SPS-02269 - SPS IT Health Check and Cyber Essentials Framework Agreement
Scottish Prison Service
The SPS requires Suppliers to deliver on‑site IT Health Check Services, including internal and external penetration testing, vulnerability scanning, and security assessments across its networks, systems and data centres, with clear reporting and remediation guidance. The Framework Agreement may also be used for related ad‑hoc IT security work. This Framework Agreement shall be made up of up to three competent Suppliers who shall be responsible for carrying out annual IT Health Checks (ITHC) to maintain accreditation to PSN(P) and also carry out Cyber Essentials+ (CE+) accreditation.