---
title: "SPS-02246 Vulnerability Assessment Tool"
ocid: "ocds-r6ebe6-0000782059"
canonical_url: "https://d3tenders.com/contract/?ocid=ocds-r6ebe6-0000782059"
markdown_url: "https://d3tenders.com/contract/ocds-r6ebe6-0000782059.md"
json_url: "https://d3tenders.com/contract/ocds-r6ebe6-0000782059.json"
source: "Public Contracts Scotland"
current_stage: "Award"
buyer: "SCOTTISH PRISON SERVICE"
published: "2025-02-04"
---

# SPS-02246 Vulnerability Assessment Tool

Buyer: SCOTTISH PRISON SERVICE  
Current stage: Award  
OCID: ocds-r6ebe6-0000782059

[View canonical contract page](https://d3tenders.com/contract/?ocid=ocds-r6ebe6-0000782059)  
[Download OCDS JSON](https://d3tenders.com/contract/ocds-r6ebe6-0000782059.json)

## Summary

The Scottish Prison Service (SPS) has completed the procurement process for the "SPS-02246 Vulnerability Assessment Tool" contract, classified under the industry category of public order and safety. The contract, awarded through an open procedure, focuses on providing tools to ensure the IT department has visibility of vulnerabilities on corporate systems. The contract aims to mitigate known threats and ensure compliance with Cyber Essentials Plus certification. The procurement process included key dates such as the tender period ending on 18 November 2024, and the contract being signed on 16 January 2025, with goods delivered to the SPS headquarters in Edinburgh.

This tender provides significant opportunities for businesses, particularly SMEs specialising in IT security and vulnerability management tools. The awarded supplier, Sapphire Technologies, highlights the competitive nature of the process, which saw eight bids, all from SMEs including foreign bids from non-EU countries. Businesses looking to expand into the public safety sector and those with expertise in automated vulnerability assessment tools would find such tenders beneficial for growth and establishing a foothold in public sector security contracts.

## Notice

The SPS requires relevant tools to provide its IT department with visibility of vulnerabilities which may exist on the corporate systems. The Goods shall allow the SPS to do this in a safe and automated way. The principal objective of this Contract is to mitigate against known threats and vulnerabilities and to provide a tool set that allows nominated SPS Representatives to prioritise actions for all vulnerabilities and to monitor and manage this for compliance with Cyber Essentials Plus certification.

### Lot Information

Lot 1

The SPS has commenced this procurement process in good faith and with the intention of awarding a contract. Following publication of the Contract Notice, an Invitation to Tender (ITT) including the Single Procurement Document (SPD) will be published by SPS and will be made available to bidders. Tender responses will then be evaluated by the SPS in accordance with the ITT.

Renewal: Optional Extension 24 months available

## Key Details

| Field | Value |
| --- | --- |
| Publication source | Public Contracts Scotland |
| Latest notice | https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=FEB523194 |
| Notice type | PCS Notice - Website Contract Award Notice |
| Procurement type | Standard |
| Procurement category | Goods |
| Procurement method | Open |
| Procurement method details | Open procedure |
| Tender suitability | Not specified |
| Awardee scale | SME |
| All stages | Planning, Tender, Award |

## Dates

| Field | Value |
| --- | --- |
| Publication date | 4 Feb 2025 |
| Submission deadline | 18 Nov 2024 |
| Future notice date | 4 Nov 2024 |
| Award date | 16 Jan 2025 |
| Contract period | 2 Dec 2024 - 1 Dec 2027 |
| Recurrence | Not specified |

## Values

| Field | Value |
| --- | --- |
| Tender value | Not specified |
| Lots value | Not specified |
| Awards value | Not specified |
| Contracts value | £23,109 |

## Status

| Field | Value |
| --- | --- |
| Tender status | Complete |
| Lots status | Complete |
| Awards status | Not specified |
| Contracts status | Active |

## Buyer

| Field | Value |
| --- | --- |
| Main buyer | SCOTTISH PRISON SERVICE |
| Locality | EDINBURGH |
| Post town | Edinburgh |
| Postcode | EH12 9DJ |
| Country | Scotland |
| ITL 1 | TLM Scotland |
| ITL 2 | TLM1 East Central Scotland |
| ITL 3 | TLM13 City of Edinburgh |
| Local authority | City of Edinburgh |
| Electoral ward | Drum Brae/Gyle |
| Westminster constituency | Edinburgh West |
| Delivery location | TLM75 City of Edinburgh |

## Supplier

| Field | Value |
| --- | --- |
| Number of suppliers | 1 |
| Supplier names | SAPPHIRE TECHNOLOGIES |

## CPV Codes

### Divisions

- 48 - Software package and information systems

### Codes

- 48000000 - Software package and information systems

## Release History

- 4 Feb 2025 at 00:00 - Award - PCS Notice - Website Contract Award Notice - https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=FEB523194
- 4 Nov 2024 at 00:00 - Tender - PCS Notice - Website Contract Notice - https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=NOV517538
- 31 Oct 2024 at 00:00 - Planning - PCS Notice - Website Prior Information Notice - https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=OCT517301

## Documents

- https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=OCT517301
  SPS-02246 Vulnerability Assessment Tool - The SPS requires relevant tools to provide its IT department with visibility of vulnerabilities which may exist on the corporate systems. The Goods shall allow the SPS to do this in a safe and automated way. The principal objective of this Contract is to mitigate against known threats and vulnerabilities and to provide a tool set that allows nominated SPS Representatives to prioritise actions for all vulnerabilities and to monitor and manage this for compliance with Cyber Essentials Plus certification.
- https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=NOV517538
  SPS-02246 Vulnerability Assessment Tool - The SPS requires relevant tools to provide its IT department with visibility of vulnerabilities which may exist on the corporate systems. The Goods shall allow the SPS to do this in a safe and automated way. The principal objective of this Contract is to mitigate against known threats and vulnerabilities and to provide a tool set that allows nominated SPS Representatives to prioritise actions for all vulnerabilities and to monitor and manage this for compliance with Cyber Essentials Plus certification.
- https://www.publiccontractsscotland.gov.uk/search/show/search_view.aspx?ID=FEB523194
  SPS-02246 Vulnerability Assessment Tool - The SPS requires relevant tools to provide its IT department with visibility of vulnerabilities which may exist on the corporate systems. The Goods shall allow the SPS to do this in a safe and automated way. The principal objective of this Contract is to mitigate against known threats and vulnerabilities and to provide a tool set that allows nominated SPS Representatives to prioritise actions for all vulnerabilities and to monitor and manage this for compliance with Cyber Essentials Plus certification.

## Notice URLs

- http://
- http://www.publictendersscotland.publiccontractsscotland.gov.uk
- http://www.sps.gov.uk
- https://api.publiccontractsscotland.gov.uk/v1/Notice?id=ocds-r6ebe6-0000782059

## Provenance

This Markdown file is an alternate public rendering of the D3 Tenders contract record. The canonical page is https://d3tenders.com/contract/?ocid=ocds-r6ebe6-0000782059. The underlying structured data is available as OCDS JSON at https://d3tenders.com/contract/ocds-r6ebe6-0000782059.json.