United Kingdom Hydrographic Office
Core Data Platform Environments Consultancy, Requirement 2- Server Hardening
1 Incomplete application
1 SME, 0 large
1 Completed application
1 SME, 0 large
Important dates
- Published
- Tuesday 12 December 2017
- Deadline for asking questions
- Thursday 14 December 2017 at 11:59pm GMT
- Closing date for applications
- Tuesday 19 December 2017 at 11:59pm GMT
Overview
- Specialist role
- Developer
- Summary of the work
- The requirement is to extend an existing CentOS server hardening script, written in Ansible, to apply Centre for Information Security (CIS) Level 1 server hardening to diverse target CentOS instances. Active Directory integration into new environments.
- Latest start date
- Friday 26 January 2018
- Expected contract length
- Aprox 3 months
- Location
- South West England
- Organisation the work is for
- United Kingdom Hydrographic Office
- Maximum day rate
About the work
- Early market engagement
- Who the specialist will work with
- The Marine Intelligence Programme
- What the specialist will work on
-
Extend an existing Ansible playbook to apply changes to new&existing servers, to bring into line with Level 1 server hardening requirements defined by the Centre for Information Security.
As the target instances perform diverse functions, including Hadoop cluster nodes, the hardening implementation will need to be tailored to suit the role of the target instance. The hardening playbook should contain logic to determine role given server is performing, &to apply appropriate hardening measures.
The playbook will be used for the secondary purpose of verification, &reporting on server security hardening, for auditing&compliance. Implemented with clear output on the steps being performed.
Work setup
- Address where the work will take place
- Admiralty Way, Taunton, Somerset TA1 2DN
- Working arrangements
- Full time, 5 Days a Week
- Security clearance
- Security Check (SC) or Disclosure of Scotland as a minimum
Additional information
- Additional terms and conditions
Skills and experience
Buyers will use the essential and nice-to-have skills and experience to help them evaluate suppliers’ technical competence.
- Essential skills and experience
-
- • Demonstrable experience of working as a technical SME within a project environment, using Agile methodologies.
- • Expertise in the following technologies: Ansible, Docker
- • Expertise in Linux system administration, especially CentOS and Red Hat
- • Expertise in security of UNIX systems, especially CentOS and Red Hat
- • Experience of administering network security including configuring firewalls, Kerberos, LDAP and SSSD
- • Experience of administering containerised applications using Docker
- • Experience of version control using Git
- Nice-to-have skills and experience
- Experience of working with Hadoop clusters
How suppliers will be evaluated
- How many specialists to evaluate
- 5
- Cultural fit criteria
- Ability to work within a team
- Assessment methods
- Work history
- Evaluation weighting
-
Technical competence
70%Cultural fit
10%Price
20%
Questions asked by suppliers
- 1. Is this inside or outside of IR35?
- Outside
- 2. Please can you advise on budget?
- Maximum of £650 per day
- 3. Regarding the SC clearance status, if the candidate does not hold active SC clearance and is willing to go through the process, can this be considered, if yes will you sponsor the security clearance?
- No
- 4. Can any other higher security clearance be considered?
- Yes, DV clearance is acceptable.
- 5. Regarding the Disclosure of Scotland clearance status, if the candidate does not hold active Disclosure of Scotland clearance and is willing to go through the process, can this be considered, if yes will you sponsor the security clearance?
- Yes but the applicant is expected to conclude their own application.
- 6. What is the lead time for feedback once the application is submitted?
- As soon as possible, this varies depending on interview times ect.
- 7. Any chances of change in start date as the latest date mentioned is Friday 26 January 2018?
- Please provide the earliest start date within your submission.
- 8. What are the other expenses which will be paid?
- None, please provide a day rate inclusive
- 9. What are the exact work locations?
- Admiralty Way, Taunton, Somerset, TA1 2DN
- 10. Any specific format(pdf,doc) in which CVs to be sent later?
- 11. Is occasional remote working allowed?
- Possibly depending on access required
- 12. Is there any travel involved in this role and will the travel expenses be paid?
- Inclusive day rate paid and work to be carried out in Taunton
- 13. Is the rate inclusive or exclusive of VAT?
- Exclusive
- 14. Would you consider work permit holders (e.g. Tier 2 General Visa) and EU passport holders for this role ?
- Disclosure of Scotland status as a minimum or SC clearance would be required by any applicant