This opportunity is closed for applications

The deadline was Thursday 6 July 2017
Ministry of Defence ISS

ISS Technical Support Specialist (PKI)

3 Incomplete applications

2 SME, 1 large

6 Completed applications

3 SME, 3 large

Important dates

Thursday 22 June 2017
Deadline for asking questions
Thursday 29 June 2017 at 11:59pm GMT
Closing date for applications
Thursday 6 July 2017 at 11:59pm GMT


Summary of the work
There is a requirement for a Defence Public Key Infrastructure (DPKI) Root Certification Authority (DRCA) and Level 1 CA PKI specialist. The responsibilities will include building, developing, configuring, operating and supporting the DRCA and Level 1 CA.
Latest start date
Monday 7 August 2017
Expected contract length
9 months with options to extend up to a maximum length of 21 months (2 days per week on average).
South West England
Organisation the work is for
Ministry of Defence ISS
Budget range
£850.00 maximum day rate. This role is inside IR35.

About the work

Why the work is being done
There is a requirement for a Defence Public Key Infrastructure (DPKI) Root Certification Authority (DRCA) and Level 1 CA PKI specialist.
Problem to be solved
The specialist will primarily work on the DRCA, and will also support the implementation of an interim Level 1 CA.

The specialist will lead on DRCA key signing operations such as issuing of ARL\CRL, Level 1 CA Certificates, Cross-Certificates, OCSP certificates and end entity certificates for Administrators.

The PKI specialist will use the DRCA Test and Development environments to prepare for activity on the live DRCA and Level 1 CA.

The DRCA and Level 1 CA rely on VMWare\Hyper-V, Microsoft and Entrust for CA software and Gemalto HSMs for key storage and generation.
Who the users are and what they need to do
Early market engagement
Any work that’s already been done
Existing team
The PKI specialist will work with the PKI technician (who manages the DRCA environments), Crypto Services for Defence and ISS (Design & Operate) for task prioritisation.
Current phase

Work setup

Address where the work will take place
ISS, MOD Corsham, Westwells Road, SN13 9NR.
Building 405 E3, Campus Distribution and Building 410; AND
ARMY Headquarters, Marlborough Lines, Andover, Hampshire
Working arrangements
All tasking will take place from MoD Corsham and you are required there on average 2 days a week (Up to a maximum of 72 days over initial 9 month period). The working day is to be 8 hours to include 30 minutes for lunch.

Occasional day visits may be required to Boddington in Gloucestershire or Andover in Hampshire. Overnight visits will only be permitted if permission is sought in advance. The individual will report to ISS Des-Arch34-Arch (Gareth Hind).
Security clearance
SC Clearance must be in place prior to commencing work due to the projects the individual is required to work with. DV is preferred.

Additional information

Additional terms and conditions

Skills and experience

Buyers will use the essential and nice-to-have skills and experience to help them evaluate suppliers’ technical competence.

Essential skills and experience
  • Demonstration of designing, developing and operating highly available PKI services. Weighting 16.00%.
  • Demonstration of designing, developing, building and operating Entrust (EASM and EAAS), and Microsoft CA (ADCS). Weighting 16.00%.
  • Show evidence of experience with Gemalto Luna SA5 HSM product, its integration with CAs and key signing ceremony controls. Weighting 16.00%.
  • Show evidence of experience of security aspects, controls and accounting within a PKI environment. Weighting 16.00%.
Nice-to-have skills and experience
  • Show evidence of experience developing and managing infrastructure services such as VMWare ESXi and Active Directory. Weighting 12.00%.
  • Demonstration of writing Certification Practice Statements (CPS) and compliance with a Certificate Policy (CP) and RFC3647. Weighting 12.00%.
  • Show knowledge and experience of IETF RFC5280 and certificate profiles based on RSA and EC. Weighting 12.00%.

How suppliers will be evaluated

How many suppliers to evaluate
Proposal criteria
  • Approach and methodology
  • How the approach or solution meets user needs
Cultural fit criteria
  • Show evidence of transparency and collaboration in decision making.
  • Demonstrate the ability and desire to share and transfer knowledge.
  • Demonstrate the ability to recognise and adapt to change in the organisation.
Payment approach
Fixed price
Assessment methods
  • Written proposal
  • Work history
  • Reference
Evaluation weighting

Technical competence


Cultural fit




Questions asked by suppliers

1. Can the authority confirm that T&S will be available for the required daytime visits to other locations.
T&S will be payable in accordance with MoD Civilian policy if required.
2. This has been put out as a 'Digital Outcome' is it in fact a role for a 'Digital Specialist'?
I can confirm that this is for a specialist role and not an outcome.
3. Is there a current incumbent to this position?
This post has been vacant since February of this year.
4. Is there a specific two days of the week the consultant would be required to work?
No the days aren’t specific. There will 2 specific days (a Wednesday and Thursday) over a 4 week (28 day) period when the contractor will be required. Otherwise the days can be agreed on contract award.