Joint venture between CCS and NCSC includes four lots and ‘once only’ answers feature for suppliers
The Crown Commercial Services (CCS) and National Cyber Security Centre (NCSC) have released the new Cyber Security Services 2 framework – their second joint venture in providing a route for consultancy and services with NCSC certification.
The framework – which is available under a 12-month agreement with the option to extend for a further 24 – provides a semi-dynamic award for suppliers. This means that any with the certification can add services at any time during the life of the agreement.
It is broken down into four lots: cyber consultancy (taking in risk assessment and management, security architecture, audit and review, and incident management); CHECK penetration testing; incident response; and tailored assurance.
There is also scope for a mini competition process to meet specific needs of buying organisations, and other features include a simplified tender pack, and a ‘once only’ process named SID4GOV. This allows suppliers to re-use questionnaire responses when bidding for other public sector procurements.
CCS said that 71% of the 121 suppliers signed up to provide services through the framework are SMEs.
Image from GOV.UK, Open Government Licence v3.0
