Award

MOBILE APPLICATIONS THREAT ASSESSMENT SOLUTIONS

DEPARTMENT FOR WORK AND PENSIONS

This public procurement record has 2 releases in its history.

AwardUpdate

20 May 2021 at 15:31

Award Notice
Award

18 Feb 2019 at 10:31

Award Notice
Summary of the contracting process

The procurement process titled "Mobile Applications Threat Assessment Solutions" is managed by the Department for Work and Pensions (DWP) in the digital services industry. The contract, valued at £160,000, is linked to a selective procurement method, specifically a call-off from a framework agreement. The tender period concluded on 17 December 2018, and the contract commenced on the same day, running until 16 December 2020. This initiative is based in Blackpool, North West England, aiming to enhance the assessment processes for mobile applications to mitigate security risks.

This tender presents a significant opportunity for small and medium-sized enterprises (SMEs) that specialise in IT services, particularly those with expertise in software development and security assessments. Businesses that can provide comprehensive threat assessment solutions for mobile applications may find themselves well-positioned to contribute to the DWP’s objective of improving productivity and security within the digital workplace. Engaging in this procurement process could boost growth for firms that align with the DWP's needs for innovative app solutions.

Find more tenders on our Open Data Platform.
How relevant is this notice?

D3 Tenders Premium

Win More Public Sector Contracts

AI-powered tender discovery, pipeline management, and market intelligence — everything you need to grow your public sector business.

Start Free Trial Book a Demo
All Features Pricing

Notice Information

Notice Title

MOBILE APPLICATIONS THREAT ASSESSMENT SOLUTIONS

Notice Description

Delivering Apps to Smartphones is a key element of transforming the digital workplace and providing colleagues with modern solutions which enable them to be more efficient and effective. To date the delivery of Apps to the DWP store has been slow and/or resulted in apps being declined due to primarily to security concerns and lack of the right tools and internal capability to be able to assess and understand app behaviour. In a global landscape where we have new vulnerabilities continuously emerging, we have the opportunity to secure an 'App Threat Assessment' from a third party. Options Considered The desired outcome is: New apps added to the DWP App store in volume and at pace. User experience enhanced and colleagues have a wider range of apps to improve productivity Security risks reduced Two options have been considered and tested: Internal Service: A test rig was developed which identified which IP addresses each app accessed. Whilst this provided some helpful information, it did not provide an assessment of If/what data is being transferred/leaked out of DWP; Which phone services are being used by the app e.g. blue tooth, location services etc. any underlying and/or unexpected behaviours being performed by the app This resulted in a considerable amount of residual product and security team effort which in a number of cases failed to determine the associated risk due to a lack of visibility of app behaviour. External, expert service: In 2017, as a proof of concept 3 apps were sent for review by 4 suppliers, specialising in threat assessments. Each supplier provided a comprehensive threat assessment which will enable DWP to make an informed assessment of each app within 24 hours of request. The security community as well as the product team were impressed with the granularity of detail provided. Doing nothing would expose the department to security risks or lost data. Therefore external procurement is recommended.

Notice Details

Publication & Lifecycle

Open Contracting ID
ocds-b5fd17-86fe7d8a-a67b-4473-8a58-270788cea149
Publication Source
Contracts Finder
Latest Notice
https://www.contractsfinder.service.gov.uk/Notice/80ef4e61-8da2-4f96-896f-24cc45d85ce6
Current Stage
Award
All Stages
Award

Procurement Classification

Notice Type
Award Notice
Procurement Type
Framework
Procurement Category
Goods
Procurement Method
Selective
Procurement Method Details
Call-off from a framework agreement
Tender Suitability
SME
Awardee Scale
SME

Common Procurement Vocabulary (CPV)

CPV Divisions

72 - IT services: consulting, software development, Internet and support

CPV Codes

72000000 - IT services: consulting, software development, Internet and support

Notice Value(s)

Tender Value
£160,000 £100K-£500K
Lots Value
Not specified
Awards Value
£160,000 £100K-£500K
Contracts Value
Not specified

Notice Dates

Publication Date
20 May 20214 years ago
Submission Deadline
17 Dec 2018Expired
Future Notice Date
Not specified
Award Date
17 Feb 20188 years ago
Contract Period
17 Dec 2018 - 16 Dec 2020 2-3 years
Recurrence
Not specified

Notice Status

Tender Status
Complete
Lots Status
Not Specified
Awards Status
Active
Contracts Status
Not Specified

Buyer & Supplier

Contracting Authority (Buyer)

Main Buyer
DEPARTMENT FOR WORK AND PENSIONS
Contact Name
Richard Hughes
Contact Email
richard.hughes3@dwp.gsi.gov.uk
Contact Phone
01253 689866

Buyer Location

Locality
BLACKPOOL
Postcode
FY4 5ES
Post Town
Blackpool
Country
England
Major Region (ITL 1)
TLD North West (England)
Basic Region (ITL 2)
TLD4 Lancashire
Small Region (ITL 3)
TLD42 Blackpool
Delivery Location
TLD North West (England)
Local Authority
Blackpool
Electoral Ward
Stanley
Westminster Constituency
Blackpool South

Supplier Information

Number of Suppliers
1
Supplier Name

KRYPTOWIRE

Further Information

Open Contracting Data Standard (OCDS)

View full OCDS Record for this contracting process

Download

The Open Contracting Data Standard (OCDS) is a framework designed to increase transparency and access to public procurement data in the public sector. It is widely used by governments and organisations worldwide to report on procurement processes and contracts. 

{
    "tag": [
        "compiled"
    ],
    "id": "ocds-b5fd17-86fe7d8a-a67b-4473-8a58-270788cea149-2021-05-20T16:31:52+01:00",
    "date": "2021-05-20T16:31:52+01:00",
    "ocid": "ocds-b5fd17-86fe7d8a-a67b-4473-8a58-270788cea149",
    "language": "en",
    "initiationType": "tender",
    "tender": {
        "id": "tender_193392/747270",
        "title": "MOBILE APPLICATIONS THREAT ASSESSMENT SOLUTIONS",
        "description": "Delivering Apps to Smartphones is a key element of transforming the digital workplace and providing colleagues with modern solutions which enable them to be more efficient and effective. To date the delivery of Apps to the DWP store has been slow and/or resulted in apps being declined due to primarily to security concerns and lack of the right tools and internal capability to be able to assess and understand app behaviour. In a global landscape where we have new vulnerabilities continuously emerging, we have the opportunity to secure an 'App Threat Assessment' from a third party. Options Considered The desired outcome is: New apps added to the DWP App store in volume and at pace. User experience enhanced and colleagues have a wider range of apps to improve productivity Security risks reduced Two options have been considered and tested: Internal Service: A test rig was developed which identified which IP addresses each app accessed. Whilst this provided some helpful information, it did not provide an assessment of If/what data is being transferred/leaked out of DWP; Which phone services are being used by the app e.g. blue tooth, location services etc. any underlying and/or unexpected behaviours being performed by the app This resulted in a considerable amount of residual product and security team effort which in a number of cases failed to determine the associated risk due to a lack of visibility of app behaviour. External, expert service: In 2017, as a proof of concept 3 apps were sent for review by 4 suppliers, specialising in threat assessments. Each supplier provided a comprehensive threat assessment which will enable DWP to make an informed assessment of each app within 24 hours of request. The security community as well as the product team were impressed with the granularity of detail provided. Doing nothing would expose the department to security risks or lost data. Therefore external procurement is recommended.",
        "status": "complete",
        "classification": {
            "scheme": "CPV",
            "id": "72000000",
            "description": "IT services: consulting, software development, Internet and support"
        },
        "items": [
            {
                "id": "1",
                "deliveryAddresses": [
                    {
                        "postalCode": "FY4 5ES"
                    },
                    {
                        "region": "North West",
                        "countryName": "United Kingdom"
                    },
                    {
                        "postalCode": "FY4 5ES"
                    },
                    {
                        "region": "North West",
                        "countryName": "United Kingdom"
                    }
                ]
            }
        ],
        "value": {
            "amount": 160000,
            "currency": "GBP"
        },
        "procurementMethod": "selective",
        "procurementMethodDetails": "Call-off from a framework agreement",
        "tenderPeriod": {
            "endDate": "2018-12-17T23:59:59Z"
        },
        "contractPeriod": {
            "startDate": "2018-12-17T00:00:00Z",
            "endDate": "2020-12-16T23:59:59Z"
        },
        "suitability": {
            "sme": true,
            "vcse": false
        },
        "mainProcurementCategory": "goods"
    },
    "parties": [
        {
            "id": "GB-CFS-43571",
            "name": "Department for Work and Pensions",
            "identifier": {
                "legalName": "Department for Work and Pensions"
            },
            "address": {
                "streetAddress": "Peel Park",
                "locality": "Blackpool",
                "postalCode": "FY4 5ES",
                "countryName": "England"
            },
            "contactPoint": {
                "name": "Richard Hughes",
                "email": "RICHARD.HUGHES3@DWP.GSI.GOV.UK",
                "telephone": "01253 689866"
            },
            "roles": [
                "buyer"
            ]
        },
        {
            "id": "GB-CFS-172279",
            "name": "KRYPTOWIRE LLC",
            "identifier": {
                "legalName": "KRYPTOWIRE LLC"
            },
            "address": {
                "streetAddress": "8200 GREENSBORO DRIVE SUITE 875 VIRGINIA USA"
            },
            "details": {
                "scale": "sme",
                "vcse": false
            },
            "roles": [
                "supplier"
            ]
        }
    ],
    "buyer": {
        "id": "GB-CFS-43571",
        "name": "Department for Work and Pensions"
    },
    "awards": [
        {
            "id": "ocds-b5fd17-86fe7d8a-a67b-4473-8a58-270788cea149-1",
            "status": "active",
            "date": "2018-02-17T00:00:00Z",
            "datePublished": "2019-02-18T10:31:27Z",
            "value": {
                "amount": 160000,
                "currency": "GBP"
            },
            "suppliers": [
                {
                    "id": "GB-CFS-172279",
                    "name": "KRYPTOWIRE LLC"
                }
            ],
            "contractPeriod": {
                "startDate": "2018-12-17T00:00:00Z",
                "endDate": "2020-12-16T23:59:59Z"
            },
            "documents": [
                {
                    "id": "1",
                    "documentType": "awardNotice",
                    "description": "Awarded contract notice on Contracts Finder",
                    "url": "https://www.contractsfinder.service.gov.uk/Notice/80ef4e61-8da2-4f96-896f-24cc45d85ce6",
                    "datePublished": "2019-02-18T10:31:27Z",
                    "format": "text/html",
                    "language": "en",
                    "dateModified": "2021-05-20T16:31:52+01:00"
                },
                {
                    "id": "2",
                    "documentType": "tenderNotice",
                    "description": "n/a",
                    "url": "https://www.contractsfinder.service.gov.uk/Notice/Attachment/68900b3d-423e-443a-a4d5-e8af88113990",
                    "format": "application/pdf"
                }
            ]
        }
    ]
}