Tender

Ask AI

Ask AI about this notice

Summarise, research or assess it with AI

Open in ChatGPT
OpenAI's assistant
Open in Claude
Anthropic's assistant
Open in Perplexity
Answer engine, cites sources
Open in Google AI Mode
Google's AI search
View Markdown
Share

Share this notice

Send this contract to a colleague

Email
Send a link by email
WhatsApp
Share in a WhatsApp chat
LinkedIn
Post to your network
Microsoft Teams
Share to a Teams chat

SPS-02269 - SPS IT Health Check and Cyber Essentials Framework Agreement

SCOTTISH PRISON SERVICE

This public procurement record has 1 release in its history.

Tender

18 Jun 2026 at 00:00

OJEU - F2 - Contract Notice
Summary of the contracting process

The Scottish Prison Service (SPS) is inviting tenders for the provision of IT Health Check Services under the "SPS-02269 - SPS IT Health Check and Cyber Essentials Framework Agreement". This initiative is focused on enhancing IT security through measures like penetration testing, vulnerability scanning, and security assessments, ensuring continued accreditation to PSN(P) and CE+. The tender falls under the Public Order and Safety industry category with crucial services classified under CPV code 72000000, highlighting its significance in ensuring secure operations. Located in Edinburgh, UKM region, this open procurement process allows for electronic submission of bids until 22 July 2026. The procurement stage is currently active under the open procedure, with a contract expected to begin the same day that submissions close, on 22 July 2026.

This framework agreement opens growth opportunities for businesses that specialise in IT security services, particularly those experienced in conducting IT Health Checks and achieving Cyber Essentials accreditation. It offers the chance to become one of three suppliers tasked with maintaining crucial IT security standards for SPS. Companies with expertise in cybersecurity, penetration testing, and IT governance will be well-suited to compete. Engaging in this procurement process can yield substantial growth, particularly for firms looking to expand their public sector client base and secure long-term contracts over the potential three-year duration of this framework, extendable by an additional year.

How relevant is this notice?

Notice Information

Notice Title

SPS-02269 - SPS IT Health Check and Cyber Essentials Framework Agreement

Notice Description

The SPS requires Suppliers to deliver on-site IT Health Check Services, including internal and external penetration testing, vulnerability scanning, and security assessments across its networks, systems and data centres, with clear reporting and remediation guidance. The Framework Agreement may also be used for related ad-hoc IT security work. This Framework Agreement shall be made up of up to three competent Suppliers who shall be responsible for carrying out annual IT Health Checks (ITHC) to maintain accreditation to PSN(P) and also carry out Cyber Essentials+ (CE+) accreditation.

Lot Information

Lot 1

The SPS shall commence this procurement process in good faith and with the intention of awarding a contract. Following publication of the Contract Notice, an Invitation to Tender (ITT) will be published by SPS and will be made available to bidders on Public Contract Scotland - Tender (PCS-T). Tender responses will then be evaluated by the SPS in accordance with the ITT.

Renewal: 12 months

Notice Details

Publication & Lifecycle

Open Contracting ID
ocds-r6ebe6-0000834888
Publication Source
Public Contracts Scotland
Latest Notice
https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=JUN558273
Current Stage
Tender
All Stages
Tender

Procurement Classification

Notice Type
OJEU - F2 - Contract Notice
Procurement Type
Framework
Procurement Category
Services
Procurement Method
Open
Procurement Method Details
Open procedure
Tender Suitability
Not specified
Awardee Scale
Not specified

Common Procurement Vocabulary (CPV)

CPV Divisions

72 - IT services: consulting, software development, Internet and support

CPV Codes

72000000 - IT services: consulting, software development, Internet and support

Notice Value(s)

Tender Value
Not specified
Lots Value
Not specified
Awards Value
Not specified
Contracts Value
Not specified

Notice Dates

Publication Date
18 Jun 20261 weeks ago
Submission Deadline
22 Jul 20264 weeks to go
Future Notice Date
Not specified
Award Date
Not specified
Contract Period
Not specified - Not specified
Recurrence
Not specified

Notice Status

Tender Status
Active
Lots Status
Active
Awards Status
Not Specified
Contracts Status
Not Specified

Buyer & Supplier

Contracting Authority (Buyer)

Main Buyer
SCOTTISH PRISON SERVICE
Contact Name
Available with D3 Tenders Premium →
Contact Email
Available with D3 Tenders Premium →
Contact Phone
Available with D3 Tenders Premium →

Buyer Location

Locality
EDINBURGH
Postcode
EH12 9DJ
Post Town
Edinburgh
Country
Scotland
Major Region (ITL 1)
TLM Scotland
Basic Region (ITL 2)
TLM1 East Central Scotland
Small Region (ITL 3)
TLM13 City of Edinburgh
Delivery Location
TLM Scotland
Local Authority
City of Edinburgh
Electoral Ward
Drum Brae/Gyle
Westminster Constituency
Edinburgh West

Further Information

Notice Documents

  • https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=JUN558273
    SPS-02269 - SPS IT Health Check and Cyber Essentials Framework Agreement - The SPS requires Suppliers to deliver on-site IT Health Check Services, including internal and external penetration testing, vulnerability scanning, and security assessments across its networks, systems and data centres, with clear reporting and remediation guidance. The Framework Agreement may also be used for related ad-hoc IT security work. This Framework Agreement shall be made up of up to three competent Suppliers who shall be responsible for carrying out annual IT Health Checks (ITHC) to maintain accreditation to PSN(P) and also carry out Cyber Essentials+ (CE+) accreditation.

Open Contracting Data Standard (OCDS)

View full OCDS Record for this contracting process

JSON Markdown

The Open Contracting Data Standard (OCDS) is a framework designed to increase transparency and access to public procurement data in the public sector. It is widely used by governments and organisations worldwide to report on procurement processes and contracts. 

{
    "tag": [
        "compiled"
    ],
    "id": "ocds-r6ebe6-0000834888-2026-06-18T00:00:00Z",
    "date": "2026-06-18T00:00:00Z",
    "ocid": "ocds-r6ebe6-0000834888",
    "initiationType": "tender",
    "parties": [
        {
            "id": "org-34",
            "name": "Scottish Prison Service",
            "identifier": {
                "legalName": "Scottish Prison Service"
            },
            "address": {
                "streetAddress": "One Lochside, 1 Lochside Avenue",
                "locality": "Edinburgh",
                "region": "UKM75",
                "postalCode": "EH12 9DJ"
            },
            "contactPoint": {
                "name": "Tegan Gregory",
                "email": "tegan.gregory@prisons.gov.scot",
                "telephone": "+44 1313303790",
                "url": "https://www.publictendersscotland.publiccontractsscotland.gov.uk"
            },
            "roles": [
                "buyer"
            ],
            "details": {
                "classifications": [
                    {
                        "id": "National or federal agency/office",
                        "scheme": "TED_CA_TYPE"
                    },
                    {
                        "id": "03",
                        "description": "Public order and safety",
                        "scheme": "COFOG"
                    }
                ],
                "url": "http://www.sps.gov.uk"
            }
        },
        {
            "id": "org-31",
            "name": "Edinburgh Sheriff Court",
            "identifier": {
                "legalName": "Edinburgh Sheriff Court"
            },
            "address": {
                "streetAddress": "27 Chambers Street",
                "locality": "Edinburgh",
                "postalCode": "EH1 1LB"
            },
            "contactPoint": {
                "url": "http://"
            },
            "roles": [
                "reviewBody",
                "mediationBody",
                "reviewContactPoint"
            ]
        }
    ],
    "buyer": {
        "name": "Scottish Prison Service",
        "id": "org-34"
    },
    "tender": {
        "id": "SPS-02269",
        "title": "SPS-02269 - SPS IT Health Check and Cyber Essentials Framework Agreement",
        "description": "The SPS requires Suppliers to deliver on-site IT Health Check Services, including internal and external penetration testing, vulnerability scanning, and security assessments across its networks, systems and data centres, with clear reporting and remediation guidance. The Framework Agreement may also be used for related ad-hoc IT security work. This Framework Agreement shall be made up of up to three competent Suppliers who shall be responsible for carrying out annual IT Health Checks (ITHC) to maintain accreditation to PSN(P) and also carry out Cyber Essentials+ (CE+) accreditation.",
        "status": "active",
        "items": [
            {
                "id": "1",
                "additionalClassifications": [
                    {
                        "id": "72000000",
                        "scheme": "CPV"
                    }
                ],
                "deliveryAddresses": [
                    {
                        "region": "UKM"
                    }
                ],
                "relatedLot": "1"
            }
        ],
        "procurementMethod": "open",
        "procurementMethodDetails": "Open procedure",
        "mainProcurementCategory": "services",
        "submissionMethod": [
            "electronicSubmission"
        ],
        "submissionMethodDetails": "https://www.publictendersscotland.publiccontractsscotland.gov.uk",
        "tenderPeriod": {
            "endDate": "2026-07-22T12:00:00Z"
        },
        "awardPeriod": {
            "startDate": "2026-07-22T12:00:00Z"
        },
        "documents": [
            {
                "id": "JUN558273",
                "documentType": "contractNotice",
                "title": "SPS-02269 - SPS IT Health Check and Cyber Essentials Framework Agreement",
                "description": "The SPS requires Suppliers to deliver on-site IT Health Check Services, including internal and external penetration testing, vulnerability scanning, and security assessments across its networks, systems and data centres, with clear reporting and remediation guidance. The Framework Agreement may also be used for related ad-hoc IT security work. This Framework Agreement shall be made up of up to three competent Suppliers who shall be responsible for carrying out annual IT Health Checks (ITHC) to maintain accreditation to PSN(P) and also carry out Cyber Essentials+ (CE+) accreditation.",
                "url": "https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=JUN558273",
                "format": "text/html"
            },
            {
                "id": "technical",
                "documentType": "technicalSelectionCriteria"
            }
        ],
        "lots": [
            {
                "id": "1",
                "description": "The SPS shall commence this procurement process in good faith and with the intention of awarding a contract. Following publication of the Contract Notice, an Invitation to Tender (ITT) will be published by SPS and will be made available to bidders on Public Contract Scotland - Tender (PCS-T). Tender responses will then be evaluated by the SPS in accordance with the ITT.",
                "status": "active",
                "awardCriteria": {
                    "criteria": [
                        {
                            "type": "quality",
                            "name": "Technical",
                            "description": "60"
                        },
                        {
                            "type": "price",
                            "description": "40"
                        }
                    ]
                },
                "hasOptions": false,
                "submissionTerms": {
                    "variantPolicy": "notAllowed"
                },
                "contractPeriod": {
                    "durationInDays": 1080
                },
                "hasRenewal": true,
                "renewal": {
                    "description": "12 months"
                }
            }
        ],
        "bidOpening": {
            "date": "2026-07-22T12:00:00Z"
        },
        "communication": {
            "atypicalToolUrl": "https://www.publictendersscotland.publiccontractsscotland.gov.uk"
        },
        "coveredBy": [
            "GPA"
        ],
        "submissionTerms": {
            "languages": [
                "en"
            ],
            "bidValidityPeriod": {
                "endDate": "2026-09-21T00:00:00Z"
            }
        },
        "techniques": {
            "hasFrameworkAgreement": true,
            "frameworkAgreement": {
                "maximumParticipants": 3
            }
        },
        "classification": {
            "id": "72000000",
            "scheme": "CPV"
        },
        "hasRecurrence": false,
        "legalBasis": {
            "id": "32014L0024",
            "scheme": "CELEX"
        }
    },
    "language": "EN",
    "description": "The buyer is using PCS-Tender to conduct this ITT exercise. The Project code is 32109. For more information see: http://www.publiccontractsscotland.gov.uk/info/InfoCentre.aspx?ID=2343 (SC Ref:834888)",
    "links": [
        {
            "rel": "canonical",
            "href": "https://api.publiccontractsscotland.gov.uk/v1/Notice?id=ocds-r6ebe6-0000834888"
        }
    ],
    "noticetype": "OJEU - F2 - Contract Notice"
}