Section one: Contracting entity
one.1) Name and addresses
NATIONAL GRID UK LIMITED
Grand Buildings,1-3 Strand
LONDON
WC2N5EH
Contact
cora russell
Country
United Kingdom
NUTS code
UKI32 - Westminster
Companies House
45688
Internet address(es)
Main address
one.3) Communication
Additional information can be obtained from the above-mentioned address
one.6) Main activity
Electricity
Section two: Object
two.1) Scope of the procurement
two.1.1) Title
Deception Technology
two.1.2) Main CPV code
- 48000000 - Software package and information systems
two.1.3) Type of contract
Supplies
two.1.4) Short description
National Grid are seeking to select a strategic partner to enhance our deception technology capability within our Security organization. National Grid welcomes interested parties who have experience with deceptive technologies.
two.1.6) Information about lots
This contract is divided into lots: No
two.2) Description
two.2.2) Additional CPV code(s)
- 48000000 - Software package and information systems
two.2.3) Place of performance
NUTS codes
- UK - United Kingdom
two.2.4) Description of the procurement
National Grid security team operates a 24*7*365 Cyber Security Operation Centre (CSOC) that monitors our estate for malicious, suspicious, or anomalous behavior and responds appropriately to ensure the consistency of services National Grid provides. Deception technologies can be an effective way to detect attackers in a network, gain visibility of their tactics and deter them away from production systems.
Example techniques that could be employed by a deception solution include:
• Honeypots - False systems or applications
• Honeytokens - False credentials or other pieces of sensitive information
• Deception networks - False networks that mimic production networks to gather intelligence on attacker activities and deflect their efforts away from the production network
• Deception documents - False documents designed to appear sensitive or valuable
The solution should have bi-directional integration with SIEM solutions for both alerting when anomalous behavior is observed, and to allow analyst to drill down into specific data points.
Due to the strictly regulated industries National Grid operate in, we have a strong preference towards vendors who can provide a hybrid architecture whereby infrastructure is split between on-premise and cloud.
The required solution will integrate with internal IT infrastructure and external vendors of National Grid. Vendors will be expected to demonstrate how they can effectively integrate with other tooling in the environment.
In addition to the software and hosting service, we will be looking for a robust plan around the operations support models available.
two.3) Estimated date of publication of contract notice
7 April 2023
Section four. Procedure
four.1) Description
four.1.8) Information about the Government Procurement Agreement (GPA)
The procurement is covered by the Government Procurement Agreement: No
four.2) Administrative information
four.2.4) Languages in which tenders or requests to participate may be submitted
English
Section six. Complementary information
six.3) Additional information
Indicative Tender Timelines
To support the resource and planning of interested parties National Grid has outlined an indicative timetable below.
Please note this is not binding and subject to change.
1. PIN Issued: Thursday 16th March 2023
2. PIN Closed: Friday 7th April 2023
3. PQQ Issued: Monday 17th April 2023
4. PQQ Closed: Friday 5th May 2023
5. RFP Issued: Monday 15th May 2023
6. RFP Closed: Friday 9th June 2023
7. Contract Award: Friday 15th September 2023
Pre-request to be eligible to participate
In order to participate in this tender, you must be registered on the Achilles UVDB system. UVDB is used to pre-qualify our suppliers to ensure they meet the minimum legal and regulatory requirements in order to contract with National Grid .
UVDB is the utility industry pre-qualification system used by the utilities sector in the UK to manage risk within the supply chain and comply with EU regulations. Joining UVDB as a supplier provides your organisation with an opportunity to showcase your capabilities and access multiple contract opportunities by completing a single pre-qualification questionnaire (PQQ). UVDB is used by many utility buyer organisations.
If you are already registered with UVDB you only need to ensure that you are registered under UVDB code 1.5.8.17 Software - (Safety, Health, Environment, and Security)
If you are not currently registered this can be done by registering at: https://www.achilles.com/community/uvdb/
You will then need to register under UVDB code 1.5.8.17 Software - (Safety, Health, Environment, and Security)
If you require any further information regarding this registration, please contact Samuel Lloyd-Jones (samuel.lloydjones@achilles.com) who can support any issues with the completion of your registration process on Achilles ahead of the qualification event commencing in mid-April 2023.
Further to the enclosed PIN, please indicate your expression of interest and) also confirm that you are or will be registering on Achilles UVDB against code 1.5.8.17 Software - (Safety, Health, Environment, and Security).
emailing: cora.russell@nationalgrid.com