--- title: "Cyber Penetration Testing Services" ocid: "ocds-r6ebe6-0000750053" canonical_url: "https://d3tenders.com/contract/?ocid=ocds-r6ebe6-0000750053" markdown_url: "https://d3tenders.com/contract/ocds-r6ebe6-0000750053.md" json_url: "https://d3tenders.com/contract/ocds-r6ebe6-0000750053.json" source: "Public Contracts Scotland" current_stage: "Award" buyer: "CLYDE VALLEY HOUSING ASSOCIATION LIMITED" published: "2024-02-16" --- # Cyber Penetration Testing Services Buyer: CLYDE VALLEY HOUSING ASSOCIATION LIMITED Current stage: Award OCID: ocds-r6ebe6-0000750053 [View canonical contract page](https://d3tenders.com/contract/?ocid=ocds-r6ebe6-0000750053) [Download OCDS JSON](https://d3tenders.com/contract/ocds-r6ebe6-0000750053.json) ## Summary The Clyde Valley Housing Association Limited, located in Motherwell, UK, has awarded a contract for Cyber Penetration Testing Services to Dionach Ltd. The procurement process, initiated through a tender, is now complete. The contract was signed on 15th February 2024, with a value of £25,650. The services fall under the main procurement category of services. The association conducted bi-annual testing on websites, external network, and web application services to enhance security. This tender for Cyber Penetration Testing Services by the Clyde Valley Housing Association Limited offers business growth opportunities for companies specializing in cybersecurity services. Businesses capable of conducting penetration testing on websites, external networks, and web application services would be well-suited to compete for this contract. The tender, following an open procurement procedure, aims to improve security measures and protect sensitive data within the organisation, creating avenues for business expansion in the cybersecurity sector. ## Notice Scope of Work The selected vendor will be responsible for performing the following scope of work: a. Bi-annual (March & November) testing on the following: i. Website Penetration Testing of 2 Websites: - Conduct a thorough assessment of our website's security vulnerabilities. - Identify and exploit potential weaknesses in web applications. - Evaluate the website's resilience against common attack vectors. - Provide recommendations for remediation based on the findings. ii. External Network Penetration Testing: - Assess the security of our external network infrastructure. - Identify and exploit potential vulnerabilities in network devices. - Evaluate the effectiveness of firewall configurations. - Test for unauthorized access to sensitive data. - Provide recommendations for improving network security. iii. Web Application Services Penetration Testing of 2 Services: - Evaluate the security of web application services used by our organization. - Identify potential security flaws in these services. - Test for data leakage and unauthorized access. - Provide recommendations for enhancing the security of third-party integrations. ### Lot Information Lot 1 Scope of Work The selected vendor will be responsible for performing the following scope of work: a. Bi-annual (March & November) testing on the following: i. Website Penetration Testing of 2 Websites: - Conduct a thorough assessment of our website's security vulnerabilities. - Identify and exploit potential weaknesses in web applications. - Evaluate the website's resilience against common attack vectors. - Provide recommendations for remediation based on the findings. ii. External Network Penetration Testing: - Assess the security of our external network infrastructure. - Identify and exploit potential vulnerabilities in network devices. - Evaluate the effectiveness of firewall configurations. - Test for unauthorized access to sensitive data. - Provide recommendations for improving network security. iii. Web Application Services Penetration Testing of 2 Services: - Evaluate the security of web application services used by our organization. - Identify potential security flaws in these services. - Test for data leakage and unauthorized access. - Provide recommendations for enhancing the security of third-party integrations. Renewal: 3 years + 1 + 1 ## Key Details | Field | Value | | --- | --- | | Publication source | Public Contracts Scotland | | Latest notice | https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=FEB498884 | | Notice type | PCS Notice - Website Contract Award Notice | | Procurement type | Standard | | Procurement category | Services | | Procurement method | Open | | Procurement method details | Open procedure | | Tender suitability | Not specified | | Awardee scale | SME | | All stages | Tender, Award | ## Dates | Field | Value | | --- | --- | | Publication date | 16 Feb 2024 | | Submission deadline | 1 Dec 2023 | | Future notice date | Not specified | | Award date | 15 Feb 2024 | | Contract period | 8 Jan 2024 - 7 Jan 2027 | | Recurrence | Not specified | ## Values | Field | Value | | --- | --- | | Tender value | £90,000 | | Lots value | Not specified | | Awards value | Not specified | | Contracts value | £25,650 | ## Status | Field | Value | | --- | --- | | Tender status | Complete | | Lots status | Complete | | Awards status | Not specified | | Contracts status | Active | ## Buyer | Field | Value | | --- | --- | | Main buyer | CLYDE VALLEY HOUSING ASSOCIATION LIMITED | | Locality | MOTHERWELL | | Post town | Motherwell | | Postcode | ML1 1PN | | Country | Scotland | | ITL 1 | TLM Scotland | | ITL 2 | TLM3 West Central Scotland | | ITL 3 | TLM34 North Lanarkshire | | Local authority | North Lanarkshire | | Electoral ward | Motherwell North | | Westminster constituency | Motherwell, Wishaw and Carluke | | Delivery location | TLM84 North Lanarkshire | ## Supplier | Field | Value | | --- | --- | | Number of suppliers | 1 | | Supplier names | DIONACH | ## CPV Codes ### Divisions - 72 - IT services: consulting, software development, Internet and support ### Codes - 72222300 - Information technology services ## Release History - 16 Feb 2024 at 00:00 - Award - PCS Notice - Website Contract Award Notice - https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=FEB498884 - 10 Nov 2023 at 00:00 - Tender - PCS Notice - Website Contract Notice - https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=NOV492395 ## Documents - https://www.publiccontractsscotland.gov.uk/NoticeDownload/DownloadDocument.aspx?id=NOV492395&idx=1 10th November 2023 - ITT - Cyber Penetration Testing - https://www.publiccontractsscotland.gov.uk/NoticeDownload/DownloadDocument.aspx?id=NOV492395&idx=2 10th November 2023 - SPD - Cyber Penetration Testing - https://www.publiccontractsscotland.gov.uk/NoticeDownload/DownloadDocument.aspx?id=NOV492395&idx=3 10th November 2023 - Pricing - https://www.publiccontractsscotland.gov.uk/NoticeDownload/DownloadDocument.aspx?id=NOV492395&idx=4 10th November 2023 - Terms and conditions - https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=NOV492395 Cyber Penetration Testing Services - Scope of Work The selected vendor will be responsible for performing the following scope of work: a. Bi-annual (March & November) testing on the following: i. Website Penetration Testing of 2 Websites: - Conduct a thorough assessment of our website's security vulnerabilities. - Identify and exploit potential weaknesses in web applications. - Evaluate the website's resilience against common attack vectors. - Provide recommendations for remediation based on the findings. ii. External Network Penetration Testing: - Assess the security of our external network infrastructure. - Identify and exploit potential vulnerabilities in network devices. - Evaluate the effectiveness of firewall configurations. - Test for unauthorized access to sensitive data. - Provide recommendations for improving network security. iii. Web Application Services Penetration Testing of 2 Services: - Evaluate the security of web application services used by our organization. - Identify potential security flaws in these services. - Test for data leakage and unauthorized access. - Provide recommendations for enhancing the security of third-party integrations. - https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=FEB498884 Cyber Penetration Testing Services - Scope of Work The selected vendor will be responsible for performing the following scope of work: a. Bi-annual (March & November) testing on the following: i. Website Penetration Testing of 2 Websites: - Conduct a thorough assessment of our website's security vulnerabilities. - Identify and exploit potential weaknesses in web applications. - Evaluate the website's resilience against common attack vectors. - Provide recommendations for remediation based on the findings. ii. External Network Penetration Testing: - Assess the security of our external network infrastructure. - Identify and exploit potential vulnerabilities in network devices. - Evaluate the effectiveness of firewall configurations. - Test for unauthorized access to sensitive data. - Provide recommendations for improving network security. iii. Web Application Services Penetration Testing of 2 Services: - Evaluate the security of web application services used by our organization. - Identify potential security flaws in these services. - Test for data leakage and unauthorized access. - Provide recommendations for enhancing the security of third-party integrations. ## Notice URLs - http:// - https://api.publiccontractsscotland.gov.uk/v1/Notice?id=ocds-r6ebe6-0000750053 - https://cvha.org.uk/ - https://www.publiccontractsscotland.gov.uk/ ## Provenance This Markdown file is an alternate public rendering of the D3 Tenders contract record. The canonical page is https://d3tenders.com/contract/?ocid=ocds-r6ebe6-0000750053. The underlying structured data is available as OCDS JSON at https://d3tenders.com/contract/ocds-r6ebe6-0000750053.json.