--- title: "ScotRail Cyber Security Architecture" ocid: "ocds-h6vhtk-03c327" canonical_url: "https://d3tenders.com/contract/?ocid=ocds-h6vhtk-03c327" markdown_url: "https://d3tenders.com/contract/ocds-h6vhtk-03c327.md" json_url: "https://d3tenders.com/contract/ocds-h6vhtk-03c327.json" source: "Find A Tender Service" current_stage: "Award" buyer: "SCOTRAIL TRAINS LTD" published: "2024-03-25" --- # ScotRail Cyber Security Architecture Buyer: SCOTRAIL TRAINS LTD Current stage: Award OCID: ocds-h6vhtk-03c327 [View canonical contract page](https://d3tenders.com/contract/?ocid=ocds-h6vhtk-03c327) [Download OCDS JSON](https://d3tenders.com/contract/ocds-h6vhtk-03c327.json) ## Summary ScotRail Trains Limited (SRT) has completed a procurement process for the "ScotRail Cyber Security Architecture" project. The organisation is seeking suppliers to partner in enhancing its IT cyber security architecture, focusing on managed detection and response capabilities, privileged account protection, and cyber security event prevention. The procurement method used was a Negotiated procedure with prior call for competition. The main procurement category is goods, and the opportunity was divided into lots covering various security aspects. This procurement process by ScotRail Trains Limited presents an opportunity for suppliers to engage in the modernisation of cyber security systems. Businesses specialising in software packages and information systems would be suited to compete in this tender. The project includes key objectives such as implementing 24-7 detection and response capabilities and improving cyber security event prevention. Suppliers can apply for specific lots related to privileged access management, security information and event management, extended detection and response, endpoint detection and response, and managed detection and response. ## Notice ScotRail Trains Limited (SRT) invites prospective suppliers to participate in this procurement process to become a key partner in supporting the modernisation of the existing IT cyber security architecture. With the following key objectives: Implement 24-7 managed detection and response capability; Provide a seamless protection and management for privileged accounts; Rationalise and/or integrate and mesh cyber security systems together to ensure events are correlated and a view can be taken across multiple systems; Improve ScotRail's ability to prevent cyber security events and breaches; Improve ScotRail's ability to detect cyber security events and breaches; Improve ScotRail's ability to contain cyber security events and breaches; Improve ScotRail's ability to recover from security events and breaches ### Lot Information Privileged Access Management (PAM) ScotRail Trains Limited (SRT) invites prospective suppliers to participate in this procurement process to become a key partner in supporting the modernisation of the existing IT cyber security architecture. With the following key objectives: Implement 24-7 managed detection and response capability; Provide a seamless protection and management for privileged accounts; Rationalise and/or integrate and mesh cyber security systems together to ensure events are correlated and a view can be taken across multiple systems; Improve ScotRail's ability to prevent cyber security events and breaches; Improve ScotRail's ability to detect cyber security events and breaches; Improve ScotRail's ability to contain cyber security events and breaches; Improve ScotRail's ability to recover from security events and breaches. The opportunity is split into the following Lots and suppliers are invited to apply for 1 or multiple lots: - Lot 1 - Privileged Access Management (PAM) - Lot 2 - Lot 2 - Security Information and Event Management (SIEM) - Lot 3 - Extended Detection and Response (XDR) - Lot 4 - Endpoint Detection and Response (EDR) - Lot 5 - Managed Detection and Response (MDR) The full business requirements for each Lot are contained in the 'ScotRail Requirements Document - Cyber Security Architecture' which can be accessed through the link to the E-Sourcing portal and clicking on the event for Cyber Security Architecture (https://scotrail.wax-live.com/S2C/DisplayModules/TradeModules/Negotiations/Opportunities/ListEvents.aspx) Additional information: https://scotrail.wax-live.com/S2C/DisplayModules/TradeModules/Negotiations/Opportunities/ListEvents.aspx Renewal: The proposed contract term is a 3 year initial term, with the option to extend this for a potential further 2 or 4 years, this will be explored and confirmed at the ITN stage. Security Information and Event Management (SIEM) ScotRail Trains Limited (SRT) invites prospective suppliers to participate in this procurement process to become a key partner in supporting the modernisation of the existing IT cyber security architecture. With the following key objectives: Implement 24-7 managed detection and response capability; Provide a seamless protection and management for privileged accounts; Rationalise and/or integrate and mesh cyber security systems together to ensure events are correlated and a view can be taken across multiple systems; Improve ScotRail's ability to prevent cyber security events and breaches; Improve ScotRail's ability to detect cyber security events and breaches; Improve ScotRail's ability to contain cyber security events and breaches; Improve ScotRail's ability to recover from security events and breaches The opportunity is split into the following Lots and suppliers are invited to apply for 1 or multiple lots: - Lot 1 - Privileged Access Management (PAM) - Lot 2 - Lot 2 - Security Information and Event Management (SIEM) - Lot 3 - Extended Detection and Response (XDR) - Lot 4 - Endpoint Detection and Response (EDR) - Lot 5 - Managed Detection and Response (MDR) Renewal: The proposed contract term is a 3 year initial terms, with the option to extend this for a potential further 3 or 4 years, this will be explored and confirmed at the ITN stage. Extended Detection and Response (XDR) ScotRail Trains Limited (SRT) invites prospective suppliers to participate in this procurement process to become a key partner in supporting the modernisation of the existing IT cyber security architecture. With the following key objectives: Implement 24-7 managed detection and response capability; Provide a seamless protection and management for privileged accounts; Rationalise and/or integrate and mesh cyber security systems together to ensure events are correlated and a view can be taken across multiple systems; Improve ScotRail's ability to prevent cyber security events and breaches; Improve ScotRail's ability to detect cyber security events and breaches; Improve ScotRail's ability to contain cyber security events and breaches; Improve ScotRail's ability to recover from security events and breaches The opportunity is split into the following Lots and suppliers are invited to apply for 1 or multiple lots: - Lot 1 - Privileged Access Management (PAM) - Lot 2 - Lot 2 - Security Information and Event Management (SIEM) - Lot 3 - Extended Detection and Response (XDR) - Lot 4 - Endpoint Detection and Response (EDR) - Lot 5 - Managed Detection and Response (MDR) Renewal: The proposed contract term is a 3 year initial terms, with the option to extend this for a potential further 3 or 4 years, this will be explored and confirmed at the ITN stage. Endpoint Detection and Response (EDR) ScotRail Trains Limited (SRT) invites prospective suppliers to participate in this procurement process to become a key partner in supporting the modernisation of the existing IT cyber security architecture. With the following key objectives: Implement 24-7 managed detection and response capability; Provide a seamless protection and management for privileged accounts; Rationalise and/or integrate and mesh cyber security systems together to ensure events are correlated and a view can be taken across multiple systems; Improve ScotRail's ability to prevent cyber security events and breaches; Improve ScotRail's ability to detect cyber security events and breaches; Improve ScotRail's ability to contain cyber security events and breaches; Improve ScotRail's ability to recover from security events and breaches The opportunity is split into the following Lots and suppliers are invited to apply for 1 or multiple lots: - Lot 1 - Privileged Access Management (PAM) - Lot 2 - Lot 2 - Security Information and Event Management (SIEM) - Lot 3 - Extended Detection and Response (XDR) - Lot 4 - Endpoint Detection and Response (EDR) - Lot 5 - Managed Detection and Response (MDR) Renewal: The proposed contract term is a 3 year initial terms, with the option to extend this for a potential further 3 or 4 years, this will be explored and confirmed at the ITN stage. Managed Detection and Response (MDR) ScotRail Trains Limited (SRT) invites prospective suppliers to participate in this procurement process to become a key partner in supporting the modernisation of the existing IT cyber security architecture. With the following key objectives: Implement 24-7 managed detection and response capability; Provide a seamless protection and management for privileged accounts; Rationalise and/or integrate and mesh cyber security systems together to ensure events are correlated and a view can be taken across multiple systems; Improve ScotRail's ability to prevent cyber security events and breaches; Improve ScotRail's ability to detect cyber security events and breaches; Improve ScotRail's ability to contain cyber security events and breaches; Improve ScotRail's ability to recover from security events and breaches The opportunity is split into the following Lots and suppliers are invited to apply for 1 or multiple lots: - Lot 1 - Privileged Access Management (PAM) - Lot 2 - Lot 2 - Security Information and Event Management (SIEM) - Lot 3 - Extended Detection and Response (XDR) - Lot 4 - Endpoint Detection and Response (EDR) - Lot 5 - Managed Detection and Response (MDR) Renewal: The proposed contract term is a 3 year initial terms, with the option to extend this for a potential further 3 or 4 years, this will be explored and confirmed at the ITN stage. ## Key Details | Field | Value | | --- | --- | | Publication source | Find A Tender Service | | Latest notice | https://www.find-tender.service.gov.uk/Notice/009620-2024 | | Notice type | Tender Notice | | Procurement type | Standard | | Procurement category | Goods | | Procurement method | Selective | | Procurement method details | Negotiated procedure with prior call for competition | | Tender suitability | Not specified | | Awardee scale | Large | | All stages | Tender, Award | ## Dates | Field | Value | | --- | --- | | Publication date | 25 Mar 2024 | | Submission deadline | 24 May 2023 | | Future notice date | Not specified | | Award date | 27 Feb 2024 | | Contract period | Not specified | | Recurrence | Not specified | ## Values | Field | Value | | --- | --- | | Tender value | Not specified | | Lots value | Not specified | | Awards value | Not specified | | Contracts value | Not specified | ## Status | Field | Value | | --- | --- | | Tender status | Complete | | Lots status | Active, Cancelled | | Awards status | Active | | Contracts status | Active | ## Buyer | Field | Value | | --- | --- | | Main buyer | SCOTRAIL TRAINS LTD | | Locality | GLASGOW | | Post town | Not specified | | Postcode | N/A | | Country | Not specified | | ITL 1 | Not specified | | ITL 2 | Not specified | | ITL 3 | Not specified | | Local authority | Not specified | | Electoral ward | Not specified | | Westminster constituency | Not specified | | Delivery location | TLM Scotland | ## Supplier | Field | Value | | --- | --- | | Number of suppliers | 1 | | Supplier names | NCC GROUP SECURITY SERVICES | ## CPV Codes ### Divisions - 48 - Software package and information systems ### Codes - 48000000 - Software package and information systems ## Release History - 25 Mar 2024 at 13:58 - Award - Award Notice - https://www.find-tender.service.gov.uk/Notice/009620-2024 - 21 Apr 2023 at 11:32 - Tender - Tender Notice - https://www.find-tender.service.gov.uk/Notice/011496-2023 ## Notice URLs - https://api.publiccontractsscotland.gov.uk/v1/Notice?id=ocds-r6ebe6-0000730055 - https://scotrail.wax-live.com/S2C/DisplayModules/TradeModules/Negotiations/Opportunities/ListEvents.aspx - https://www.publiccontractsscotland.gov.uk/search/Search_AuthProfile.aspx?ID=AA30589 - https://www.scotrail.co.uk/ ## Provenance This Markdown file is an alternate public rendering of the D3 Tenders contract record. The canonical page is https://d3tenders.com/contract/?ocid=ocds-h6vhtk-03c327. The underlying structured data is available as OCDS JSON at https://d3tenders.com/contract/ocds-h6vhtk-03c327.json.