Awarded to Finyx Consulting Limited

Start date: Saturday 1 September 2018
Value: £850,000
Company size: SME

HM Revenue and Customs

Security Cluster 1 (HMRC)

6 Incomplete applications

0 SME, 6 large

14 Completed applications

4 SME, 10 large

• Published: Tuesday 5 June 2018
• Deadline for asking questions: Tuesday 12 June 2018 at 11:59pm GMT
• Closing date for applications: Tuesday 19 June 2018 at 11:59pm GMT

Overview

• Summary of the work: As Security Cluster Lead Department, HMRC will be standing up a Central Cluster Security Unit delivering security services to other departments. We are seeking transition from design, standing up the Cluster Security Unit and delivery of live services working with Cabinet Office ensuring central operating model alignment and design consistency.
• Latest start date: Monday 2 July 2018
• Expected contract length: to 31/3/19
• Location: London
• Organisation the work is for: HM Revenue and Customs
• Budget range: £850,000

About the work

• Why the work is being done: The Project forms part of the wider Cabinet Office Transforming Government Security Programme (TGSP) aimed at transforming the way Government delivers protective security.
• Problem to be solved: Central Government Departments will receive security services through four dedicated central 'Cluster' Security Units (CSUs). As the lead for one of CSUs, HMRC needs to design, implement and run security services for 15 Government Departments. Services will need to meet the common model provided by Cabinet Office through it's Security Service Catalogue. HMRC will also need to provide a cross Government Security Incident Capture Tool. Development of strategies and plans for transitioning services into live running.
• Who the users are and what they need to do: Services will be ordered through Senior Security Advisers in each of our 15 'Cluster' Departments. Government Security Group will need to understand how the cluster Security works and fits in the new model.
• Any work that’s already been done: HMRC has already delivered some outline organisational design work for their target operating model for HMRC's Cluster 1 using Finyx.
• Existing team: There is a central programme team based in the Cabinet Office, and a programme team of existing civil servants based in HMRC.
• Current phase: Not applicable

Work setup

• Address where the work will take place: London
• Working arrangements: Open about working practices - flexible to ensure best and most efficient outcomes. HMRC would suggest that six people are required to spend time on the project, 4 operating as Project Managers, one at Programme Director level and one PMO support, with preference for consistency of people throughout the project.
• Security clearance: SC may be required

Additional information

• Additional terms and conditions: All processes, tools, templates, IPR or other documentation produced under the contract to be made available under the Open Government Licence; ; • All documentation to be stored within the central Programme file structure and available to internal staff at all times; Any passwords to be provided to relevant personnel, on production of documents, without request

Skills and experience

Buyers will use the essential and nice-to-have skills and experience to help them evaluate suppliers’ technical competence.

• Essential skills and experience:
  • Evidenced experience of working on government change programmes within the last 3 years;
  • Evidenced experience of delivering organisational design projects in government in the last 3 years;
  • Show experience of working in a challenging and complex public sector environment with regularly changing priorities.
  • Experience of implementing a new Target Operating model;
• Nice-to-have skills and experience: Evidence of technical/ cyber experience.

How suppliers will be evaluated

• How many suppliers to evaluate: 3
• Proposal criteria:
  • How the approach or solution meets user needs
  • Team structure
  • Value for money
• Cultural fit criteria:
  • Have excellent communication skills with staff at senior levels of the organisation and ability to work with senior levels across other Government Departments and Cabinet Office.
  • Will take responsibility for their work
  • Be willing to collaborate and partner, including with other suppliers
  • Proactively share knowledge and experiences with members of team
  • Be innovative and promote ideas and suggestions as applicable
  • Attempt to achieve value for money in all activities.
  • Act in line with HMRC values and behaviours;
  • Timely attendance of key staff at programme meetings
  • An existing, results proven team.
• Payment approach: Fixed price
• Assessment methods:
  • Written proposal
  • Presentation
• Evaluation weighting:

  Technical competence

  50%

  Cultural fit

  10%

  Price

  40%

Questions asked by suppliers

• 1. Can the Authority confirm whether it is seeking to employ cyber security consultants for the Security Cluster?: We’re looking for people with project and business change management experience. Cyber security knowledge would be helpful alongside change management skills, but we are not looking for cyber security consultants.
• 2. Are the roles considered inside or outside IR35?: This engagement will be operated on a fully contracted out service basis. Therefore, HMRC consider that this contract will be outside of the IR35 legislation.
• 3. Can you please define what you mean by the delivery of live services?: We are still working on designing what the security service offerings will look like. By delivery of live services, we mean transitioning these designs into actual operational services.
• 4. Can you provide greater detail on the scope of the work?: The full scope of the work is currently still being defined.; ; We have a team of subject matter experts designing what the security services will comprise and how the Cluster Security Unit will operate. The Project team will be expected to work with the Subject Matter Experts, Cluster Partner Departments and the Cabinet Office led Transforming Government Security Programme to plan and transition the service designs into an operational service.
• 5. Can you please define the expected deliverables?: The expected deliverables are:; ; • On-boarding of ‘in scope’ staff from Cluster Partner Departments into the Cluster Security Unit; • Process in place for receiving requests for services from Cluster Partners; • Cluster Security Unit set up for service delivery; • Services launched; • SLAs/ KPIs in place; • Charging model initiated; • Aftercare sign-off complete (Service); ; We are still developing the full scope and so these may subject to some change
• 6. Can you provide greater detail on the scope of the work required?: We have a team of subject matter experts designing what the security services will comprise and how the Cluster Security Unit will operate. The Project team will be expected to work with the Subject Matter Experts, Cluster Partner Departments and the Cabinet Office led Transforming Government Security Programme to plan and transition the service designs into an operational service.
• 7. Could the outline design work for the Target Operating Model be shared?: Unfortunately, this is currently under further development by the Transforming Government Security Programme so it is not in a position to be shared at this time.
• 8. Could a copy of the common model within the Cabinet Office Security Service Catalogue be supplied?: This is still under development, so we cannot share it at this stage. Our intention is that it will be shared with the successful supplier prior to commencement of the contract.