Hysbysiad dyfarnu contract
Canlyniadau'r weithdrefn gaffael
Adran I:
Endid
contractio
I.1) Enw a chyfeiriad
London Borough of Ealing
London Borough of Ealing, Perceval House, 14-16 Uxbridge Road
Ealing
W5 2HL
UK
Person cyswllt: Ms Christine Baker
Ffôn: +44 2088255122
E-bost: bakerc@ealing.gov.uk
NUTS: UK
Cyfeiriad(au) rhyngrwyd
Prif gyfeiriad: http://www.ealing.gov.uk
Cyfeiriad proffil y prynwr: http://www.ealing.gov.uk
I.4) Y math o awdurdod contractio
Awdurdod rhanbarthol neu leol
I.5) Prif weithgaredd
Gwasanaethau cyhoeddus cyffredinol
Adran II: Gwrthrych
II.1) Cwmpas y caffaeliad
II.1.1) Teitl
Ealing ICT Cyber Security Contract 2023
Cyfeirnod: DN634936
II.1.2) Prif god CPV
48220000
II.1.3) Y math o gontract
Cyflenwadau
II.1.4) Disgrifiad byr
Ealing Council required a range of managed security services provided by a trusted single source supplier who could provide flexible and integrated support over a 3 year contract term. This was to replace the existing contract for these services that expired on 28th February 2023. The contracting authority was seeking to procure services for:
1) Managed Security Operations Centre (SOC)
a) Security monitoring, threat protection, threat hunting and incident response covering a digital estate of over 4000 endpoints and 300 servers, across Windows, Linux, and Cloud-based (Azure) operating systems and environments;
b) Incident investigations, triage, and response;
c) Vulnerability scanning of many IP ranges / hosts with remediation tracking.
2) Incident Response
a) Implementation of joint incident response processes for major incidents, out-of-band communication mechanisms, and management plans Incident investigations, triage, and response;
b) Forensic analysis of indicators of compromise and analysis of malware samples to understand the extent of a compromise should it occur;
c) Rapid remote interception of, containment of, and response to live cyber threats;
d) Triage and first response without requiring intervention from Ealing personnel;
e) This should be read and answered in conjunction with the SOC requirement as complimentary services/capabilities.
3) Penetration Testing
a) Security audits and assessment including penetration testing of web applications and infrastructure, configuration and build reviews, etc...
b) IT Health Check Testing delivered by suitably qualified and experienced personnel, in accordance with NCSC Protocols;
c) 'Red Team' attack simulation services;
d) The supplier should be able to provide resourcing for approximately 100 days of penetration testing per annum.
The Council awarded a call off contract to Jumpsec Limited from the Crown Commercial Services Dynamic Purchasing System (DPS) "Cyber Security Services 3 - RM3764.3", in accordance with the rules of the DPS for the provision of ICT Cyber Security Services for a duration of three years commencing on the 1 March 2023, with a budget of £0.360m per annum.
II.1.6) Gwybodaeth am lotiau
Mae’r contract hwn wedi’i rannu’n lotiau:
Na
II.1.7) Cyfanswm gwerth y caffaeliad
Gwerth heb gynnwys TAW: 1 080 000.00 GBP
II.2) Disgrifiad
II.2.3) Man cyflawni
Cod NUTS:
UK
II.2.4) Disgrifiad o’r caffaeliad
Ealing Council required a range of managed security services provided by a trusted single source supplier who could provide flexible and integrated support over a 3 year contract term. This was to replace the existing contract for these services that expired on 28th February 2023. The contracting authority was seeking to procure services for:
1) Managed Security Operations Centre (SOC)
a) Security monitoring, threat protection, threat hunting and incident response covering a digital estate of over 4000 endpoints and 300 servers, across Windows, Linux, and Cloud-based (Azure) operating systems and environments;
b) Incident investigations, triage, and response;
c) Vulnerability scanning of many IP ranges / hosts with remediation tracking.
2) Incident Response
a) Implementation of joint incident response processes for major incidents, out-of-band communication mechanisms, and management plans Incident investigations, triage, and response;
b) Forensic analysis of indicators of compromise and analysis of malware samples to understand the extent of a compromise should it occur;
c) Rapid remote interception of, containment of, and response to live cyber threats;
d) Triage and first response without requiring intervention from Ealing personnel;
e) This should be read and answered in conjunction with the SOC requirement as complimentary services/capabilities.
3) Penetration Testing
a) Security audits and assessment including penetration testing of web applications and infrastructure, configuration and build reviews, etc...
b) IT Health Check Testing delivered by suitably qualified and experienced personnel, in accordance with NCSC Protocols;
c) 'Red Team' attack simulation services;
d) The supplier should be able to provide resourcing for approximately 100 days of penetration testing per annum.
The Council awarded a call off contract to Jumpsec Limited from the Crown Commercial Services Dynamic Purchasing System (DPS) "Cyber Security Services 3 - RM3764.3", in accordance with the rules of the DPS for the provision of ICT Cyber Security Services for a duration of three years commencing on the 1 March 2023, with a budget of £0.360m per annum.
II.2.5) Meini prawf dyfarnu
Maen prawf cost: Commercial
/ Pwysoliad: 60
Maen prawf cost: Technical
/ Pwysoliad: 40
II.2.11) Gwybodaeth am opsiynau
Opsiynau:
Na
II.2.13) Gwybodaeth am Gronfeydd yr Undeb Ewropeaidd
Mae'r broses gaffael yn gysylltiedig â phrosiect a/neu raglen a ariennir gan gronfeydd yr Undeb Ewropeaidd:
Na
Section IV: Gweithdrefn
IV.1) Disgrifiad
IV.1.1) Y math o weithdrefn
Dyfarnu contract heb gyhoeddi galwad am gystadleuaeth yng Nghyfnodolyn Swyddogol yr Undeb Ewropeaidd ymlaen llaw
Cyfiawnhau'r weithdrefn ddyfarnu a ddewiswyd:
Mae’r caffaeliad y tu allan i gwmpas cymhwysiad y gyfarwyddeb
Esboniad
The contract was a call off from the Crown Commercial Services Dynamic Purchasing System (DPS) "Cyber Security Services 3 - RM3764.3"
IV.1.8) Gwybodaeth am Gytundeb Caffael y Llywodraeth (GPA)
The procurement is covered by the Government Procurement Agreement:
Na
Section V: Dyfarnu contract
Rhif Contract: DN634936
Dyfernir contract/lot:
Ydy
V.2 Dyfarnu contract
V.2.1) Y dyddiad y daeth y contract i ben
20/12/2022
V.2.2) Gwybodaeth am dendrau
Nifer y tendrau a ddaeth i law: 5
Nifer y tendrau a ddaeth i law gan BBaChau: 0
Nifer y tendrau a dderbyniwyd gan dendrwyr o Aelod-wladwriaethau yr UE: 0
Nifer y tendrau a dderbyniwyd gan dendrwyr o Aelod-wladwriaethau nad ydynt yn aelodau o'r UE: 0
Nifer y tendrau a ddaeth i law drwy ddulliau electronig: 5
Dyfarnwyd y contract i gr?p o weithredwyr economaidd:
Na
V.2.3) Enw a chyfeiriad y contractwr
Jumpsec Limited
1 Golden Court
Richmond, Surrey
TW9 1EU
UK
Ffôn: +44 3339398080
E-bost: lucy.edlund@jumpsec.com
NUTS: UK
BBaCh yw’r contractwr:
Na
V.2.4) Gwybodaeth am werth y contract/lot (heb gynnwys VAT)
Cyfanswm gwerth y contract/lot: 1 080 000.00 GBP
V.2.5) Gwybodaeth am is-gontractio
Section VI: Gwybodaeth ategol
VI.4) Gweithdrefnau adolygu
VI.4.1) Corff adolygu
www.ealing.gov.uk
London Borough of Ealing, Perceval House, 14-16 Uxbridge Road
Ealing, London
W5 2HL
UK
Ffôn: +44 2088259655
E-bost: johala@ealing.gov.uk
Cyfeiriad(au) rhyngrwyd
URL: www.ealing.gov.uk
VI.5) Dyddiad anfon yr hysbysiad hwn
23/03/2023