Health body launches tender for managed SOC and training
Tender covers security management systems, a managed operations centre, staff training and power resilience, signalling rising expectations on digital safety.
Tender covers security management systems, a managed operations centre, staff training and power resilience, signalling rising expectations on digital safety.
Follow Tenderlake on LinkedIn for concise insights on public-sector tenders and emerging procurement signals.
Szpital Powiatowy im. Prałata J. Glowatzkiego has gone to market for a package of cybersecurity services, staff training and critical power upgrades that illustrates how hospitals are reshaping resilience under tighter European cybersecurity rules.
On 25th February 2026, Szpital Powiatowy im. Prałata J. Glowatzkiego published a contract notice for Cybersecurity Services and Training. The scope covers delivery of security management systems, implementation of managed cybersecurity operations centre (SOC) services, specialised cybersecurity training for IT and security employees, and modernisation of the hospital’s central emergency power supply systems.
By combining technology, managed services and training, the hospital is treating cybersecurity as a continuous operational function rather than a one‑off investment. The managed SOC element, in particular, points to a model where external specialists provide ongoing monitoring and incident response, while in‑house teams focus on clinical systems and local governance.
This approach is increasingly visible in recent health and public‑sector tenders. In February 2026, Stobrawskie Centrum Medyczne Sp. z o.o. went to market for Security Operations Center Services, seeking SOC provision integrated with its Integration Services Platform alongside cybersecurity training. On 16th January 2026, Państwowa Inspekcja Pracy’s main inspectorate issued a SOC Service Procurement that includes launching and maintaining a Security Operations Center, automating security processes, using honeypot technology to detect attacks and managing secure user access.
Local and regional IT bodies are making similar moves. Gdyńskie Centrum Informatyki’s Cybersecurity Solutions Delivery notice from 22nd January 2026 focuses on Network Detection and Response and Cyber Recovery, while Statutární město Zlín’s December 2025 tender for Cyber Security Software for SMZ combines a log management system and network detection and response system with five years of technical support. The district hospital’s demand for a managed SOC sits squarely within this shift towards continuous monitoring and incident handling across the public sector.
The reference to “security management systems” in the new notice suggests the hospital wants more than isolated security tools. Across the health sector, recent procurements show a move towards integrated platforms that can correlate events, protect endpoints and secure email and web gateways within a managed environment.
On 13th January 2026, Samodzielny Publiczny Szpital Kliniczny im. A. Mielęckiego Śląskiego Uniwersytetu Medycznego w Katowicach launched a tender for Integrated Cybersecurity Systems. The order covers delivery, implementation and maintenance of a SIEM system, expansion of EDR/XDR endpoint protection, renewal of UTM security services, implementation of a web application firewall for a patient portal and an email protection system.
Just over two weeks later, on 29th January 2026, Samodzielny Publiczny Zakład Opieki Zdrowotnej w Łapach went to market for a Cybersecurity System Procurement, specifying four modules: EDR/XDR workstation protection, central logging and event correlation, email protection and an NGFW/UTM‑class firewall. And on 4th February 2026, Samodzielny Publiczny Zakład Opieki Zdrowotnej Zespół Szpitali Miejskich published a notice for Cybersecurity Systems and IT Monitoring, spanning email protection, centralised login, threat analysis, data loss prevention, password management, privileged access management, network scanning and IT environment monitoring.
These projects show hospitals consolidating around architectures that mix endpoint protection, central log collection, network defence and identity controls. Against that backdrop, Szpital Powiatowy im. Prałata J. Glowatzkiego’s focus on security management systems combined with a managed SOC indicates a desire to oversee such components through a coordinated operational layer, rather than running each control in isolation.
Other clinical institutions are lining up complementary investments in infrastructure and cyber tooling. Uniwersytecki Szpital Kliniczny im. Fryderyka Chopina w Rzeszowie is procuring Server Hardware and Cybersecurity Solutions to develop digital services and strengthen cybersecurity at its general hospital and oncology centre. Białostockie Centrum Onkologii’s October 2025 tender for Digital Transformation Equipment Delivery combines dedicated servers, network upgrades, workstations, a privileged access management system, PBX expansion and endpoint protection improvements. In Bydgoszcz, Szpital Kliniczny im. dr. E. Warmińskiego Politechniki Bydgoskiej is seeking Cybersecurity Software Supply to expand backup systems, introduce a PAM system and enhance existing defences.
A striking feature of the new hospital procurement is the explicit requirement for specialised cybersecurity training for IT and security staff. This mirrors a wider shift in tenders from pure technology acquisition towards building local capability, in line with European rules such as the NIS 2 Directive, which stresses continuous monitoring and effective incident response in critical sectors including healthcare.
Several healthcare buyers have already made training and governance a core part of their projects:
Stobrawskie Centrum Medyczne Sp. z o.o.’s February 2026 notice for Security Operations Center Services ties SOC provision directly to cybersecurity training, underscoring that even when security operations are managed as a service, public bodies want their own teams able to interpret alerts, handle incidents and engage with providers on equal terms.
This emphasis on people and processes sits alongside efforts to modernise core systems. The National Institute of Oncology’s Kraków branch is running a tender for IT Systems Expansion and Cybersecurity that covers a security incident monitoring service, extensions to an integrated IT system and integration of its Health Information System with a central medical data repository. Samodzielny Publiczny Zakład Opieki Zdrowotnej w Tomaszowie Lubelskim is seeking Digital Security Solutions for Healthcare, bringing together server infrastructure, electronic medical documentation management, cybersecurity training and AI‑based solutions to support healthcare operations.
The inclusion of central emergency power supply modernisation in Szpital Powiatowy im. Prałata J. Glowatzkiego’s notice sets it apart from many purely digital projects. It signals an understanding that cybersecurity and continuity of care depend on resilient physical infrastructure as much as on software and services.
Other procurements hint at the same concern through investments in backup systems and redundant capacity. Gmina Miasto Oleśnica’s December 2025 Cyber‑Safe Local Government Project includes purchasing and implementing a continuous monitoring system and delivering, installing and configuring a backup server for the Municipal Social Assistance Center. Gmina Miejska Włodawa and Gmina Rybczewice are each buying IT Equipment and Software and IT Equipment and Software Delivery respectively under the Cyber‑Safe Local Government project, with servers, switches, unified threat management devices, antivirus upgrades and backup software all in scope.
At regional level, the Pomeranian Voivodeship Office in Gdańsk plans to harden its core infrastructure through a January 2026 tender for IT Infrastructure Security Delivery, covering servers, managed network devices and security software. Samodzielny Publiczny Zakład Opieki Zdrowotnej w Wolsztynie is procuring IT and Cybersecurity Infrastructure Delivery that combines infrastructure for its Health Information System with cybersecurity infrastructure and software for the wider IT environment.
By wrapping emergency power upgrades into the same package as managed SOC services and staff training, Szpital Powiatowy im. Prałata J. Glowatzkiego is signalling that resilience planning now spans facilities, networks and people in a single risk picture.
The new hospital tender adds to a dense pipeline of cybersecurity projects across healthcare, local government and central administration. Many combine managed SOC services, integrated cyber platforms, training and infrastructure upgrades, often linked to European and national funding programmes referenced in the notices.
For suppliers, the direction of travel is clear: buyers are looking for partners that can operate security on a managed basis, embed tools such as SIEM, EDR/XDR, NGFW and PAM into coherent architectures, and build local capability through training and support. With projects such as Statutární město Zlín’s Cyber Security Software for SMZ already locking in five‑year technical support, long‑term relationships are likely to define this market.
The Szpital Powiatowy im. Prałata J. Glowatzkiego procurement does not disclose information such as contract value, duration or preferred technologies, so the scale of the investment is not yet visible. Even so, its blend of managed SOC services, security management systems, specialised training and emergency power upgrades offers a clear signal of how hospitals expect to meet rising cybersecurity obligations in the years ahead.
Follow Tenderlake on LinkedIn for concise insights on public-sector tenders and emerging procurement signals.