Ministry of Defence ISS

ISS Technical Support Specialist (PKI)

Incomplete applications

5
Incomplete applications
4 SME, 1 large

Completed applications

5
Completed applications
3 SME, 2 large
Important dates
Opportunity attribute name Opportunity attribute value
Published Wednesday 27 September 2017
Deadline for asking questions Friday 29 September 2017 at 11:59pm GMT
Closing date for applications Wednesday 4 October 2017 at 11:59pm GMT

Overview

Overview
Opportunity attribute name Opportunity attribute value
Specialist role Technical Architect
Summary of the work There is a requirement for a Defence Public Key Infrastructure (DPKI) Root Certification Authority (DRCA) and Level 1 CA PKI specialist. The responsibilities will include building, developing, configuring, operating and supporting the DRCA and Level 1 CA.
Latest start date Friday 20 October 2017
Expected contract length 9 months with options to extend up to a maximum length of 21 months (2 days per week on average).
Location South West England
Organisation the work is for Ministry of Defence ISS
Maximum day rate £850.00 maximum day rate. This role is inside IR35.

About the work

About the work
Opportunity attribute name Opportunity attribute value
Early market engagement
Who the specialist will work with The PKI specialist will work with the PKI technician (who manages the DRCA environments), Crypto Services for Defence and ISS (Design & Operate) for task prioritisation.
What the specialist will work on The specialist will primarily work on the DRCA, and will also support the implementation of an interim Level 1 CA.

The specialist will lead on DRCA key signing operations such as issuing of ARL\CRL, Level 1 CA Certificates, Cross-Certificates, OCSP certificates and end entity certificates for Administrators.

The PKI specialist will use the DRCA Test and Development environments to prepare for activity on the live DRCA and Level 1 CA.

The DRCA and Level 1 CA rely on VMWare\Hyper-V, Microsoft and Entrust for CA software and Gemalto HSMs for key storage and generation.

Work setup

Work setup
Opportunity attribute name Opportunity attribute value
Address where the work will take place ISS, MOD Corsham, Westwells Road, SN13 9NR.
Building 405 E3, Campus Distribution and Building 410; AND
ARMY Headquarters, Marlborough Lines, Andover, Hampshire

T&S will be payable in accordance with MoD Civilian policy if daytime visits to other locations are required.
Working arrangements All tasking will take place from MoD Corsham and you are required there on average 2 days a week (Up to a maximum of 72 days over initial 9 month period). Working day is to be 8 hours including 30 minutes lunch.

There will 2 specific days (Wednesday & Thursday) over a 4 week (28 day) period. Other days to be agreed on contract award.

Occasional day visits may be required to Boddington in Gloucestershire or Andover in Hampshire. Overnight visits will only be permitted if permission is sought in advance. The individual will report to ISS Des-Arch34-Arch (Gareth Hind).
Security clearance SC Clearance must be in place prior to commencing work due to the projects the individual is required to work with. DV is preferred.

Additional information

Additional information
Opportunity attribute name Opportunity attribute value
Additional terms and conditions

Skills and experience

Buyers will use the essential and nice-to-have skills and experience to help them evaluate suppliers’ technical competence.

Skills and experience
Opportunity attribute name Opportunity attribute value
Essential skills and experience
  • Demonstration of designing, developing and operating highly available PKI services. Weighting 16.00%.
  • Demonstration of designing, developing, building and operating Entrust (EASM and EAAS), and Microsoft CA (ADCS). Weighting 16.00%.
  • Show evidence of experience with Gemalto Luna SA5 HSM product, its integration with CAs and key signing ceremony controls. Weighting 16.00%.
  • Show evidence of experience of security aspects, controls and accounting within a PKI environment. Weighting 16.00%.
Nice-to-have skills and experience
  • Show evidence of experience developing and managing infrastructure services such as VMWare ESXi and Active Directory. Weighting 12.00%.
  • Demonstration of writing Certification Practice Statements (CPS) and compliance with a Certificate Policy (CP) and RFC3647. Weighting 12.00%.
  • Show knowledge and experience of IETF RFC5280 and certificate profiles based on RSA and EC. Weighting 12.00%.

How suppliers will be evaluated

How suppliers will be evaluated
Opportunity attribute name Opportunity attribute value
How many specialists to evaluate 5
Cultural fit criteria
  • Show evidence of transparency and collaboration in decision making.
  • Demonstrate the ability and desire to share and transfer knowledge.
  • Demonstrate the ability to recognise and adapt to change in the organisation.
Assessment methods
  • Work history
  • Reference
Evaluation weighting

Technical competence

65%

Cultural fit

5%

Price

30%

Questions asked by suppliers

No questions have been answered yet