The public sector uses a specialist Digital Marketplace to buy cyber and digital services. Providers of those services must apply for a place in the marketplace, by complying with the terms of the Digital Outcomes and Specialists framework.
In turn, this ensures that public sector organisations can be confident that they are working with reliable and specialised providers. It makes cyber and digital procurement in the public sector more transparent, more cost-effective and more straightforward.
Crown Commercial Service (CCS) manages the framework, ensuring that terms and conditions, supplier evaluations and compliance are met, whilst Government Digital Service (GDS) manages the Digital Marketplace service.
As of December 2018, the previous framework, DOS3, had transacted £779,926,015, and DOS4 is predicted to transact over £1 billion over its lifetime. That’s a huge market to be part of, and will likely involve some of the most transformative, innovative and exciting digital projects in the public sector over the coming years.
Furthermore, 91% of sales on DOS3 were to central government. Being part of DOS4, then, should give us greater access to the central government marketplace, and potentially to play a role in helping major government departments to operate in today’s dynamic cyber risk landscape securely and compliantly.
We applied for – and were awarded – places for two lots: digital outcomes and digital specialists. The former covers service areas such as security, support and operations, and testing and auditing, whilst the latter involves supplying individuals to fill specific roles, from cybersecurity specialists throughout to delivery managers and project managers.
As a digital outcomes supplier, we are required to comply with the government’s technology code of practice, to work according to the government service design manual, and we had to show that we understand the different phases of agile delivery. As a digital specialists supplier, we must offer evidence of competence in each role if requested by the buyer, and we must ensure all roles support the government service design manual’s description of what is required to build a successful service. We, of course, retain responsibility and liability for any work our specialists carry out.
SureCloud will be able to start supplying on the Digital Marketplace from today, which is when DOS4 goes live. We are looking forward to working closely with organisations from across local and central government, and helping the public sector to meet the challenges of robust cybersecurity and data protection, watertight compliance and a dynamic approach to risk management.
SureCloud also offers a wide range of Cybersecurity testing and assurance services, where we stay with you throughout the entire test life-cycle from scoping through to vulnerability discovery and remediation. Certified by the National Cyber Security Centre (NCSC) & CREST and delivered using the innovative Pentest-as-a-Service (underpinned by a highly configurable technology platform), SureCloud acts as an extension of your in-house security team and ensures you have everything you need to improve your risk posture.