United Kingdom Hydrographic Office

Core Data Platform Environments Consultancy, Requirement 2- Server Hardening

Incomplete application

1
Incomplete application
1 SME, 0 large

Completed application

1
Completed application
1 SME, 0 large
Important dates
Opportunity attribute name Opportunity attribute value
Published Tuesday 12 December 2017
Deadline for asking questions Thursday 14 December 2017 at 11:59pm GMT
Closing date for applications Tuesday 19 December 2017 at 11:59pm GMT

Overview

Overview
Opportunity attribute name Opportunity attribute value
Specialist role Developer
Summary of the work The requirement is to extend an existing CentOS server hardening script, written in Ansible, to apply Centre for Information Security (CIS) Level 1 server hardening to diverse target CentOS instances. Active Directory integration into new environments.
Latest start date Friday 26 January 2018
Expected contract length Aprox 3 months
Location South West England
Organisation the work is for United Kingdom Hydrographic Office
Maximum day rate

About the work

About the work
Opportunity attribute name Opportunity attribute value
Early market engagement
Who the specialist will work with The Marine Intelligence Programme
What the specialist will work on Extend an existing Ansible playbook to apply changes to new&existing servers, to bring into line with Level 1 server hardening requirements defined by the Centre for Information Security.
As the target instances perform diverse functions, including Hadoop cluster nodes, the hardening implementation will need to be tailored to suit the role of the target instance. The hardening playbook should contain logic to determine role given server is performing, &to apply appropriate hardening measures.
The playbook will be used for the secondary purpose of verification, &reporting on server security hardening, for auditing&compliance. Implemented with clear output on the steps being performed.

Work setup

Work setup
Opportunity attribute name Opportunity attribute value
Address where the work will take place Admiralty Way, Taunton, Somerset TA1 2DN
Working arrangements Full time, 5 Days a Week
Security clearance Security Check (SC) or Disclosure of Scotland as a minimum

Additional information

Additional information
Opportunity attribute name Opportunity attribute value
Additional terms and conditions

Skills and experience

Buyers will use the essential and nice-to-have skills and experience to help them evaluate suppliers’ technical competence.

Skills and experience
Opportunity attribute name Opportunity attribute value
Essential skills and experience
  • • Demonstrable experience of working as a technical SME within a project environment, using Agile methodologies.
  • • Expertise in the following technologies: Ansible, Docker
  • • Expertise in Linux system administration, especially CentOS and Red Hat
  • • Expertise in security of UNIX systems, especially CentOS and Red Hat
  • • Experience of administering network security including configuring firewalls, Kerberos, LDAP and SSSD
  • • Experience of administering containerised applications using Docker
  • • Experience of version control using Git
Nice-to-have skills and experience Experience of working with Hadoop clusters

How suppliers will be evaluated

How suppliers will be evaluated
Opportunity attribute name Opportunity attribute value
How many specialists to evaluate 5
Cultural fit criteria Ability to work within a team
Assessment methods Work history
Evaluation weighting

Technical competence

70%

Cultural fit

10%

Price

20%

Questions asked by suppliers

Questions asked by suppliers
Supplier question Buyer answer
1. Is this inside or outside of IR35? Outside
2. Please can you advise on budget? Maximum of £650 per day
3. Regarding the SC clearance status, if the candidate does not hold active SC clearance and is willing to go through the process, can this be considered, if yes will you sponsor the security clearance? No
4. Can any other higher security clearance be considered? Yes, DV clearance is acceptable.
5. Regarding the Disclosure of Scotland clearance status, if the candidate does not hold active Disclosure of Scotland clearance and is willing to go through the process, can this be considered, if yes will you sponsor the security clearance? Yes but the applicant is expected to conclude their own application.
6. What is the lead time for feedback once the application is submitted? As soon as possible, this varies depending on interview times ect.
7. Any chances of change in start date as the latest date mentioned is Friday 26 January 2018? Please provide the earliest start date within your submission.
8. What are the other expenses which will be paid? None, please provide a day rate inclusive
9. What are the exact work locations? Admiralty Way, Taunton, Somerset, TA1 2DN
10. Any specific format(pdf,doc) in which CVs to be sent later? PDF
11. Is occasional remote working allowed? Possibly depending on access required
12. Is there any travel involved in this role and will the travel expenses be paid? Inclusive day rate paid and work to be carried out in Taunton
13. Is the rate inclusive or exclusive of VAT? Exclusive
14. Would you consider work permit holders (e.g. Tier 2 General Visa) and EU passport holders for this role ? Disclosure of Scotland status as a minimum or SC clearance would be required by any applicant