--- title: "Cyber Security Penetration Testing Framework" ocid: "ocds-b5fd17-75753c1e-4e75-4670-a98e-9ae71f2d7e76" canonical_url: "https://d3tenders.com/contract/?ocid=ocds-b5fd17-75753c1e-4e75-4670-a98e-9ae71f2d7e76" markdown_url: "https://d3tenders.com/contract/ocds-b5fd17-75753c1e-4e75-4670-a98e-9ae71f2d7e76.md" json_url: "https://d3tenders.com/contract/ocds-b5fd17-75753c1e-4e75-4670-a98e-9ae71f2d7e76.json" source: "Contracts Finder" current_stage: "Tender" buyer: "POLICE DIGITAL SERVICE" published: "2021-07-30" --- # Cyber Security Penetration Testing Framework Buyer: POLICE DIGITAL SERVICE Current stage: Tender OCID: ocds-b5fd17-75753c1e-4e75-4670-a98e-9ae71f2d7e76 [View canonical contract page](https://d3tenders.com/contract/?ocid=ocds-b5fd17-75753c1e-4e75-4670-a98e-9ae71f2d7e76) [Download OCDS JSON](https://d3tenders.com/contract/ocds-b5fd17-75753c1e-4e75-4670-a98e-9ae71f2d7e76.json) ## Summary The Police Digital Service is initiating a tender for a Cyber Security Penetration Testing Framework, aimed at enhancing operational security services for UK Policing. This procurement process falls under the IT services industry, particularly focusing on consulting and software development. The tender period concludes on 1st September 2021, with the framework expected to commence around 12th October 2021 and last for two years. The anticipated total spend is up to £1,000,000, and the procurement method is an open procedure, where bidders will be evaluated based on the most economically advantageous tender (MEAT). This tender presents significant growth opportunities for small and medium-sized enterprises (SMEs) and voluntary, community, and social enterprises (VCSEs) that specialise in cyber security services, particularly penetration testing and IT consultancy. Businesses that can demonstrate high-quality service delivery in areas such as vulnerability assessment and incident management would be well-suited to compete for contracts under this framework. Engaging with this procurement can help firms expand their client base within the public sector and build long-term relationships with contracting bodies requiring ongoing support and services. ## Notice The NMC, through the Contracting Authority, currently provides a centralised suite of operational security services to Contracting Bodies (as described in Appendix 3). These services include the following: * Protective Monitoring; * Incident Management; * Threat Intelligence; * Threat Hunting; * Vulnerability Assessment; * Malware Analysis; and * Penetration Testing Co-ordination. This framework is being established to streamline the procurement of Penetration Testing on behalf of UK Policing. The full scope of the Services to be provided by the Framework Suppliers is detailed in the Statement of Requirements (Appendix 1). The NMC services are currently provided in association with British Telecommunications plc, who, in relation to the Penetration Testing Co-ordination, will provide initial support (prior to the engagement of the Framework Supplier), post testing review, remediation and mitigation assistance to Contracting Bodies. Contracting Authorities are required to perform an annual IT Health Check however, may require a higher frequency of Services depending on changes to IT infrastructure or best practice guidance. Given the nature of the Services being procured, Contracting Bodies are expected to enter into multiple Call - Off Contracts and rotate between the selected Framework Suppliers, to ensure that their systems remain robust to the risk of different cyber-attacks. The Framework Agreement is expected to commence in or around October 2021 for a period of 2 years (24 calendar months). Anticipated spend under the Framework Agreement is not expected to exceed PS1,000,000. This figure has been calculated on the assumption that the Framework Agreement runs for its maximum possible term and that a number of Call Off Contracts are awarded by Contracting Bodies. For the avoidance of doubt, the Contracting Authority gives no warranty or representation as to the value of any Call Off Contract, or the number of Call Off Contracts, if any, which may be awarded. The Contracting Authority intends to award the Framework Agreement based on the most economically advantageous tender (MEAT). The Contracting Authority will not be bound to accept the lowest price or any Tender submitted, but will be evaluating Tenders on the quality and price criteria set forth in this ITT. The procurement documents will be made available to each bidder upon completion of an NDA. Please contact Krish Khanna at Krish.Khanna@tltsolicitors.com to receive a copy of the NDA. ## Key Details | Field | Value | | --- | --- | | Publication source | Contracts Finder | | Latest notice | https://www.contractsfinder.service.gov.uk/Notice/e0097266-109d-40b2-af9e-3e78ada758c8 | | Notice type | Tender Notice | | Procurement type | Framework | | Procurement category | Services | | Procurement method | Open | | Procurement method details | Open procedure | | Tender suitability | SME, VCSE | | Awardee scale | Not specified | | All stages | Tender | ## Dates | Field | Value | | --- | --- | | Publication date | 30 Jul 2021 | | Submission deadline | 1 Sep 2021 | | Future notice date | Not specified | | Award date | Not specified | | Contract period | 11 Oct 2021 - 11 Oct 2023 | | Recurrence | Not specified | ## Values | Field | Value | | --- | --- | | Tender value | £1,000,000 | | Lots value | Not specified | | Awards value | Not specified | | Contracts value | Not specified | ## Status | Field | Value | | --- | --- | | Tender status | Active | | Lots status | Not specified | | Awards status | Not specified | | Contracts status | Not specified | ## Buyer | Field | Value | | --- | --- | | Main buyer | POLICE DIGITAL SERVICE | | Locality | LONDON | | Post town | Central London | | Postcode | EC4R 1AP | | Country | England | | ITL 1 | TLI London | | ITL 2 | TLI3 Inner London - West | | ITL 3 | TLI35 Westminster and City of London | | Local authority | City of London | | Electoral ward | Vintry | | Westminster constituency | Cities of London and Westminster | | Delivery location | Not specified | ## CPV Codes ### Divisions - 72 - IT services: consulting, software development, Internet and support ### Codes - 72000000 - IT services: consulting, software development, Internet and support - 72200000 - Software programming and consultancy services - 72220000 - Systems and technical consultancy services - 72223000 - Information technology requirements review services - 72225000 - System quality assurance assessment and review services - 72246000 - Systems consultancy services - 72254000 - Software testing - 72254100 - Systems testing services - 72610000 - Computer support services - 72611000 - Technical computer support services - 72800000 - Computer audit and testing services - 72810000 - Computer audit services - 72820000 - Computer testing services ## Release History - 30 Jul 2021 at 19:00 - Tender - Tender Notice - https://www.contractsfinder.service.gov.uk/Notice/e0097266-109d-40b2-af9e-3e78ada758c8 ## Documents - https://www.contractsfinder.service.gov.uk/Notice/e0097266-109d-40b2-af9e-3e78ada758c8 30th July 2021 - Opportunity notice on Contracts Finder - https://uk.eu-supply.com/app/rfq/rwlentrance_s.asp?PID=38547&B=BLUELIGHT Additional data - https://uk.eu-supply.com/ctm/Company/CompanyInformation/Index/94392 User / Company ## Provenance This Markdown file is an alternate public rendering of the D3 Tenders contract record. The canonical page is https://d3tenders.com/contract/?ocid=ocds-b5fd17-75753c1e-4e75-4670-a98e-9ae71f2d7e76. The underlying structured data is available as OCDS JSON at https://d3tenders.com/contract/ocds-b5fd17-75753c1e-4e75-4670-a98e-9ae71f2d7e76.json.