Awarded to Finyx Consulting Limited

Start date: Saturday 1 September 2018
Value: £850,000
Company size: SME
HM Revenue and Customs

Security Cluster 1 (HMRC)

6 Incomplete applications

0 SME, 6 large

14 Completed applications

4 SME, 10 large

Important dates

Published
Tuesday 5 June 2018
Deadline for asking questions
Tuesday 12 June 2018 at 11:59pm GMT
Closing date for applications
Tuesday 19 June 2018 at 11:59pm GMT

Overview

Summary of the work
As Security Cluster Lead Department, HMRC will be standing up a Central Cluster Security Unit delivering security services to other departments. We are seeking transition from design, standing up the Cluster Security Unit and delivery of live services working with Cabinet Office ensuring central operating model alignment and design consistency.
Latest start date
Monday 2 July 2018
Expected contract length
to 31/3/19
Location
London
Organisation the work is for
HM Revenue and Customs
Budget range
£850,000

About the work

Why the work is being done
The Project forms part of the wider Cabinet Office Transforming Government Security Programme (TGSP) aimed at transforming the way Government delivers protective security.
Problem to be solved
Central Government Departments will receive security services through four dedicated central 'Cluster' Security Units (CSUs). As the lead for one of CSUs, HMRC needs to design, implement and run security services for 15 Government Departments. Services will need to meet the common model provided by Cabinet Office through it's Security Service Catalogue. HMRC will also need to provide a cross Government Security Incident Capture Tool. Development of strategies and plans for transitioning services into live running.
Who the users are and what they need to do
Services will be ordered through Senior Security Advisers in each of our 15 'Cluster' Departments. Government Security Group will need to understand how the cluster Security works and fits in the new model.
Early market engagement
Any work that’s already been done
HMRC has already delivered some outline organisational design work for their target operating model for HMRC's Cluster 1 using Finyx.
Existing team
There is a central programme team based in the Cabinet Office, and a programme team of existing civil servants based in HMRC.
Current phase
Not applicable

Work setup

Address where the work will take place
London
Working arrangements
Open about working practices - flexible to ensure best and most efficient outcomes. HMRC would suggest that six people are required to spend time on the project, 4 operating as Project Managers, one at Programme Director level and one PMO support, with preference for consistency of people throughout the project.
Security clearance
SC may be required

Additional information

Additional terms and conditions
All processes, tools, templates, IPR or other documentation produced under the contract to be made available under the Open Government Licence;
• All documentation to be stored within the central Programme file structure and available to internal staff at all times; Any passwords to be provided to relevant personnel, on production of documents, without request;

Skills and experience

Buyers will use the essential and nice-to-have skills and experience to help them evaluate suppliers’ technical competence.

Essential skills and experience
  • Evidenced experience of working on government change programmes within the last 3 years;
  • Evidenced experience of delivering organisational design projects in government in the last 3 years;
  • Show experience of working in a challenging and complex public sector environment with regularly changing priorities.
  • Experience of implementing a new Target Operating model;
Nice-to-have skills and experience
Evidence of technical/ cyber experience.

How suppliers will be evaluated

How many suppliers to evaluate
3
Proposal criteria
  • How the approach or solution meets user needs
  • Team structure
  • Value for money
Cultural fit criteria
  • Have excellent communication skills with staff at senior levels of the organisation and ability to work with senior levels across other Government Departments and Cabinet Office.
  • Will take responsibility for their work
  • Be willing to collaborate and partner, including with other suppliers
  • Proactively share knowledge and experiences with members of team
  • Be innovative and promote ideas and suggestions as applicable
  • Attempt to achieve value for money in all activities.
  • Act in line with HMRC values and behaviours;
  • Timely attendance of key staff at programme meetings
  • An existing, results proven team.
Payment approach
Fixed price
Assessment methods
  • Written proposal
  • Presentation
Evaluation weighting

Technical competence

50%

Cultural fit

10%

Price

40%

Questions asked by suppliers

1. Can the Authority confirm whether it is seeking to employ cyber security consultants for the Security Cluster?
We’re looking for people with project and business change management experience. Cyber security knowledge would be helpful alongside change management skills, but we are not looking for cyber security consultants.
2. Are the roles considered inside or outside IR35?
This engagement will be operated on a fully contracted out service basis. Therefore, HMRC consider that this contract will be outside of the IR35 legislation.
3. Can you please define what you mean by the delivery of live services?
We are still working on designing what the security service offerings will look like. By delivery of live services, we mean transitioning these designs into actual operational services.
4. Can you provide greater detail on the scope of the work?
The full scope of the work is currently still being defined.

We have a team of subject matter experts designing what the security services will comprise and how the Cluster Security Unit will operate. The Project team will be expected to work with the Subject Matter Experts, Cluster Partner Departments and the Cabinet Office led Transforming Government Security Programme to plan and transition the service designs into an operational service.
5. Can you please define the expected deliverables?
The expected deliverables are:

• On-boarding of ‘in scope’ staff from Cluster Partner Departments into the Cluster Security Unit
• Process in place for receiving requests for services from Cluster Partners
• Cluster Security Unit set up for service delivery
• Services launched
• SLAs/ KPIs in place
• Charging model initiated
• Aftercare sign-off complete (Service)

We are still developing the full scope and so these may subject to some change
6. Can you provide greater detail on the scope of the work required?
We have a team of subject matter experts designing what the security services will comprise and how the Cluster Security Unit will operate. The Project team will be expected to work with the Subject Matter Experts, Cluster Partner Departments and the Cabinet Office led Transforming Government Security Programme to plan and transition the service designs into an operational service.
7. Could the outline design work for the Target Operating Model be shared?
Unfortunately, this is currently under further development by the Transforming Government Security Programme so it is not in a position to be shared at this time.
8. Could a copy of the common model within the Cabinet Office Security Service Catalogue be supplied?
This is still under development, so we cannot share it at this stage. Our intention is that it will be shared with the successful supplier prior to commencement of the contract.