SIA security incident event management contract
Published 21 December 2022
1. Request
Please provide details for the following contract: Security Incident Event Management
The details we require are:
- What are the contractual performance KPI’s for this contract?
- Suppliers who applied for inclusion on each framework/contract and were successful & not successful at the PQQ & ITT stages
- Actual spend on this contract/framework (and any sub lots), from the start of the contract to the current date
- Start date & duration of framework/contract?
- Could you please provide a copy of the Invitation to Tender/Further Competition supplied to all bidders for when this contract was last advertised?
- Could you provide a copy of the winning bidders Invitation to Tender/Further Competition?
- Is there an extension clause in the framework(s)/contract(s) and, if so, the duration of the extension?
- Has a decision been made yet on whether the framework(s)/contract(s) are being either extended or renewed?
- Who is the senior officer (outside of procurement) responsible for this contract?
- In addition to your SIEM service do you have a service in place to remediate in the event of a security breach?
2. Response
-
This information is attached.
-
Softcat and Quorum were the two suppliers that the SIA looked at. The only supplier that showed an initial interest via a G Cloud clarification process was Quorum. The primary decision to not move forward with this supplier was because the SIA needed a greater presence within Microsoft Azure. Microsoft Azure were able to provide professional services to build out the environment for us and the SIA would then bear the compute costs for the solution. They would then provide a security operations service by integrating into the Azure instance of Sentinnel via Azure Lighthouse. Given the whole life costs we explored a solution that could operate within our existing UK Cloud platform.
-
£81,436.80 is the actual spend of this contract to date, there is no sub lots.
-
30 April 2021 – 29 April 2023 (24 months)
-
The SIA is not able to provide this information as it is commercially sensitive. Bidders for this contract signed a Non-Disclosure Agreement before being sent the Request for Proposal.
-
The SIA is not able to provide this information as it is commercially sensitive. Moreover, contractually the SIA are not obliged to disclose this.
-
12 months.
-
Not yet.
-
Outside of procurement, the senior officer responsible for this contract is the Head of Finance and Procurement. The relevant inbox is: procurement@sia.gov.uk
-
In regard to our SIEM service, our managed security service provider offer a detect facility only. The notification of any potential breaches, and investigation/remediation is carried out by internal SIA staff members.
[Reference: FOI 0377]