Awarded to Nasstar

Start date: Monday 12 February 2018
Value: £19,200
Company size: large
Home Office

AWS Solution Architect

11 Incomplete applications

10 SME, 1 large

15 Completed applications

13 SME, 2 large

Important dates

Thursday 7 December 2017
Deadline for asking questions
Monday 11 December 2017 at 11:59pm GMT
Closing date for applications
Thursday 14 December 2017 at 11:59pm GMT


Specialist role
Technical Architect
Summary of the work
An innovative, exploratory project to develop a data analytics platform & use the platform to identify cyber threats from AWS protective monitoring logs. You will be developing a prototype using open source tools to collate logs from multiple AWS accounts, and work with Threat Analysts to perform data analytics.
Latest start date
Monday 12 February 2018
Expected contract length
3 months
Organisation the work is for
Home Office
Maximum day rate
Maximum Day rate £850

About the work

Early market engagement
Who the specialist will work with
The AWS Solution Architect will be largely working independently and responsible for delivering the prototype and the required outcomes. You will be supported by part time Project Manager and Security Architect. You will also have the opportunity to work together with Cyber threat experts, who will support in the development of the threat scenarios to be explored.
What the specialist will work on
An innovative and exploratory project to develop a data analytics platform, and use the platform to identify cyber threats from AWS protective monitoring logs. You will be required to develop a prototype using open source tools to collate logs from multiple AWS accounts, and work with Threat Analysts to perform data analytics on the logs.
Work on sand box environment on AWS to prove security capability and controls could be achieved for transferred to production environments.

Work setup

Address where the work will take place
Main location for the work will be in Croydon, with some meetings in central London. There may also be a requirement for occasional travel to Manchester.
Remote working may be available where necessary.
Working arrangements
Travel to regional sites to be agreed, expenses incurred from travel outside of the M25/Greater London will be subject to Home Office Travel and Subsistence Policy.
Security clearance
All staff must be SC cleared or capable of obtaining clearance.

Additional information

Additional terms and conditions

Skills and experience

Buyers will use the essential and nice-to-have skills and experience to help them evaluate suppliers’ technical competence.

Essential skills and experience
  • Demonstrate experience of designing/implementing brand-new AWS Cloud solutions, with ability to rapidly provision AWS environments with VPC, IAM and EC2.
  • Demonstrate experience with AWS security and compliance offerings, including CloudTrail, IAM cross account roles, CloudWatch, AWSConfig and Trust Advisor.
  • Demonstrate experience with big data analytic tools/techniques to collect/perform analysis of data, with data mining&visualisation techniques, including knowledge of the AWS data analytics products (e.g. Kinesis, Firehose, ElasticSearch, RedShift etc).
  • Demonstrate ability to evaluate, and independently implement from self-driven research open source Linux tools.
  • Have a strong understanding of networking protocols, monitoring tools, and techniques, including VPC Flow
  • Demonstrable ability to work with business and security stakeholders to understand their requirements, and deliver a documented capability to them.
Nice-to-have skills and experience
  • Have experience of open source security audit tools, such as SecurityMonkey, and traffic generation tools.
  • Have knowledge of Protective Monitoring best practice and SIEM solutions, such as AlienVault.
  • Have experience of developing scripts using the AWS API .

How suppliers will be evaluated

How many specialists to evaluate
Cultural fit criteria
  • Work collaboratively and share knowledge and experience with other team members
  • Be transparent and collaborative when making decisions
  • Take responsibility for their work
  • Subject matter expertise
  • Work in partnership with flexibility
Assessment methods
Work history
Evaluation weighting

Technical competence


Cultural fit




Questions asked by suppliers

1. Can the authority please confirm whether this role will be inside or outside IR35?
This role is considered outside of IR35 legislation, however, it is up to the successful applicant to prove that they are outside of IR35 status as part of the on-boarding process.
2. You mention in a previous reply that "it is up to the successful applicant to prove IR35". This is not the way IR35 intermediaries legislation works. The Public Sector End Client (Home Office in this case) must make a determination as to whether the role is IR35 or not, before the role starts. What is the IR35 status for this role?
The Home Office deems this role to be outside of IR35.
3. Can the authority please confirm if they will be willing to sponsor an applicant for SC Clearance.
The Home Office confirms it will sponsor SC clearance.
4. Can you confirm the assessment method is 'Work History' only?
Due to a technical error, only the option 'Work History' was selected. Please be aware the assessment will on the basis of 'Work History', 'References' and 'Interview'.