov.uk
Award information
Awarded date
17 December 2018
Contract start date
4 January 2019
Contract end date
3 January 2021
Total value of contract
£39,889.50
This contract was awarded to 1 supplier.
SAPPHIRE TECHNOLOGIES LIMITED
Address
North Point
Darlington
County Durham
DL3 0PH
GBReference
Companies House number: 03183935
Value of contract
£39,889.50
Supplier is SME?
Yes
Supplier is VCSE?
No
About the buyer
Address
Centre City Tower
7 Hill Street
Birmingham
B5 4UA
England
Share this notice
Closing: 13 November 2018
All content is available under the
