Notice Information
Notice Title
Identity Access Management
Notice Description
Identity and Access Service systems control user authentication and access to services, resources and data. Authentication is the process by which a user identifies themselves, most often through a userid and password. Access management determines which services, resources and data an authenticated user can access. UCL's current Identity and Access Services were developed over 15 years ago and now offer limited functionality when compared to modern alternatives. While they offer baseline functionality and are secure, they are insufficient to meet the needs of TOPS. For instance, granting access to new services, resources or data is a manual process that takes time and the options for self-service account management are limited. Because the technology has evolved over many years, the technology is fragile and this makes change difficult and time consuming. Providing modern and effective identity and access services will provide the underpinning infrastructure needed to realise the TOPS vision of more effective self-service, swifter provisioning of services and greater levels of automation. It is useful to look at identity and access services in terms of five main building blocks: - Identity data management: Ability to manage a person's identity information through a 'UCL Account', for instance their password - Authentication: Identification of the person seeking to access services or data, typically using a username and password. - Authorisation: Effective control of access to services and data and authenticated person has access to. - Audit: Ability to periodically validate who has access to particular services and data - Self-service: Ability for staff and students to manage their 'account' information and request access through self service Currently identity data management and authentication are the most effective elements of the current technology set. Most UCL systems already use a common identifier (userid) and most use common authentication credentials (password). However, there is space for improvement including the provision of self-service account management. This project will build on this foundation to improve other areas and in particular authorisation to assure, discover, apply and maintain access rights for resource consumers and providers. In the past, this has not been an area of standardisation nor one that has taken a service-oriented approach. Consequently, each professional service area has developed a multitude of workflows ultimately concerned with processing access rights. Additionally, this has meant the ability to report on authorisation is time consuming and/or manual activity based. The project will also be concerned with how access rights are reported to resource owners and individuals for purpose of security and audit. There is also a self-service requirement since the customer should be able to self-manage access to resources either for themselves or for resources they own. Additional information: Please note that UCL will be closed over the Christmas period from 14:00 21st December 2018 to 09:00 2nd January 2019 and will therefore not be picking up queries over this time period. The process will be managed via our In-Tend system. If you are interested in participating in this RFI you will need to register your company on In-tend and then express an interest in the opportunity. RFI documentation will then be released to you. If your company has already registered on the system, but you need alternative/additional staff added to your registration for this opportunity, please do let me know so that we update the system. If you do not have the correct staff registered for your company you may miss key email alerts sent out during the process.
Notice Details
Publication & Lifecycle
- Open Contracting ID
- ocds-b5fd17-10db8007-760e-4b8c-b5f5-e68d5d042be9
- Publication Source
- Contracts Finder
- Latest Notice
- https://www.contractsfinder.service.gov.uk/Notice/770bb31d-0e7c-4b34-bfd5-68dcb4f28d5e
- Current Stage
- Planning
- All Stages
- Planning
Procurement Classification
- Notice Type
- Market Engagement Notice
- Procurement Type
- Standard
- Procurement Category
- Not specified
- Procurement Method
- Not Specified
- Procurement Method Details
- Not specified
- Tender Suitability
- SME, VCSE
- Awardee Scale
- Not specified
Common Procurement Vocabulary (CPV)
- CPV Divisions
48 - Software package and information systems
72 - IT services: consulting, software development, Internet and support
-
- CPV Codes
48000000 - Software package and information systems
72000000 - IT services: consulting, software development, Internet and support
Notice Value(s)
- Tender Value
- Not specified
- Lots Value
- Not specified
- Awards Value
- Not specified
- Contracts Value
- Not specified
Notice Dates
- Publication Date
- 20 Dec 20187 years ago
- Submission Deadline
- Not specified
- Future Notice Date
- 14 Jan 2019Expired
- Award Date
- Not specified
- Contract Period
- Not specified - Not specified
- Recurrence
- Not specified
Notice Status
- Tender Status
- Planning
- Lots Status
- Not Specified
- Awards Status
- Not Specified
- Contracts Status
- Not Specified
Buyer & Supplier
Contracting Authority (Buyer)
- Main Buyer
- UNIVERSITY COLLEGE LONDON
- Contact Name
- Alexandros Varnavides
- Contact Email
- a.varnavides@ucl.ac.uk
- Contact Phone
- 02031088083
Buyer Location
- Locality
- LONDON
- Postcode
- WC1E 6BT
- Post Town
- Central London
- Country
- England
-
- Major Region (ITL 1)
- TLI London
- Basic Region (ITL 2)
- TLI3 Inner London - West
- Small Region (ITL 3)
- TLI36 Camden
- Delivery Location
- TLI London
-
- Local Authority
- Camden
- Electoral Ward
- Bloomsbury
- Westminster Constituency
- Holborn and St Pancras
Further Information
Notice Documents
-
https://www.contractsfinder.service.gov.uk/Notice/770bb31d-0e7c-4b34-bfd5-68dcb4f28d5e
20th December 2018 - Early engagement notice on Contracts Finder -
Open Contracting Data Standard (OCDS)
View full OCDS Record for this contracting process
The Open Contracting Data Standard (OCDS) is a framework designed to increase transparency and access to public procurement data in the public sector. It is widely used by governments and organisations worldwide to report on procurement processes and contracts.
{
"tag": [
"compiled"
],
"id": "ocds-b5fd17-10db8007-760e-4b8c-b5f5-e68d5d042be9-2018-12-20T12:08:55Z",
"date": "2018-12-20T12:08:55Z",
"ocid": "ocds-b5fd17-10db8007-760e-4b8c-b5f5-e68d5d042be9",
"language": "en",
"initiationType": "tender",
"title": "Identity Access Management",
"planning": {
"milestones": [
{
"id": "1",
"title": "Engagement end date",
"type": "engagement",
"dueDate": "2019-01-14T23:59:59Z"
}
],
"documents": [
{
"id": "1",
"documentType": "marketEngagementNotice",
"description": "Early engagement notice on Contracts Finder",
"url": "https://www.contractsfinder.service.gov.uk/Notice/770bb31d-0e7c-4b34-bfd5-68dcb4f28d5e",
"datePublished": "2018-12-20T12:08:55Z",
"format": "text/html",
"language": "en"
},
{
"id": "2",
"documentType": "biddingDocuments",
"description": "UCL Tendering Portal - Intend",
"url": "https://in-tendhost.co.uk/ucl/aspx/Home"
}
]
},
"tender": {
"id": "UCL-PROC-794",
"title": "Identity Access Management",
"description": "Identity and Access Service systems control user authentication and access to services, resources and data. Authentication is the process by which a user identifies themselves, most often through a userid and password. Access management determines which services, resources and data an authenticated user can access. UCL's current Identity and Access Services were developed over 15 years ago and now offer limited functionality when compared to modern alternatives. While they offer baseline functionality and are secure, they are insufficient to meet the needs of TOPS. For instance, granting access to new services, resources or data is a manual process that takes time and the options for self-service account management are limited. Because the technology has evolved over many years, the technology is fragile and this makes change difficult and time consuming. Providing modern and effective identity and access services will provide the underpinning infrastructure needed to realise the TOPS vision of more effective self-service, swifter provisioning of services and greater levels of automation. It is useful to look at identity and access services in terms of five main building blocks: - Identity data management: Ability to manage a person's identity information through a 'UCL Account', for instance their password - Authentication: Identification of the person seeking to access services or data, typically using a username and password. - Authorisation: Effective control of access to services and data and authenticated person has access to. - Audit: Ability to periodically validate who has access to particular services and data - Self-service: Ability for staff and students to manage their 'account' information and request access through self service Currently identity data management and authentication are the most effective elements of the current technology set. Most UCL systems already use a common identifier (userid) and most use common authentication credentials (password). However, there is space for improvement including the provision of self-service account management. This project will build on this foundation to improve other areas and in particular authorisation to assure, discover, apply and maintain access rights for resource consumers and providers. In the past, this has not been an area of standardisation nor one that has taken a service-oriented approach. Consequently, each professional service area has developed a multitude of workflows ultimately concerned with processing access rights. Additionally, this has meant the ability to report on authorisation is time consuming and/or manual activity based. The project will also be concerned with how access rights are reported to resource owners and individuals for purpose of security and audit. There is also a self-service requirement since the customer should be able to self-manage access to resources either for themselves or for resources they own. Additional information: Please note that UCL will be closed over the Christmas period from 14:00 21st December 2018 to 09:00 2nd January 2019 and will therefore not be picking up queries over this time period. The process will be managed via our In-Tend system. If you are interested in participating in this RFI you will need to register your company on In-tend and then express an interest in the opportunity. RFI documentation will then be released to you. If your company has already registered on the system, but you need alternative/additional staff added to your registration for this opportunity, please do let me know so that we update the system. If you do not have the correct staff registered for your company you may miss key email alerts sent out during the process.",
"status": "planning",
"classification": {
"scheme": "CPV",
"id": "48000000",
"description": "Software package and information systems"
},
"additionalClassifications": [
{
"scheme": "CPV",
"id": "72000000",
"description": "IT services: consulting, software development, Internet and support"
}
],
"items": [
{
"id": "1",
"deliveryAddresses": [
{
"region": "London",
"countryName": "United Kingdom"
}
]
}
],
"suitability": {
"sme": true,
"vcse": true
}
},
"parties": [
{
"id": "GB-SRS-sid4gov.cabinetoffice.gov.uk/8BsB7VXy",
"name": "UNIVERSITY COLLEGE LONDON",
"identifier": {
"legalName": "UNIVERSITY COLLEGE LONDON",
"scheme": "GB-SRS",
"id": "sid4gov.cabinetoffice.gov.uk/8BsB7VXy"
},
"address": {
"streetAddress": "Gower Street",
"locality": "LONDON",
"postalCode": "WC1E6BT",
"countryName": "England"
},
"contactPoint": {
"name": "Alexandros Varnavides",
"email": "a.varnavides@ucl.ac.uk",
"telephone": "02031088083"
},
"roles": [
"buyer"
]
}
],
"buyer": {
"id": "GB-SRS-sid4gov.cabinetoffice.gov.uk/8BsB7VXy",
"name": "UNIVERSITY COLLEGE LONDON"
}
}