Tender for a cyber security support contract with 3 Lots: Penetration Testing, Compliance Support and Threat Analysis and Reporting. See PQQ Document for further information.

Mutual currently manage, maintain and support their Gas and Moyle OT environments, as well as their Corporate IT Network, in conjunction with third party support providers. In order to ensure that there is adequate review and assessment of this work, Mutual require an independent organisation to undertake the Penetration Testing on these networks and systems. See the PQQ Document for further details.

Lot 2 is for Compliance Support services. The current regulatory and compliance landscape is significant for Mutual. Operating two OT environments, each managing critical national infrastructure, as well as the corporate IT network, presents significant challenges when it comes to ensuring that our regulatory and compliance management and reporting is fit for purpose.As an ‘Operator of Essential Services’, Mutual is looking for a partner that can provide support, insight and guidance to aid the completion of the NCSC Cyber Assessment Contract and subsequent compliance actions, as part of our NIS Compliance Reporting.Mutual is also looking for a partner to assist with the development, implementation and certification of an ISO27001 Contract for each of its OT and IT environments.

This Lot is for Threat Analysis and Reporting. Mutual requires a partner to be able to identify, clarify and offer potential mitigations for company-specific, as well as industry-wide, cyber threats and risks. The partner should be able to provide this information through either a digital platform or through a designated analysis and reporting service.