---
title: "Provision of ICT Health Checks"
ocid: "ocds-b5fd17-67e4d5aa-476c-4c08-8ec7-b9164684d667"
canonical_url: "https://d3tenders.com/contract/?ocid=ocds-b5fd17-67e4d5aa-476c-4c08-8ec7-b9164684d667"
markdown_url: "https://d3tenders.com/contract/ocds-b5fd17-67e4d5aa-476c-4c08-8ec7-b9164684d667.md"
json_url: "https://d3tenders.com/contract/ocds-b5fd17-67e4d5aa-476c-4c08-8ec7-b9164684d667.json"
source: "Contracts Finder"
current_stage: "Award"
buyer: "DRIVER & VEHICLE LICENSING AGENCY"
published: "2025-07-17"
---

# Provision of ICT Health Checks

Buyer: DRIVER & VEHICLE LICENSING AGENCY  
Current stage: Award  
OCID: ocds-b5fd17-67e4d5aa-476c-4c08-8ec7-b9164684d667

[View canonical contract page](https://d3tenders.com/contract/?ocid=ocds-b5fd17-67e4d5aa-476c-4c08-8ec7-b9164684d667)  
[Download OCDS JSON](https://d3tenders.com/contract/ocds-b5fd17-67e4d5aa-476c-4c08-8ec7-b9164684d667.json)

## Summary

The recent public procurement process for the provision of ICT Health Checks was conducted by the Driver & Vehicle Licensing Agency (DVLA) in Wales. The contracting authority sought services within the computer testing industry, as classified under the CPV code 72820000. The procurement focused on performing vulnerability assessments and penetration tests on both physical and cloud-based DVLA infrastructure and applications. The tender process reached the award stage on 17 July 2025, with the contract awarded to NCC Services Limited. The procurement method used was selective, specifically a call-off from a framework agreement, and the total awarded value was £100,000. The contract period is set from 22 July 2025 to 21 July 2026, with services to be delivered in Swansea, post code SA6 7JL.

This tender offers substantial growth opportunities for SMEs and VCSEs engaged in cyber security and computer testing services. Companies with experience in government cyber security collaborations and matured remote testing solutions would find this contract particularly suitable. The requirements demonstrate a need for firms possessing industry certifications such as PCI ASV, CESG, and others, to enhance their credentials and solidify partnerships with government agencies. This opportunity aligns well with businesses aiming to expand their governmental client base and expertise in penetration testing and security consultancy services.

## Notice

This requirement is for a Cyber Security health check company to perform vulnerability assessments and penetration tests on the DVLA infrastructure and applications (both physical and cloud based). In addition to performing on site testing the company must have a fully mature and documented remote testing solution in place, in order to remotely connect to our network. They must be PCI ASV approved and hold CESG, CHECK CERTIFIED GREEN LIGHT, CREST STAR, & Cyber Essential status. Criteria can be broken down as follows: * Must have experience of working with an internal Government Cyber Security teams to develop penetration testing strategies. * Must evidence how they have developed long term client partnerships in order to deliver required training and skills transfer. * Following the completion of the engagement the supplier must explain how they would provide guidance and recommendations on how to maintain the service alongside suggested next steps. * Fully mature remote testing solution.

## Key Details

| Field | Value |
| --- | --- |
| Publication source | Contracts Finder |
| Latest notice | https://www.contractsfinder.service.gov.uk/Notice/46910755-1150-498f-a7c3-0e5419bfeee4 |
| Notice type | Award Notice |
| Procurement type | Framework |
| Procurement category | Services |
| Procurement method | Selective |
| Procurement method details | Call-off from a framework agreement |
| Tender suitability | SME, VCSE |
| Awardee scale | SME |
| All stages | Award |

## Dates

| Field | Value |
| --- | --- |
| Publication date | 17 Jul 2025 |
| Submission deadline | 10 Jun 2025 |
| Future notice date | Not specified |
| Award date | 2 Jul 2025 |
| Contract period | 21 Jul 2025 - 21 Jul 2026 |
| Recurrence | Not specified |

## Values

| Field | Value |
| --- | --- |
| Tender value | £200,000 |
| Lots value | Not specified |
| Awards value | £100,000 |
| Contracts value | Not specified |

## Status

| Field | Value |
| --- | --- |
| Tender status | Complete |
| Lots status | Not specified |
| Awards status | Active |
| Contracts status | Not specified |

## Buyer

| Field | Value |
| --- | --- |
| Main buyer | DRIVER & VEHICLE LICENSING AGENCY |
| Locality | SWANSEA |
| Post town | Swansea |
| Postcode | SA6 7JL |
| Country | Wales |
| ITL 1 | TLL Wales |
| ITL 2 | TLL4 Mid and South West Wales |
| ITL 3 | TLL43 Swansea |
| Local authority | Swansea |
| Electoral ward | Mynydd-bach |
| Westminster constituency | Swansea West |
| Delivery location | Not specified |

## Supplier

| Field | Value |
| --- | --- |
| Number of suppliers | 1 |
| Supplier names | NCC SERVICES |

## CPV Codes

### Divisions

- 72 - IT services: consulting, software development, Internet and support

### Codes

- 72820000 - Computer testing services

## Release History

- 17 Jul 2025 at 12:18 - Award - Award Notice - https://www.contractsfinder.service.gov.uk/Notice/46910755-1150-498f-a7c3-0e5419bfeee4

## Documents

- https://www.contractsfinder.service.gov.uk/Notice/46910755-1150-498f-a7c3-0e5419bfeee4
  17th July 2025 - Awarded contract notice on Contracts Finder
- https://www.contractsfinder.service.gov.uk/Notice/Attachment/1fa2b1f8-5ce8-4c5e-8676-a9fee1544359
- https://www.contractsfinder.service.gov.uk/Notice/Attachment/78757b4d-5651-452a-937f-07532ba2919e

## Provenance

This Markdown file is an alternate public rendering of the D3 Tenders contract record. The canonical page is https://d3tenders.com/contract/?ocid=ocds-b5fd17-67e4d5aa-476c-4c08-8ec7-b9164684d667. The underlying structured data is available as OCDS JSON at https://d3tenders.com/contract/ocds-b5fd17-67e4d5aa-476c-4c08-8ec7-b9164684d667.json.