Service contract - 156122-2008

18/06/2008    S117    European Communities - Services - Restricted procedure 

UK-London: custom software development services

2008/S 117-156122

CONTRACT NOTICE

Services

SECTION I: CONTRACTING AUTHORITY

I.1)NAME, ADDRESSES AND CONTACT POINT(S)

National Policing Improvement Agency
New Kings Beam House, 22 Upper Ground
Attn: Michelle Rush
SE19QY London
UNITED KINGDOM
Tel. 020 83 58 56 69
E-mail: michelle.rush@npia.pnn.police.uk
Fax 020 83 58 55 36

Internet address(es)

General address of the contracting authority https://homeoffice.bravosolution.com

Further information can be obtained at: As in above-mentioned contact point(s)

Specifications and additional documents (including documents for competitive dialogue and a dynamic purchasing system) can be obtained at: As in above-mentioned contact point(s)

Tenders or requests to participate must be sent to: As in above-mentioned contact point(s)

I.2)TYPE OF THE CONTRACTING AUTHORITY AND MAIN ACTIVITY OR ACTIVITIES
Ministry or any other national or federal authority, including their regional or local sub-divisions
Public order and safety
The contracting authority is purchasing on behalf of other contracting authorities Yes

SECTION II: OBJECT OF THE CONTRACT

II.1)DESCRIPTION
II.1.1)Title attributed to the contract by the contracting authority
Requirement for Identity and Access Management Central Services (IAM) and Arrangement for local Organisations IAM Requirements.
II.1.2)Type of contract and location of works, place of delivery or of performance
Services
Service category: No 7
Main place of performance United Kingdom.

NUTS code UK

II.1.3)The notice involves
The establishment of a framework agreement
II.1.4)Information on framework agreement
Framework agreement with a single operator
Duration of the framework agreement: Duration in year(s): 4
II.1.5)Short description of the contract or purchase(s)
The National Policing Improvement Agency (NPIA) has a requirement for the implementation of a national Identity and Access Management (IAM) system, and a Framework Arrangement to provide Criminal Justice Organisations with Identity and Access Management components and services.
These 2 distinct requirements have been split into two Lots under this Contract Notice:
Lot 1 - IAM Central Services
This Lot covers the requirement for the implementation of a National Identification, Authentication and Authorisation service known as Identity and Access Management (IAM). These services provided at a national level are known as ‘Central Services’. The system shall support at least the following services:
— Identity Management Service,
— Authentication Service,
— Public Key Infrastructure,
— Privilege Management Infrastructure,
— Audit capability,
— Session management,
— Portal Service,
— Smartcard management,
— Import/export interfaces,
— Reporting capabilities,
— Federated Services.
Implementation: - A detailed design shall be defined by the provider, subject to the specified standards in the ITT documentation and will require approval by the NPIA. The implementation shall be subject to accreditation by the National Accreditor for Police Systems. Accreditation shall be based upon HMG InfoSec Standards and a relevant Security Accreditation Scheme, which will be detailed in the ITT documentation. The software and hardware components will be installed at a site within the UK, which will be detailed in the ITT documentation. It is envisaged that an installation of a back-up system will also be required at a designated DR site. There will also be a requirement for a duplicate system for testing purposes. The systems will need to be designed, built, tested, implemented and integrated by the provider. The provider shall be required to participate proactively in integration activities that form part of the programme as a whole. A proven training capability for the system users and administration staff will be required.
Support: - Once the system is deployed there will be a requirement to provide management structures and skilled personnel to operate and maintain the services for an initial period of at least 12 months. After this initial period, the NPIA may exercise a right to operate and maintain the services using their own staff, whilst utilising baseline support from the provider. The scope of the overall support requirement includes support that will be required for the integration of a number of national applications into IAM Central Services. The support service should run according to ITIL standards and will be required for up to 10 years from system implementation.
The solution shall adhere to open standards and where possible and appropriate, will use commercial off-the-shelf products.
It is anticipated that the Contract Award for this Lot will be made between late December 2008 - February 2009, and that Implementation will be required to be completed prior to the end of Q2/Q3 in 2009.
Full details of the requirement for this Lot will be set out in the ITT documentation.
Lot 2 - IAM Organisations Requirements
This Lot covers the supply, delivery, installation, configuration, integration and support of Identity & Access Management components (hardware, software and associated ancillaries). The requirement also covers the provision of professional services to implement this equipment plus associated policies and processes, and the option of a partial or fully managed IAM service for Organisations deploying IAM throughout the United Kingdom.
The Framework Arrangement shall provide a provision for an Organisation deploying IAM to procure any of the following:
1. FIPS201 PIV (or equivalent) compliant Smart cards, smart card readers, smart card management systems and all associated middleware;
2. Hardware and software platforms for supporting the IAM Organisations’ implementation of the following components:
— Identity Management Service,
— Authentication Service,
— Public Key Infrastructure,
— Privilege Management Infrastructure,
— Audit capability,
— Session management,
— Portal Service,
— Federated Services.
3. Hardware, software and ancillaries for making local applications available to authorised staff in other IAM Organisations;
4. Professional services to implement/integrate any of the above to existing infrastructure;
5. Professional services to develop local policies and processes for the operation of IAM components, which will be subject to accreditiation;
6. Training capability for IAM Organisation staff;
7. A managed service capable of providing a configurable approach to deliver any of the above on behalf of a requesting IAM Organisation.
The provider shall be required to participate proactively in integration activities that form part of the programme as a whole.
It is anticipated that the Contract Award for this Lot will be made between late December 2008 - February 2009, and that the products and services will be required by IAM Organisations immediately thereafter.
Full details of the requirement for this Lot will be set out in the ITT documentation.
IAM Users - The NPIA may require the supply of such services (or parts of the services) for the benefit of or to a number of organisations, including itself and to such extent and in such circumstances as authorised by the NPIA:
(I) police forces (including regional, national and local forces);
(II) other government departments and agencies;
(III) statutory authorities, non departmental public bodies and local authorities;
(IV) private sector and voluntary organisations;
(V) other bodies; whether or not (in each case) they have a direct interest in the prevention and detection of crime (collectively, (i) to (V) known as the 'permitted bodies').
The successful supplier will be required to work in partnership with the Permitted Bodies and their third party suppliers, for example in accordance with Modernising Government initiatives.
II.1.6)Common procurement vocabulary (CPV)

72230000, 72227000, 25252000, 72315100, 72262000, 30242000, 72228000

II.1.7)Contract covered by the Government Procurement Agreement (GPA)
Yes
II.1.8)Division into lots
Yes
tenders should be submitted for one or more lots
II.1.9)Variants will be accepted
No
II.2)QUANTITY OR SCOPE OF THE CONTRACT
II.2.1)Total quantity or scope
The IAM requirement is split into two Lots.
Lot 1 covers the development, supply and installation of an Identity and Access Management system, plus ongoing operating and maintenance services for a period of up to 10 years from implementation date.
Lot 2 covers the supply and installation of Identity and Access Management components and associated services to IAM Organisations.
II.2.2)Options
Yes
description of these options: For Lot 1 (Central Services), support of the implemented solution will be required for an intial period of at least one year with an option to extend for up to a further nine years. Full details will appear in the ITT.
For Lot 2 (IAM Organisations Requirement), the entire Framework duration will be for up to 4 years. The Framework will be let for 3 initial years, with an option to extend at the end of year 3, for one year. Full details will appear in the ITT.
II.3)DURATION OF THE CONTRACT OR TIME-LIMIT FOR COMPLETION

INFORMATION ABOUT LOTS

LOT NO: 001 TITLE Identity and Access Management (IAM) Central Services
1)SHORT DESCRIPTION
This Lot covers the requirement for the implementation of a National Identification, Authentication and Authorisation service known as Identity and Access Management (IAM). These services provided at a national level are known as ‘Central Services’. The system shall support at least the following services:
— Identity Management Service,
— Authentication Service,
— Public Key Infrastructure,
— Privilege Management Infrastructure,
— Audit capability,
— Session management,
— Portal Service,
— Smartcard management,
— Import/export interfaces,
— Reporting capabilities,
— Federated Services.
Implementation: - A detailed design shall be defined by the provider, subject to the specified standards in the ITT documentation and will require approval by the NPIA. The implementation shall be subject to accreditation by the National Accreditor for Police Systems. Accreditation shall be based upon HMG InfoSec Standards and a relevant Security Accreditation Scheme, which will be detailed in the ITT documentation. The software and hardware components will be installed at a site within the UK, which will be detailed in the ITT documentation. It is envisaged that an installation of a back-up system will also be required at a designated DR site. There will also be a requirement for a duplicate system for testing purposes. The systems will need to be designed, built, tested, implemented and integrated by the provider. The provider shall be required to participate proactively in integration activities that form part of the programme as a whole. A proven training capability for the system users and administration staff will be required.
Support: - Once the system is deployed there will be a requirement to provide management structures and skilled personnel to operate and maintain the services for an initial period of at least 12 months. After this initial period, the NPIA may exercise a right to operate and maintain the services using their own staff, whilst utilising baseline support from the provider. The scope of the overall support requirement includes support that will be required for the integration of a number of national applications into IAM Central Services. The support service should run according to ITIL standards and will be required for up to 10 years from system implementation.
The solution shall adhere to open standards and where possible and appropriate, will use commercial off-the-shelf products.
It is anticipated that the Contract Award for this Lot will be made between late December 2008 - February 2009, and that Implementation will be required to be completed prior to the end of Q2Q3 in 2009 (calendar year).
Full details of the requirement for this Lot will be set out in the ITT documentation.
IAM Users - The NPIA may require the supply of such services (or parts of the services) for the benefit of or to a number of organisations, including itself and to such extent and in such circumstances as authorised by the NPIA:
(I) police forces (including regional, national and local forces);
(II) other government departments and agencies;
(III) statutory authorities, non departmental public bodies and local authorities;
(IV) private sector and voluntary organisations;
(V) other bodies; whether or not (in each case) they have a direct interest in the prevention and detection of crime (collectively, (i) to (V) known as the 'permitted bodies').
The successful supplier will be required to work in partnership with the Permitted Bodies and their third party suppliers, for example in accordance with Modernising Government initiatives.
2)COMMON PROCUREMENT VOCABULARY (CPV)

72320000, 30242000, 72262000, 72315100

3)QUANTITY OR SCOPE
The IAM requirement is split into two Lots. Lot 1 covers the development, supply and installation of an Identity and Access Management system, plus ongoing operating and maintenance services for a period of up to 10 years from implementation date.
Excluding VAT 2 500 000 GBP
4)INDICATION ABOUT DIFFERENT DATE FOR DURATION OF CONTRACT OR STARTING/COMPLETION
Duration in months: 120 (from the award of the contract)
5)ADDITIONAL INFORMATION ABOUT LOTS
The Contracting Authority intends to use an eTendering system in this procurement exercise.
The IAM requirement is split into 2 Lots, Lot 1 (Central Services) and Lot 2 (IAM Organisations Requirements).
Lot 1 (Central Services) will be awarded to one bidder.
For the avoidance of doubt, the NPIA will also consider awarding both Lots to one bidder.
Contract Award for both Lots is anticipated between December 2008 – February 2009. Implementation of Lot 1 (Central Services) will be required to be completed prior to the end of Q2/Q3 in 2009 (calendar year).
LOT NO: 002 TITLE TITLE IAM Organisations Identity and Access Management (IAM) Requirements
1)SHORT DESCRIPTION
This Lot covers the supply, delivery, installation, configuration, integration and support of Identity & Access Management components (hardware, software and associated ancillaries) The requirement also covers the provision of professional services to implement this equipment plus associated policies and processes, and the option of a partial or fully managed IAM service for Organisations deploying IAM throughout the United Kingdom.
The Framework Arrangement shall provide a provision for an Organisation deploying IAM to procure any of the following:
1. FIPS201 PIV (or equivalent) compliant Smart cards, smart card readers, smart card management systems and all associated middleware;
2. Hardware and software platforms for supporting the IAM Organisations’ implementation of the following components:
— Identity Management Service,
— Authentication Service,
— Public Key Infrastructure,
— Privilege Management Infrastructure,
— Audit capability,
— Session management,
— Portal Service,
— Federated Services.
3. Hardware, software and ancillaries for making local applications available to authorised staff in other IAM Organisations;
4. Professional services to implement/integrate any of the above to existing infrastructure;
5. Professional services to develop local policies and processes for the operation of IAM components, which will be subject to accreditation;
6. Training capability for IAM Organisation staff;
7. A managed service capable of providing a configurable approach to deliver any of the above on behalf of a requesting IAM Organisation.
The provider shall be required to participate proactively in integration activities that form part of the programme as a whole.
It is anticipated that the Contract Award for this Lot will be made between late December 2008 - February 2009, and that the products and services will be required by IAM Organisations immediately thereafter.
Full details of the requirement for this Lot will be set out in the ITT documentation.
IAM Users - The NPIA may require the supply of such services (or parts of the services) for the benefit of or to a number of organisations, including itself and to such extent and in such circumstances as authorised by the NPIA:
(I) police forces (including regional, national and local forces);
(II) other government departments and agencies;
(III) statutory authorities, non departmental public bodies and local authorities;
(IV) private sector and voluntary organisations;
(V) other bodies; whether or not (in each case) they have a direct interest in the prevention and detection of crime (collectively, (i) to (V) known as the 'permitted bodies').
The successful supplier will be required to work in partnership with the Permitted Bodies and their 3rd party suppliers, for example in accordance with Modernising Government initiatives.
2)COMMON PROCUREMENT VOCABULARY (CPV)

72300000, 72227000, 25252000, 72315100, 72262000, 30242000, 72228000

3)QUANTITY OR SCOPE
The IAM requirement is split into two Lots. Lot 2 covers the supply and installation of Identity and Access Management components and associated services to IAM Organisations, via a Framework Arrangement. The entire Framework duration will be for up to 4 years. The Framework will be let for 3 initial years, with an option to extend at the end of year 3 for one year.
4)INDICATION ABOUT DIFFERENT DATE FOR DURATION OF CONTRACT OR STARTING/COMPLETION
Duration in months: 48 (from the award of the contract)
5)ADDITIONAL INFORMATION ABOUT LOTS
The Contracting Authority intends to use an eTendering system in this procurement exercise.
The IAM requirement is split into 2 Lots, Lot 1 (Central Services) and Lot 2 (IAM Organisations Requirements).
It is anticipated that Lot 2 (IAM Organisations Requirements) will be awarded to one bidder, although the NPIA reserves the right to award this Lot to more than one bidder.
For the avoidance of doubt, the NPIA will also consider awarding both Lots to one bidder.
Contract Award for both Lots is anticipated between December 2008 – February 2009. The products and services covered under Lot 2 will be required by IAM Organisations immediately after Contract Award.

SECTION III: LEGAL, ECONOMIC, FINANCIAL AND TECHNICAL INFORMATION

III.1)CONDITIONS RELATING TO THE CONTRACT
III.1.1)Deposits and guarantees required
No deposits are required but guarantees may be required at a later stage.
III.1.2)Main financing conditions and payment arrangements and/or reference to the relevant provisions regulating them
N/A.
III.1.3)Legal form to be taken by the group of economic operators to whom the contract is to be awarded
No special legal form required, but each service provider supplier will be required to become jointly and severally responsible for the contract before acceptance.
III.1.4)Other particular conditions to which the performance of the contract is subject
Yes
The conditions to which performance of this contract will be subject will be set out in the ITT.
III.2)CONDITIONS FOR PARTICIPATION
III.2.1)Personal situation of economic operators, including requirements relating to enrolment on professional or trade registers
Information and formalities necessary for evaluating if requirements are met: Please confirm whether any of the matters referred to in Regulation 23(1) to 23(4) of the Public Contracts Regulations 2006 (Article 45 (1) and 45 (2) of Directive 2004/18/EC) apply to your organisation.
III.2.2)Economic and financial capacity
Information and formalities necessary for evaluating if requirements are met: (A) evidence of relevant professional risk indemnity insurance;
(B) the presentation of balance-sheets or extracts from the balance-sheets, where publication of the balance-sheet is required under the law of the country in which the economic operator is established;
(C) a statement of the undertaking's overall turnover and, where appropriate, of turnover in the area covered by the contract for a maximum of the last three financial years available, depending on the date on which the undertaking was set up or the economic operator started trading, as far as the information on these turnovers is available;
III.2.3)Technical capacity
Information and formalities necessary for evaluating if requirements are met:
(A) the supplier's technical ability, taking into account the suppliers skills, efficiency, experience and reliability;
(B) a list of works carried out over the past 5 years involving Identity and Access Management implementation and support with evidence of satisfactory completion for these works indicating -
(I) the value of the consideration received;
(I) when and where the work was carried out;
(III) the identity of the person or organisation to whom the services were provided;
(IV) any certificate issued or countersigned by that person or organisation confirming the details of the contract for those goods sold or services provided.
(V) Full contact details for two recent customers for the purpose of obtaining references.
(C) a statement of the technicians or technical services available to the supplier to -
(I) carry out the work under the contract; or
(II) be involved in the provision of services under the contract.
(D) a statement of the service provider's average annual number of staff and managerial staff over the previous 3 years;
(E) evidence of the service provider's technology partners in PKI and Identity Management products.
(F) copies of the organisation's Equality and Diversity policies.
III.2.4)Reserved contracts
No
III.3)CONDITIONS SPECIFIC TO SERVICES CONTRACTS
III.3.1)Execution of the service is reserved to a particular profession
III.3.2)Legal entities should indicate the names and professional qualifications of the staff responsible for the execution of the service

SECTION IV: PROCEDURE

IV.1)TYPE OF PROCEDURE
IV.1.1)Type of procedure
Restricted
IV.1.2)Limitations on the number of operators who will be invited to tender or to participate
Envisaged minimum number 005 maximum number 006
Objective criteria for choosing the limited number of candidates: Evaluation of information provided in response to III.2.
When responding to the information requested at III.2 the Expressors of Interest should state if they are interested in bidding for Lot 1, Lot 2 or both Lots.
IV.1.3)Reduction of the number of operators during the negotiation or dialogue
IV.2)AWARD CRITERIA
IV.2.1)Award criteria
The most economically advantageous tender in terms of the criteria stated in the specifications, in the invitation to tender or to negotiate or in the descriptive document
IV.2.2)An electronic auction will be used
No
IV.3)ADMINISTRATIVE INFORMATION
IV.3.1)File reference number attributed by the contracting authority
IV.3.2)Previous publication(s) concerning the same contract
IV.3.3)Conditions for obtaining specifications and additional documents
Payable documents No
IV.3.4)Time-limit for receipt of tenders or requests to participate
16.7.2008 - 13:00
IV.3.5)Date of dispatch of invitations to tender or to participate to selected candidates
29.8.2008
IV.3.6)Language(s) in which tenders or requests to participate may be drawn up
English.
IV.3.7)Minimum time frame during which the tenderer must maintain the tender
IV.3.8)Conditions for opening tenders
Date: 31.10.2008 - 13:00

SECTION VI: COMPLEMENTARY INFORMATION

VI.1)THIS IS A RECURRENT PROCUREMENT
No
VI.2)CONTRACT RELATED TO A PROJECT AND/OR PROGRAMME FINANCED BY EU FUNDS
No
VI.3)ADDITIONAL INFORMATION
The Contracting Authority intends to use an eTendering system in this procurement exercise.
To register and submit your responses to Section III please go to the Home Office eSourcing portal https:homeoffice.bravosolution.com.

For support please contact the eTendering help-desk at 0800-011-2470 or help@bravosolution.co.uk.

The IAM requirement is split into two Lots. Lot 1 covers the development, supply and installation of an Identity and Access Management system, plus ongoing operating and maintenance services for a period of up to 10 years from implementation date. Lot 2 covers the supply and installation of Identity and Access Management components and associated services to IAM Organisations.
Lot 1 (Central Services) will be awarded to one bidder.
It is anticipated that Lot 2 (IAM Organisations requirement) will be awarded to one bidder, although the NPIA reserves the right to award this Lot to more than one bidder.
For the avoidance of doubt, the NPIA will also consider awarding both Lots to one bidder.
Contract Award for both Lots is anticipated between December 2008 – February 2009. Implementation of Lot 1 (Central Services) will be required to be completed prior to the end of Q2/Q3 in 2009 (calendar year), and the products and services covered under Lot 2 will be required by IAM Organisations immediately after Contract Award.
The Tender and all supporting documents must be priced in the currency of the Country of origin although all payments made under the contract will be in sterling. The contract will be considered a contract made in England, according to English Law and subject to the exclusive jurisdiction of the English courts.
All personnel working on site will be required to have Government Security Clearance to minimum SC Level.
Applicants must supply the information requested in III.2.1 to III.2.3. Failure to do so may result in their application being rejected. The NPIA reserves the right not to award a contract in whole or in part.
The NPIA will accept responses from groups of economic operators, where there is one clear and defined economic operator acting as the 'prime contractor' taking full responsibility for the contract.
Please note, Company promotional literature will not be accepted in response to an Expression of Interest.
There is no further information, specifications or additional documents available at this time. All information necessary for applicants to provide their Expressions of Interest are contained within this Contract Notice.
To clarify the process, interested applicants are required to provide their Expressions of Interest (information requested in III.2) by 14.7.2008.
No pre-qualification questionnaire will be issued for this requirement.
It is anticipated that the short-listed suppliers only will be sent the ITT documents by 29.8.2008.
Expressors of interest not short-listed will not be notified.
VI.4)PROCEDURES FOR APPEAL
VI.4.1)Body responsible for appeal procedures

Head of Commercial and Procurement Unit, National Policing Improvement Agency
New Kings Beam House , 22 Upper Ground
SE19QY London
UNITED KINGDOM
Tel. 020 71 47 82 00
Internet: http://www.npia.police.uk

Body responsible for mediation procedures

IDRS Ltd.
24 Angel Gate, City road
EC1V2PT London
UNITED KINGDOM
Tel. 020 75 20 38 00
Internet: http://www.idrs.ltd.uk

VI.4.2)Lodging of appeals
VI.4.3)Service from which information about the lodging of appeals may be obtained
VI.5)DATE OF DISPATCH OF THIS NOTICE:
16.6.2008