Notice Information
Notice Title
Ealing ICT Cyber Security Contract 2023
Notice Description
Ealing Council required a range of managed security services provided by a trusted single source supplier who could provide flexible and integrated support over a 3 year contract term. This was to replace the existing contract for these services that expired on 28th February 2023. The contracting authority was seeking to procure services for: 1) Managed Security Operations Centre (SOC) a) Security monitoring, threat protection, threat hunting and incident response covering a digital estate of over 4000 endpoints and 300 servers, across Windows, Linux, and Cloud-based (Azure) operating systems and environments; b) Incident investigations, triage, and response; c) Vulnerability scanning of many IP ranges / hosts with remediation tracking. 2) Incident Response a) Implementation of joint incident response processes for major incidents, out-of-band communication mechanisms, and management plans Incident investigations, triage, and response; b) Forensic analysis of indicators of compromise and analysis of malware samples to understand the extent of a compromise should it occur; c) Rapid remote interception of, containment of, and response to live cyber threats; d) Triage and first response without requiring intervention from Ealing personnel; e) This should be read and answered in conjunction with the SOC requirement as complimentary services/capabilities. 3) Penetration Testing a) Security audits and assessment including penetration testing of web applications and infrastructure, configuration and build reviews, etc... b) IT Health Check Testing delivered by suitably qualified and experienced personnel, in accordance with NCSC Protocols; c) 'Red Team' attack simulation services; d) The supplier should be able to provide resourcing for approximately 100 days of penetration testing per annum. The Council awarded a call off contract to Jumpsec Limited from the Crown Commercial Services Dynamic Purchasing System (DPS) "Cyber Security Services 3 - RM3764.3", in accordance with the rules of the DPS for the provision of ICT Cyber Security Services for a duration of three years commencing on the 1 March 2023, with a budget of PS0.360m per annum.
Lot Information
Lot 1
Ealing Council required a range of managed security services provided by a trusted single source supplier who could provide flexible and integrated support over a 3 year contract term. This was to replace the existing contract for these services that expired on 28th February 2023. The contracting authority was seeking to procure services for: 1) Managed Security Operations Centre (SOC) a) Security monitoring, threat protection, threat hunting and incident response covering a digital estate of over 4000 endpoints and 300 servers, across Windows, Linux, and Cloud-based (Azure) operating systems and environments; b) Incident investigations, triage, and response; c) Vulnerability scanning of many IP ranges / hosts with remediation tracking. 2) Incident Response a) Implementation of joint incident response processes for major incidents, out-of-band communication mechanisms, and management plans Incident investigations, triage, and response; b) Forensic analysis of indicators of compromise and analysis of malware samples to understand the extent of a compromise should it occur; c) Rapid remote interception of, containment of, and response to live cyber threats; d) Triage and first response without requiring intervention from Ealing personnel; e) This should be read and answered in conjunction with the SOC requirement as complimentary services/capabilities. 3) Penetration Testing a) Security audits and assessment including penetration testing of web applications and infrastructure, configuration and build reviews, etc... b) IT Health Check Testing delivered by suitably qualified and experienced personnel, in accordance with NCSC Protocols; c) 'Red Team' attack simulation services; d) The supplier should be able to provide resourcing for approximately 100 days of penetration testing per annum. The Council awarded a call off contract to Jumpsec Limited from the Crown Commercial Services Dynamic Purchasing System (DPS) "Cyber Security Services 3 - RM3764.3", in accordance with the rules of the DPS for the provision of ICT Cyber Security Services for a duration of three years commencing on the 1 March 2023, with a budget of PS0.360m per annum.
Procurement Information
The contract was a call off from the Crown Commercial Services Dynamic Purchasing System (DPS) "Cyber Security Services 3 - RM3764.3"
Notice Details
Publication & Lifecycle
- Open Contracting ID
- ocds-h6vhtk-03b58d
- Publication Source
- Find A Tender Service
- Latest Notice
- https://www.find-tender.service.gov.uk/Notice/008531-2023
- Current Stage
- Award
- All Stages
- Award
Procurement Classification
- Notice Type
- Award Notice
- Procurement Type
- Dynamic
- Procurement Category
- Goods
- Procurement Method
- Limited
- Procurement Method Details
- Award procedure without prior publication of a call for competition
- Tender Suitability
- Not specified
- Awardee Scale
- Large
Common Procurement Vocabulary (CPV)
- CPV Divisions
48 - Software package and information systems
-
- CPV Codes
48220000 - Internet and intranet software package
Notice Value(s)
- Tender Value
- Not specified
- Lots Value
- Not specified
- Awards Value
- Not specified
- Contracts Value
- £1,080,000 £1M-£10M
Notice Dates
- Publication Date
- 23 Mar 20232 years ago
- Submission Deadline
- Not specified
- Future Notice Date
- Not specified
- Award Date
- 20 Dec 20223 years ago
- Contract Period
- Not specified - Not specified
- Recurrence
- Not specified
Notice Status
- Tender Status
- Complete
- Lots Status
- Cancelled
- Awards Status
- Active
- Contracts Status
- Active
Buyer & Supplier
Contracting Authority (Buyer)
- Main Buyer
- LONDON BOROUGH OF EALING
- Contact Name
- Ms Christine Baker
- Contact Email
- bakerc@ealing.gov.uk
- Contact Phone
- +44 2088255122
Buyer Location
- Locality
- EALING
- Postcode
- W5 2HL
- Post Town
- West London
- Country
- England
-
- Major Region (ITL 1)
- TLI London
- Basic Region (ITL 2)
- TLI7 Outer London - West and North West
- Small Region (ITL 3)
- TLI73 Ealing
- Delivery Location
- Not specified
-
- Local Authority
- Ealing
- Electoral Ward
- Ealing Broadway
- Westminster Constituency
- Ealing Central and Acton
Further Information
Notice URLs
Open Contracting Data Standard (OCDS)
View full OCDS Record for this contracting process
The Open Contracting Data Standard (OCDS) is a framework designed to increase transparency and access to public procurement data in the public sector. It is widely used by governments and organisations worldwide to report on procurement processes and contracts.
{
"tag": [
"compiled"
],
"id": "ocds-h6vhtk-03b58d-2023-03-23T15:43:04Z",
"date": "2023-03-23T15:43:04Z",
"ocid": "ocds-h6vhtk-03b58d",
"initiationType": "tender",
"tender": {
"id": "DN634936",
"legalBasis": {
"id": "32014L0024",
"scheme": "CELEX"
},
"title": "Ealing ICT Cyber Security Contract 2023",
"status": "complete",
"classification": {
"scheme": "CPV",
"id": "48220000",
"description": "Internet and intranet software package"
},
"mainProcurementCategory": "goods",
"description": "Ealing Council required a range of managed security services provided by a trusted single source supplier who could provide flexible and integrated support over a 3 year contract term. This was to replace the existing contract for these services that expired on 28th February 2023. The contracting authority was seeking to procure services for: 1) Managed Security Operations Centre (SOC) a) Security monitoring, threat protection, threat hunting and incident response covering a digital estate of over 4000 endpoints and 300 servers, across Windows, Linux, and Cloud-based (Azure) operating systems and environments; b) Incident investigations, triage, and response; c) Vulnerability scanning of many IP ranges / hosts with remediation tracking. 2) Incident Response a) Implementation of joint incident response processes for major incidents, out-of-band communication mechanisms, and management plans Incident investigations, triage, and response; b) Forensic analysis of indicators of compromise and analysis of malware samples to understand the extent of a compromise should it occur; c) Rapid remote interception of, containment of, and response to live cyber threats; d) Triage and first response without requiring intervention from Ealing personnel; e) This should be read and answered in conjunction with the SOC requirement as complimentary services/capabilities. 3) Penetration Testing a) Security audits and assessment including penetration testing of web applications and infrastructure, configuration and build reviews, etc... b) IT Health Check Testing delivered by suitably qualified and experienced personnel, in accordance with NCSC Protocols; c) 'Red Team' attack simulation services; d) The supplier should be able to provide resourcing for approximately 100 days of penetration testing per annum. The Council awarded a call off contract to Jumpsec Limited from the Crown Commercial Services Dynamic Purchasing System (DPS) \"Cyber Security Services 3 - RM3764.3\", in accordance with the rules of the DPS for the provision of ICT Cyber Security Services for a duration of three years commencing on the 1 March 2023, with a budget of PS0.360m per annum.",
"lots": [
{
"id": "1",
"description": "Ealing Council required a range of managed security services provided by a trusted single source supplier who could provide flexible and integrated support over a 3 year contract term. This was to replace the existing contract for these services that expired on 28th February 2023. The contracting authority was seeking to procure services for: 1) Managed Security Operations Centre (SOC) a) Security monitoring, threat protection, threat hunting and incident response covering a digital estate of over 4000 endpoints and 300 servers, across Windows, Linux, and Cloud-based (Azure) operating systems and environments; b) Incident investigations, triage, and response; c) Vulnerability scanning of many IP ranges / hosts with remediation tracking. 2) Incident Response a) Implementation of joint incident response processes for major incidents, out-of-band communication mechanisms, and management plans Incident investigations, triage, and response; b) Forensic analysis of indicators of compromise and analysis of malware samples to understand the extent of a compromise should it occur; c) Rapid remote interception of, containment of, and response to live cyber threats; d) Triage and first response without requiring intervention from Ealing personnel; e) This should be read and answered in conjunction with the SOC requirement as complimentary services/capabilities. 3) Penetration Testing a) Security audits and assessment including penetration testing of web applications and infrastructure, configuration and build reviews, etc... b) IT Health Check Testing delivered by suitably qualified and experienced personnel, in accordance with NCSC Protocols; c) 'Red Team' attack simulation services; d) The supplier should be able to provide resourcing for approximately 100 days of penetration testing per annum. The Council awarded a call off contract to Jumpsec Limited from the Crown Commercial Services Dynamic Purchasing System (DPS) \"Cyber Security Services 3 - RM3764.3\", in accordance with the rules of the DPS for the provision of ICT Cyber Security Services for a duration of three years commencing on the 1 March 2023, with a budget of PS0.360m per annum.",
"awardCriteria": {
"criteria": [
{
"name": "Commercial",
"type": "cost",
"description": "60"
},
{
"name": "Technical",
"type": "cost",
"description": "40"
}
]
},
"hasOptions": false,
"status": "cancelled"
}
],
"items": [
{
"id": "1",
"deliveryAddresses": [
{
"region": "UK"
}
],
"relatedLot": "1"
}
],
"procurementMethod": "limited",
"procurementMethodDetails": "Award procedure without prior publication of a call for competition",
"procurementMethodRationaleClassifications": [
{
"scheme": "TED_PT_AWARD_CONTRACT_WITHOUT_CALL",
"id": "D_OUTSIDE_SCOPE",
"description": "The procurement falls outside the scope of application of the directive"
}
],
"procurementMethodRationale": "The contract was a call off from the Crown Commercial Services Dynamic Purchasing System (DPS) \"Cyber Security Services 3 - RM3764.3\""
},
"awards": [
{
"id": "008531-2023-DN634936-1",
"relatedLots": [
"1"
],
"status": "active",
"suppliers": [
{
"id": "GB-FTS-78289",
"name": "Jumpsec Limited"
}
]
}
],
"parties": [
{
"id": "GB-FTS-3705",
"name": "London Borough of Ealing",
"identifier": {
"legalName": "London Borough of Ealing"
},
"address": {
"streetAddress": "London Borough of Ealing, Perceval House, 14-16 Uxbridge Road",
"locality": "Ealing",
"region": "UK",
"postalCode": "W5 2HL",
"countryName": "United Kingdom"
},
"contactPoint": {
"name": "Ms Christine Baker",
"telephone": "+44 2088255122",
"email": "bakerc@ealing.gov.uk"
},
"roles": [
"buyer"
],
"details": {
"url": "http://www.ealing.gov.uk",
"buyerProfile": "http://www.ealing.gov.uk",
"classifications": [
{
"scheme": "TED_CA_TYPE",
"id": "REGIONAL_AUTHORITY",
"description": "Regional or local authority"
},
{
"scheme": "COFOG",
"id": "01",
"description": "General public services"
}
]
}
},
{
"id": "GB-FTS-78289",
"name": "Jumpsec Limited",
"identifier": {
"legalName": "Jumpsec Limited"
},
"address": {
"streetAddress": "1 Golden Court",
"locality": "Richmond, Surrey",
"region": "UK",
"postalCode": "TW9 1EU",
"countryName": "United Kingdom"
},
"contactPoint": {
"telephone": "+44 3339398080",
"email": "lucy.edlund@jumpsec.com"
},
"roles": [
"supplier"
],
"details": {
"scale": "large"
}
},
{
"id": "GB-FTS-78290",
"name": "www.ealing.gov.uk",
"identifier": {
"legalName": "www.ealing.gov.uk"
},
"address": {
"streetAddress": "London Borough of Ealing, Perceval House, 14-16 Uxbridge Road",
"locality": "Ealing, London",
"postalCode": "W5 2HL",
"countryName": "United Kingdom"
},
"contactPoint": {
"telephone": "+44 2088259655",
"email": "johala@ealing.gov.uk"
},
"roles": [
"reviewBody"
],
"details": {
"url": "http://www.ealing.gov.uk"
}
}
],
"buyer": {
"id": "GB-FTS-3705",
"name": "London Borough of Ealing"
},
"contracts": [
{
"id": "008531-2023-DN634936-1",
"awardID": "008531-2023-DN634936-1",
"status": "active",
"value": {
"amount": 1080000,
"currency": "GBP"
},
"dateSigned": "2022-12-20T00:00:00Z"
}
],
"bids": {
"statistics": [
{
"id": "1",
"measure": "bids",
"relatedLot": "1",
"value": 5
},
{
"id": "2",
"measure": "smeBids",
"relatedLot": "1",
"value": 0
},
{
"id": "3",
"measure": "foreignBidsFromEU",
"relatedLot": "1",
"value": 0
},
{
"id": "4",
"measure": "foreignBidsFromNonEU",
"relatedLot": "1",
"value": 0
},
{
"id": "5",
"measure": "electronicBids",
"relatedLot": "1",
"value": 5
}
]
},
"language": "en"
}