2. Welcome
Abigail Peel
Head of Community
Innovation and Delivery Team
Government Digital Service
Cabinet Office
22 November 2011 (c) Crown Copyright 2
4. G-Cloud
Chris Chant
Chris Chant, Executive Director in the
Cabinet Office
Programme Director G-Cloud initiative.
22 November 2011 (c) Crown Copyright 4
5. G-Cloud
• Government‟s programme to adopt cloud-
based services.
• Covers the processes of buying, managing
and using cloud services.
22 November 2011 (c) Crown Copyright 5
6. Tender process
Rob MacLeod
Category Lead - ICT Services
Government Procurement
Service
22 November 2011 (c) Crown Copyright 6
7. OJEU
• Why a „tender process‟?
– EU
• Procurement Directive 2004/1
• EU Remedies Directive 2007/66/EC
– UK
• Public Contracts Regulations 2006
• “Fair and open”
• OJEU: Official Journal of the European
Union
22 November 2011 (c) Crown Copyright 7
8. Timing
18 Oct Publication of the OJEU Contract Notice
19 Oct Release of the ITT to all Potential Providers
19 Oct Clarification period starts
19 Oct e-Sourcing Portal opens
09 Nov 15:00 Period for clarifications on the Framework Agreement
16 Nov 15:00 Publication of responses to Framework Agreement Clarification
questions
16 Nov 15:00 Clarification period closes
23 Nov 15:00 Deadline for the publication of responses to
Tender Clarification questions
30 Nov 15:00 Deadline for submission of Tenders
22 Dec Intention to award notification issued
06 Jan 10 day standstill
11 Jan Expected “Commencement Date” for
22 November 2011
Framework Crown Copyright
(c) 8
9. Process: Overview
Short
Guide Complete
Register Download Upload
ITT
Q&A
Selection &
Award
Framework
Agreement
Compliance
Certificates
Terms of
Participation
22 November 2011 (c) Crown Copyright 9
10. Legal Agreements
Government
Framework
Procurement Service Supplier
Agreement
“The Authority”
Call-off contract
Guidance
“Contracting Body”
Customer
22 November 2011 (c) Crown Copyright 10
12. Process: ITT
Read: ITT
Complete: Complete: Agree:
Selection & Compliance Framework
Read: Terms Award Certificate Agreement
Company
Info
Generic
Service Info
IaaS
PaaS
SaaS
Services
22 November 2011 (c) Crown Copyright 12
13. Process: ITT Detail
IaaS
IaaS
PaaS
PaaS
A1 Selection Company Generic Key Generic
& Award Info Selection Documents Service Info
SaaS
SaaS
Services
Services
22 November 2011 (c) Crown Copyright 13
14. Process Detail: IaaS
Ref Question field or Information text Supplier Response Supplier Response
Service 1 Service 2
LOT 1 - Infrastructure (IaaS) Services
Complete only if you offer IaaS services. The generic section must be completed. Only complete other subsections for the services you are offering.
Generic
Q-LOT1-1 What IaaS Services do you provide?
Q-LOT1-2 Elastic/burstable resources defined?
Q-LOT1-3 Guaranteed/non-guaranteed resources defined?
Q-LOT1-4 Persistence/non-persistence of storage defined?
Compute
Q-LOT1-5 What is the name for the service (if different from response in "About your Services" section)?
Q-LOT1-6 Price for standard compute configuration (or closest fit from suppliers existing offerings)?
Q-LOT1-7 Minimum service unit pricing interval?
Q-LOT1-8 Is the service Public or Private?
Q-LOT1-9 Impact Levels (ILs) at which the service is accredited to process and/or store information (actual or target)?
Q-LOT1-10 Has the service been accredited?
Q-LOT1-11 Type of Hypervisor that will be in use documented?
Q-LOT1-12 Type of virtual machine images supported documented?
Q-LOT1-13 Customer uploading/downloading of virtual machine images supported?
22 November 2011 (c) Crown Copyright 14
15. Process Detail: SaaS
Ref Question field or Information text Supplier Response Supplier Response
Service 1 Service 2
LOT 3 - Software as a Service (SaaS)
Complete this section only if you offer SaaS services
These options should be considered in relation to any of the services below. Complete all applicable
questions.
Service Options
Clients
Q-LOT3-1 Web browser interface ?
Q-LOT3-2 Supported web browsers documented?
Content Management
Q-LOT3-49 What is the name for the service (if different from response in "About your Services" section)?
Q-LOT3-50 Price for most common configuration (i.e. Supplier's best selling or expected best selling configuration)?
Q-LOT3-51 Minimum service unit pricing interval?
Q-LOT3-52 Is the service Public or Private?
Q-LOT3-53 Impact Levels (ILs) at which the service is accredited to process and/or store information (actual or target)?
Q-LOT3-54 Has the service been accredited?
Features
Q-LOT3-55 CMS's Offered?
Q-LOT3-56 Part of an integrated collaborative tool set?
22 November 2011 (c) Crown Copyright 15
16. Process Detail: Services
Ref Question field or Information text Supplier Response Supplier Response
Service 1 Service 2
LOT 4 - Specialist Cloud Services
Complete only if you offer Specialist Cloud Services
Q-LOT4-1 Do you provide services that support Cloud services?
Q-LOT4-2 Do you provide vendor specific services ?
Q-LOT4-3 If the vendor(s) have accreditation, are you accredited?
Q-LOT4-4 Vendor accreditations?
If your services are unit priced, price for most common configuration (i.e. Supplier's best selling or expected
Q-LOT4-5
best selling configuration)?
Q-LOT4-6 If your services are resource based, priced SOFIA table provided?
Un-listed Service
Please complete if your service does not fall into the categories listed below in the Services section
Q-LOT4-7 What is the name for the service (if different from response in "About your Services" section)?
Q-LOT4-8 Short description (summary) of the service?
Services
Q-LOT4-9 Design Authority?
Q-LOT4-10 Project / Programme Management?
Q-LOT4-11 Business Analysis?
Q-LOT4-12 Design and Development?
22 November 2011 (c) Crown Copyright 16
17. Assure & Accredit
Tim Hanley
Home Office
Information Technology
22 November 2011 (c) Crown Copyright 17
18. Which for what?
• Assurance is defined as: “a statement, assertion, etc., intended to
inspire confidence or give encouragement”
This will apply to Commercial, Service Management and Functional
aspects of the services
• Accreditation is defined as: “the formal assessment of the ICT
system against its IA requirements, resulting in the acceptance of
residual risks in the context of the business requirement. It is a
prerequisite to approval to operate.”
This will apply to Information Assurance aspects of the services
Both public and private cloud services will be subject to
Assurance/Accreditation
22 November 2011 (c) Crown Copyright 18
19. Objectives
Visibility of service capabilities
• Ensure that key aspects of a service are defined clearly so customers know
what they are buying/getting.
Drive commoditisation
• Minimum criteria are precise enough to drive commoditisation of services
and buying behaviour, but not so precise that the industry innovates and
government gets left behind.
Clarity for suppliers of minimum government criteria
• To help suppliers (especially "emerging" and SMEs) understand the
mandatory government criteria for services to aid with product/service
development and investment decisions.
22 November 2011 (c) Crown Copyright 19
20. Objectives
Minimise rework
• Undertake Assurance/Accreditation of different aspects as few times as
possible to minimise rework for both suppliers and customers. To share
Assurance and Accreditation information as widely as possible.
Continuous assessment
• Minimise bottlenecks and delay by ensuring that only key aspects are
assessed centrally (on a periodic basis) whilst federating assessment of
other aspects to allow customers to continually provide feedback on:
1) whether the service does what it says it will; and
2) the performance and quality of the service.
This is to be done in an open and transparent way, allowing other
customers to use this in selection decisions and for suppliers to address the
concerns openly and directly if they choose to.
22 November 2011 (c) Crown Copyright 20
22. Assurance/Accreditation – success route
7
Assurance 4
Commercial
2 Assured /
1 Accredited
Service Management
Catalogue Service in
Functional use
(Gov App
Store)
3
I A (security) Accreditation
5
6
1. Assurance/Accreditation commences based on the information provided by the service supplier in the ITT
response/catalogue entry (e.g. IaaS/PaaS/SaaS, Which IL the service is intended for etc.)
2. Assurance will be carried out as per section 2.1 and 2.3 of this document.
3. Accreditation will be carried out as per section 2.3 of this document.
4. Customers select services for use – level/type of feedback on a service is expected to play a part in selection and
usage scenarios (e.g. trial versus production)
5. Customers provide feedback on specific aspects of a service (e.g. checking that claims made a real), thus building
a continuous picture of service capability and improving levels of assurance.
6. Periodic/significant change re-accreditation of services
7. Periodic/significant change assurance review of services. Customer feedback expected to feed into review.
23. Assurance/Accreditation – failure route
5
Assurance
Commercial
2
1
Service Management Not Assured
/ Accredited
Functional Parking Area
3
I A (security) Accreditation
4
1. Assurance/Accreditation commences based on the information provided by the service supplier in the ITT
response/catalogue entry (e.g. IaaS/PaaS/SaaS, Which IL the service is intended for etc.)
2. Assurance will be carried out as per section 2.1 and 2.3 of this document. Reasons for failure will be
communicated to the Service Supplier
3. Accreditation will be carried out as per section 2.3 of this document. Reasons for failure will be
communicated to the Service Supplier
4. Service Supplier can re-submit their service for Assurance
5. Service Supplier can re-submit their service for Accreditation