Buyer Name: NORTHERN STAR ACADEMIES TRUST
Buyer Address: 77 Gargrave Road, Skipton, UKE22, BD23 1QN, United Kingdom
Contact Name: Peter Addison-Child, Chief Operating Officer
Contact Email: paddisonchild@nsat.org.uk
Internal Audit Services
Buyer Contact Info
Status
active
active
Procedure
open
open
Value
33000.0 GBP
Gross: 39600 GBP
33000.0 GBP
Gross: 39600 GBP
Published
18 Aug 2025, 14:28
18 Aug 2025, 14:28
Deadline
29 Sep 2025, 09:00
29 Sep 2025, 09:00
Contract Start
n/a
n/a
Contract End
n/a
n/a
Category
services
services
CPV
79212200 - Internal audit services
79212200 - Internal audit services
Region
n/a
n/a
Awarded To
n/a
n/a
Official Source
Open Find a Tender
Open Find a Tender
Description
2.1 This brief is for the provision of internal audit services to deliver third line assurance within the Trust's overall Board Assurance Framework. 2.2 The Framework assumes up to three internal audits per calendar year, organised around a five year planning cycle. The focus of internal audits will be reviewed and refined annually by Trustees, informed by the Trust's risk profile. 2.3 It is expected that: - persistent high risk areas will be subject to annual scrutiny, particularly in areas where risks are constantly evolving. It is expected that cyber security will fall into this category. This means that potential providers must be able to demonstrate competence to audit in this area, either directly or via a partner. - at least one audit each year will focus on an aspect of financial or HR management, as the areas carrying the highest ongoing risk to the Trust. - other areas will be audited on a five yearly cycle. An example plan is set out in the accompanying Board Assurance Framework. Whilst this plan provides starting assumptions for each year's scrutiny schedule, Trustees may adjust it in light of changing risk profiles. In some circumstances, this could mean combining the audit time available to conduct (say) one deeper audit into a particular business area rather than two short audits in different areas. For reasons of budget and practicality, it is expected that proposed annual cyber security audits will focus on specific areas of cyber risk such as: patch/vulnerability management; access controls; incident management planning and response; resilience planning; staff training and testing. 2.4 Providers will be expected to: - work with the Chief Operating Officer to produce an annual audit schedule for approval by Trustees in December of each year. (The audit period for each year will be 1 Jan - 31 Dec) - produce written scope of works for each intended audit and work with the NSAT business lead for relevant areas to request and gather the audit material needed (including arranging any meetings/visits where relevant). - produce written reports for each audit undertaken and the annual scrutiny summary report for the Trust's Annual Report and Accounts. - attend the Audit & Risk Committee at least annually to report directly to Trustees on recent audit reports. These dates will be booked at the start of each year. 2.5 The overall approach will be informed by the Trust's Risk Management Policy (attached to this brief). The Trust maintains its risk register via the "Every" online system. The Trust will take a risk-based approach to setting the scope for each audit. 2.6 On a day to day basis, internal auditors will work with the Trust's Chief Operating Officer and/or Chief Finance Officer to facilitate audit processes. Audit reports will be to Trustees (and the Chair of the Audit & Risk committee in particular). 2.7 The Trust's annual budget for internal audit is £11k (exc VAT). The contract for will be for three years (1 January 2026 - 31 December2028), cancellable with the provision of six months' notice on either side. 3. Response 3.1 Responses are sought from potential partners to this brief. Written responses should include: - details of experience of undertaking internal audit/scrutiny in general, with reference to any experience in the academy sector in particular. - an outline of proposed audit methodologies. - the experience and/or qualifications of lead personnel who may be undertaking audits (including how specialist expertise will be secured to meet the range of audit requirements in the Trust's likely internal audit cycle). - examples of reporting format, including the form of recommendation. - any proposals for tracking and closing recommendations from audits. - names and contact details of two client referees able to provide information about their experience of working with the provider. 3.2 Responses should provide a fixed annual cost for the duration of the three year contract with a description of what is included. Any potential additional charges should be referenced.
Linked Documents
Select a document to preview.
Opportunity Context
More Information Links
External Link: https://www.find-tender.service.gov.uk/Notice/049570-2025
Link Description: Tender notice on Find a Tender
Lots
Lot 1 Status: active
Lot 1 Has Options: Yes
Lot 1 Options: It may be possible that additional audits (beyond those specified) could be commissioned within the three year period if risk analysis indicated it would be prudent to do so.
Lot 1 Value: GBP 33,000
Lot 1 Value (Gross): GBP 39,600
Lot 1 Contract Start: 2026-01-01T00:00:00Z
Lot 1 Contract End: 2028-12-31T23:59:59Z
Lot 1 SME Suitable: Yes
Documents
Document Description: The Trust's Strategy is available at: https://www.nsat.org.uk/our-trust/our-strategy The Trust's Board Assurance Framework is also available on request.
Document Description: Tender notice on Find a Tender
Raw Notice JSON
Expand raw payload
{
"buyer": {
"id": "GB-COH-07553531",
"name": "NORTHERN STAR ACADEMIES TRUST"
},
"date": "2025-08-18T15:28:18+01:00",
"id": "049570-2025",
"initiationType": "tender",
"language": "en",
"ocid": "ocds-h6vhtk-0589f4",
"parties": [
{
"additionalIdentifiers": [
{
"id": "PQNM-9476-ZWYJ",
"scheme": "GB-PPON"
}
],
"address": {
"country": "GB",
"countryName": "United Kingdom",
"locality": "Skipton",
"postalCode": "BD23 1QN",
"region": "UKE22",
"streetAddress": "77 Gargrave Road"
},
"contactPoint": {
"email": "paddisonchild@nsat.org.uk",
"name": "Peter Addison-Child, Chief Operating Officer"
},
"details": {
"classifications": [
{
"description": "Public authority - sub-central government",
"id": "publicAuthoritySubCentralGovernment",
"scheme": "UK_CA_TYPE"
}
],
"url": "http://www.nsat.org.uk"
},
"id": "GB-COH-07553531",
"identifier": {
"id": "07553531",
"scheme": "GB-COH"
},
"name": "NORTHERN STAR ACADEMIES TRUST",
"roles": [
"buyer"
]
}
],
"tag": [
"tender"
],
"tender": {
"aboveThreshold": false,
"description": "2.1\tThis brief is for the provision of internal audit services to deliver third line assurance within the Trust\u0027s overall Board Assurance Framework.\n2.2\tThe Framework assumes up to three internal audits per calendar year, organised around a five year planning cycle. The focus of internal audits will be reviewed and refined annually by Trustees, informed by the Trust\u0027s risk profile.\n2.3\tIt is expected that:\n-\tpersistent high risk areas will be subject to annual scrutiny, particularly in areas where risks are constantly evolving. It is expected that cyber security will fall into this category. This means that potential providers must be able to demonstrate competence to audit in this area, either directly or via a partner.\n-\tat least one audit each year will focus on an aspect of financial or HR management, as the areas carrying the highest ongoing risk to the Trust.\n-\tother areas will be audited on a five yearly cycle.\nAn example plan is set out in the accompanying Board Assurance Framework. Whilst this plan provides starting assumptions for each year\u0027s scrutiny schedule, Trustees may adjust it in light of changing risk profiles. In some circumstances, this could mean combining the audit time available to conduct (say) one deeper audit into a particular business area rather than two short audits in different areas.\nFor reasons of budget and practicality, it is expected that proposed annual cyber security audits will focus on specific areas of cyber risk such as: patch/vulnerability management; access controls; incident management planning and response; resilience planning; staff training and testing. \n2.4\tProviders will be expected to:\n-\twork with the Chief Operating Officer to produce an annual audit schedule for approval by Trustees in December of each year. (The audit period for each year will be 1 Jan - 31 Dec)\n-\tproduce written scope of works for each intended audit and work with the NSAT business lead for relevant areas to request and gather the audit material needed (including arranging any meetings/visits where relevant).\n-\tproduce written reports for each audit undertaken and the annual scrutiny summary report for the Trust\u0027s Annual Report and Accounts.\n-\t attend the Audit \u0026 Risk Committee at least annually to report directly to Trustees on recent audit reports. These dates will be booked at the start of each year.\n2.5\tThe overall approach will be informed by the Trust\u0027s Risk Management Policy (attached to this brief). The Trust maintains its risk register via the \"Every\" online system. The Trust will take a risk-based approach to setting the scope for each audit.\n2.6\tOn a day to day basis, internal auditors will work with the Trust\u0027s Chief Operating Officer and/or Chief Finance Officer to facilitate audit processes. Audit reports will be to Trustees (and the Chair of the Audit \u0026 Risk committee in particular).\n2.7\tThe Trust\u0027s annual budget for internal audit is \u00a311k (exc VAT). The contract for will be for three years (1 January 2026 - 31 December2028), cancellable with the provision of six months\u0027 notice on either side. \n3.\tResponse\n3.1\tResponses are sought from potential partners to this brief. Written responses should include:\n-\tdetails of experience of undertaking internal audit/scrutiny in general, with reference to any experience in the academy sector in particular.\n-\tan outline of proposed audit methodologies.\n-\tthe experience and/or qualifications of lead personnel who may be undertaking audits (including how specialist expertise will be secured to meet the range of audit requirements in the Trust\u0027s likely internal audit cycle).\n-\texamples of reporting format, including the form of recommendation.\n-\tany proposals for tracking and closing recommendations from audits.\n-\tnames and contact details of two client referees able to provide information about their experience of working with the provider.\n3.2\tResponses should provide a fixed annual cost for the duration of the three year contract with a description of what is included. Any potential additional charges should be referenced.",
"documents": [
{
"description": "The Trust\u0027s Strategy is available at: https://www.nsat.org.uk/our-trust/our-strategy\nThe Trust\u0027s Board Assurance Framework is also available on request.",
"documentType": "biddingDocuments",
"format": "application/vnd.openxmlformats-officedocument.wordprocessingml.document",
"id": "A-4357",
"url": "https://www.find-tender.service.gov.uk/Notice/Attachment/A-4357"
},
{
"datePublished": "2025-08-18T15:28:18+01:00",
"description": "Tender notice on Find a Tender",
"documentType": "tenderNotice",
"format": "text/html",
"id": "049570-2025",
"noticeType": "UK4",
"url": "https://www.find-tender.service.gov.uk/Notice/049570-2025"
}
],
"enquiryPeriod": {
"endDate": "2025-09-12T17:00:00+01:00"
},
"id": "IA Tender 2025",
"items": [
{
"additionalClassifications": [
{
"description": "Internal audit services",
"id": "79212200",
"scheme": "CPV"
}
],
"deliveryAddresses": [
{
"country": "GB",
"countryName": "United Kingdom",
"region": "UKC"
},
{
"country": "GB",
"countryName": "United Kingdom",
"region": "UKD"
},
{
"country": "GB",
"countryName": "United Kingdom",
"region": "UKE"
},
{
"country": "GB",
"countryName": "United Kingdom",
"region": "UKF"
},
{
"country": "GB",
"countryName": "United Kingdom",
"region": "UKG"
},
{
"country": "GB",
"countryName": "United Kingdom",
"region": "UKH"
},
{
"country": "GB",
"countryName": "United Kingdom",
"region": "UKI"
},
{
"country": "GB",
"countryName": "United Kingdom",
"region": "UKJ"
},
{
"country": "GB",
"countryName": "United Kingdom",
"region": "UKK"
}
],
"id": "1",
"relatedLot": "1"
}
],
"legalBasis": {
"id": "2023/54",
"scheme": "UKPGA",
"uri": "https://www.legislation.gov.uk/ukpga/2023/54/contents"
},
"lots": [
{
"awardCriteria": {
"description": "Responses will be considered on the information contained within or obtained by the Trust as a direct result of this tender process. Evaluation will be based on:\n-\trelevance of the proposed audit methodology and delivery model to the Trust\u0027s context;\n-\tthe skills and experience of the key personnel delivering the audit programme;\n-\tthe presentation; and \n-\toverall value for money."
},
"contractPeriod": {
"endDate": "2028-12-31T23:59:59Z",
"startDate": "2026-01-01T00:00:00Z"
},
"hasOptions": true,
"id": "1",
"options": {
"description": "It may be possible that additional audits (beyond those specified) could be commissioned within the three year period if risk analysis indicated it would be prudent to do so."
},
"status": "active",
"suitability": {
"sme": true
},
"value": {
"amount": 33000,
"amountGross": 39600,
"currency": "GBP"
}
}
],
"mainProcurementCategory": "services",
"otherRequirements": {
"reservedParticipationLocation": {
"description": null,
"gazetteer": {
"identifiers": [
"K02000001"
],
"scheme": "GB-ONS"
}
}
},
"procurementMethod": "open",
"procurementMethodDetails": "Below threshold - open competition",
"status": "active",
"submissionMethodDetails": "Details for submission will be posted at www.nsat.org.uk/internalaudit\n[Responses should be send by email to paddisonchild@nsat.org.uk]",
"submissionTerms": {
"electronicSubmissionPolicy": "allowed"
},
"tenderPeriod": {
"endDate": "2025-09-29T10:00:00+01:00"
},
"title": "Internal Audit Services",
"value": {
"amount": 33000,
"amountGross": 39600,
"currency": "GBP"
}
}
}