Cyber Remediation Cyber Ops Delivery Partner
A Addendum Notice
by H M REVENUE & CUSTOMS
- Source
- Find a Tender
- Type
- Contract (Services)
- Duration
- not specified
- Value
- ___
- Sector
- TECHNOLOGY
- Published
- 21 Nov 2022
- Delivery
- not specified
- Deadline
- n/a
Concepts
Location
1 buyer
- HM Revenue & Customs Salford
Description
HMRC Chief Digital and Information Office (CDIO) is the internal department tasked with the provision of critical IT services, which enable billions of pounds of annual tax revenue, customer interfaces, and other UK tax operational systems. The Enterprise Security Programme has secured investment for a three-year period which started April 2022. The investment for 2023/24 will contribute to HMRCs objectives by delivering enterprise-wide security improvements and support strategic planning and delivery activities (transformational, remediatory and enabling). The Cyber Remediation and Cyber Operations Projects are 2 of 5 projects within the Enterprise Security Programme. Their objective is to deliver risk mitigation by remediating known vulnerabilities across our systems and services through the application of patches, configuration changes and encryption, additional access & session monitoring controls as well as strengthening networks/vulnerability assessment security controls/assurance and enhance HMRCs capability to mitigate, detect and respond to Cyber Security threats.
Ammendments to Previous Notice
2. II.2.4
• Co-ordination of Vulnerability scanning activity using third party and/or in-house vulnerability scanning tool and subsequent patching and hardening addressing vulnerability identified from vulnerability scans (~ 135 Services) • Co-ordination with incumbent suppliers to enable Transparent Data Encryption (TDE) for in-scope services (~30 Services) • Co-ordination of the implementation of Oracle Key Vault on to the HMRC Estate and facilitating the integration of existing HMRC Services onto Oracle Key Vault. • Co-ordination with incumbent supplier to apply Transport Layer Security (TLS) for in-scope services (~60 Services) • Co-ordination of Patching of WebLogic platform and upgrade to v10.3.6 and uplift of Java to v1.7 (~ 15 Services) • Co-ordination of the deployment of Skybox onto the HMRC Estate • Co-ordination with HMRC Delivery areas to on-board/integrate the Tenable Vulnerability Scanning tool for in scope HMRC Services
CPV Codes
- 72000000 - IT services: consulting, software development, Internet and support
Other Information
** PREVIEW NOTICE, please check Find a Tender for full details. **
Reference
- ocds-h6vhtk-037eee
- FTS 032987-2022