--- title: "Cyber Resilience - Training for Public Sector Boards" ocid: "ocds-r6ebe6-0000736113" canonical_url: "https://d3tenders.com/contract/?ocid=ocds-r6ebe6-0000736113" markdown_url: "https://d3tenders.com/contract/ocds-r6ebe6-0000736113.md" json_url: "https://d3tenders.com/contract/ocds-r6ebe6-0000736113.json" source: "Public Contracts Scotland" current_stage: "Award" buyer: "SCOTTISH GOVERNMENT" published: "2023-10-04" --- # Cyber Resilience - Training for Public Sector Boards Buyer: SCOTTISH GOVERNMENT Current stage: Award OCID: ocds-r6ebe6-0000736113 [View canonical contract page](https://d3tenders.com/contract/?ocid=ocds-r6ebe6-0000736113) [Download OCDS JSON](https://d3tenders.com/contract/ocds-r6ebe6-0000736113.json) ## Summary The Scottish Government has recently completed the procurement process for the tender titled "Cyber Resilience - Training for Public Sector Boards." This tender, issued by the Scottish Government's Cyber Resilience Unit, aimed to enhance cyber resilience within public sector boards across Scotland. Following a successful pilot project in spring 2023, the Scottish Government has now awarded a contract for a scaled-up roll-out of the training programme, valued at £86,200, to further strengthen cyber security measures in public sector organisations. This contract presents an opportunity for service providers specialising in cyber security training to engage with the public sector in Scotland. The procurement stage was open, allowing for a competitive bidding process that attracted 18 bids, with a focus on technical quality criteria accounting for 70% of the evaluation. Businesses offering services related to cyber resilience training and consultancy are well-suited to compete, with the contract focusing on building the capacity of public boards to effectively manage cyber risks and ensure organisational resilience against cyber threats. ## Notice Globally organisations and individuals have become reliant on digital technology. Effective cyber security and resilience protect the processes and services we depend on, ensuring we can take advantage of the benefits that technology can bring. An organisation's ability to prevent, respond to and recover from a cyber attack is central to resilience. Cyber resilience is therefore a key risk and consideration for any Board. The Scottish Government's Strategic Framework for a Cyber Resilient Scotland ('the Strategic Framework'), published in February 2021, sets out what we all need to do to make Scotland a digitally secure and resilient nation. Four outcomes underpin this vision, and four action plans set out the detail of how we will achieve these. Responsibility for the implementation of the Strategic Framework lies with the Scottish Government's Cyber Resilience Unit (CRU). The Public Sector Action Plan annexed to the Framework is a priority for the CRU and overarching aim 5 seeks to embed cyber resilience into the governance, policies and processes of public sector bodies. The CRU works in partnership with a wide range of organisations including the UK Government's National Cyber Security Centre (NCSC). The NCSC supports all areas of society to understand cyber risk from our critical national infrastructure organisations to the general public. More specifically, the NCSC distils its deep knowledge and expertise into practical guidance including a Board Toolkit designed to encourage cyber security discussions between an organisation's Board and its technical experts. In spring 2023, the Scottish Government contracted a short pilot project to adapt the NCSC's Board Toolkit and pilot its delivery with a group of public sector board members drawn from organisations across Scotland. The pilot was successful and feedback was positive. It is on the foundation of this pilot that we are now contracting a scaled-up roll-out of the training programme. We will work with the successful Service Provider to make any further tweaks to the training pack that are recommended in the evaluation report of the training pilot. ### Lot Information Lot 1 The programme aims to grow the capacity of Scotland's public boards to take a leadership role in ensuring the cyber resilience of their organisations. Strategically, it supports Outcome 2 of the Strategic Framework, which is that: Businesses and organisations recognise the cyber risks and are well prepared to manage them. The programme aims to develop the knowledge and skills of board members from across Scotland's c. 190 public boards, with the outcome that boards will have at least one member who has a good understanding of cyber risk, can take on a cyber risk assurance role on the board, and can motivate their board colleagues to take cyber risk seriously at a senior leadership level. It also aims to provide broad awareness raising for any and all board members who wish to gain a basic understanding of the cyber threat landscape and the importance of taking action. These aims will be achieved through two strands of activity, by March 2024: A. Delivery of up to 20 x half-day online training sessions for up to 12 public sector board members at a time (drawn from different boards), that will deliver learning around cyber risk, cyber assurance and pragmatic steps boards can take to further ensure the resilience of their organisations. This delivery to be evaluated at the end of the each delivery session (to implement improvement into the next session) as well as at the end of the programme period. This will include promotion, recruitment of participants, delivery, provision of electronic resources/slides, and evaluation of the session on the day. B. Delivery of 6 x one-hour webinars for any and all board members who are interested to gain broad awareness of cyber resilience. These webinars to be evaluated. This should include promotion, recruitment, delivery and immediate evaluation. Renewal: An option extension of up to 12 months. The 7 month contract term will have a budget of up to 75000 GBP. The option extension period will have a budget of up to 50000 GBP. ## Key Details | Field | Value | | --- | --- | | Publication source | Public Contracts Scotland | | Latest notice | https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=OCT489754 | | Notice type | OJEU - F3 - Contract Award Notice | | Procurement type | Standard | | Procurement category | Services | | Procurement method | Open | | Procurement method details | Open procedure | | Tender suitability | Not specified | | Awardee scale | SME | | All stages | Tender, Award | ## Dates | Field | Value | | --- | --- | | Publication date | 4 Oct 2023 | | Submission deadline | 1 Aug 2023 | | Future notice date | Not specified | | Award date | 29 Sep 2023 | | Contract period | Not specified | | Recurrence | Not specified | ## Values | Field | Value | | --- | --- | | Tender value | £125,000 | | Lots value | £125,000 | | Awards value | Not specified | | Contracts value | £86,200 | ## Status | Field | Value | | --- | --- | | Tender status | Complete | | Lots status | Complete | | Awards status | Not specified | | Contracts status | Active | ## Buyer | Field | Value | | --- | --- | | Main buyer | SCOTTISH GOVERNMENT | | Locality | GLASGOW | | Post town | Glasgow | | Postcode | G2 8JX | | Country | Scotland | | ITL 1 | TLM Scotland | | ITL 2 | TLM3 West Central Scotland | | ITL 3 | TLM32 Glasgow City | | Local authority | Glasgow City | | Electoral ward | Anderston/City/Yorkhill | | Westminster constituency | Glasgow North | | Delivery location | TLM Scotland | ## Supplier | Field | Value | | --- | --- | | Number of suppliers | 1 | | Supplier names | FRANK RANKIN | ## CPV Codes ### Divisions - 80 - Education and training services ### Codes - 80500000 - Training services - 80511000 - Staff training services - 80521000 - Training programme services - 80522000 - Training seminars - 80531000 - Industrial and technical training services - 80531200 - Technical training services - 80533100 - Computer training services - 80600000 - Training services in defence and security materials ## Release History - 4 Oct 2023 at 00:00 - Award - OJEU - F3 - Contract Award Notice - https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=OCT489754 - 22 Jun 2023 at 00:00 - Tender - OJEU - F2 - Contract Notice - https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=JUN481814 ## Documents - https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=JUN481814 Cyber Resilience - Training for Public Sector Boards - Globally organisations and individuals have become reliant on digital technology. Effective cyber security and resilience protect the processes and services we depend on, ensuring we can take advantage of the benefits that technology can bring. An organisation's ability to prevent, respond to and recover from a cyber attack is central to resilience. Cyber resilience is therefore a key risk and consideration for any Board. The Scottish Government's Strategic Framework for a Cyber Resilient Scotland ('the Strategic Framework'), published in February 2021, sets out what we all need to do to make Scotland a digitally secure and resilient nation. Four outcomes underpin this vision, and four action plans set out the detail of how we will achieve these. Responsibility for the implementation of the Strategic Framework lies with the Scottish Government's Cyber Resilience Unit (CRU). The Public Sector Action Plan annexed to the Framework is a priority for the CRU and overarching aim 5 seeks to embed cyber resilience into the governance, policies and processes of public sector bodies. The CRU works in partnership with a wide range of organisations including the UK Government's National Cyber Security Centre (NCSC). The NCSC supports all areas of society to understand cyber risk from our critical national infrastructure organisations to the general public. More specifically, the NCSC distils its deep knowledge and expertise into practical guidance including a Board Toolkit designed to encourage cyber security discussions between an organisation's Board and its technical experts. In spring 2023, the Scottish Government contracted a short pilot project to adapt the NCSC's Board Toolkit and pilot its delivery with a group of public sector board members drawn from organisations across Scotland. The pilot was successful and feedback was positive. It is on the foundation of this pilot that we are now contracting a scaled-up roll-out of the training programme. We will work with the successful Service Provider to make any further tweaks to the training pack that are recommended in the evaluation report of the training pilot. - https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=OCT489754 Cyber Resilience - Training for Public Sector Boards - Globally organisations and individuals have become reliant on digital technology. Effective cyber security and resilience protect the processes and services we depend on, ensuring we can take advantage of the benefits that technology can bring. An organisation's ability to prevent, respond to and recover from a cyber attack is central to resilience. Cyber resilience is therefore a key risk and consideration for any Board. The Scottish Government's Strategic Framework for a Cyber Resilient Scotland ('the Strategic Framework'), published in February 2021, sets out what we all need to do to make Scotland a digitally secure and resilient nation. Four outcomes underpin this vision, and four action plans set out the detail of how we will achieve these. Responsibility for the implementation of the Strategic Framework lies with the Scottish Government's Cyber Resilience Unit (CRU). The Public Sector Action Plan annexed to the Framework is a priority for the CRU and overarching aim 5 seeks to embed cyber resilience into the governance, policies and processes of public sector bodies. The CRU works in partnership with a wide range of organisations including the UK Government's National Cyber Security Centre (NCSC). The NCSC supports all areas of society to understand cyber risk from our critical national infrastructure organisations to the general public. More specifically, the NCSC distils its deep knowledge and expertise into practical guidance including a Board Toolkit designed to encourage cyber security discussions between an organisation's Board and its technical experts. In spring 2023, the Scottish Government contracted a short pilot project to adapt the NCSC's Board Toolkit and pilot its delivery with a group of public sector board members drawn from organisations across Scotland. The pilot was successful and feedback was positive. It is on the foundation of this pilot that we are now contracting a scaled-up roll-out of the training programme. We will work with the successful Service Provider to make any further tweaks to the training pack that are recommended in the evaluation report of the training pilot. ## Notice URLs - http:// - http://www.publiccontractsscotland.gov.uk/info/InfoCentre.aspx?ID=2343 - http://www.publictendersscotland.publiccontractsscotland.gov.uk - http://www.scotcourts.gov.uk/the-courts/court-locations/edinburgh-sheriff-court-and-justice-of-the-peace-court - http://www.scotland.gov.uk - https://api.publiccontractsscotland.gov.uk/v1/Notice?id=ocds-r6ebe6-0000736113 - https://www.publictendersscotland.publiccontractsscotland.gov.uk/web/login.html ## Provenance This Markdown file is an alternate public rendering of the D3 Tenders contract record. The canonical page is https://d3tenders.com/contract/?ocid=ocds-r6ebe6-0000736113. The underlying structured data is available as OCDS JSON at https://d3tenders.com/contract/ocds-r6ebe6-0000736113.json.