Buyer Name: Crown Commercial Service
Buyer Address: Floor 9, The Capital Building, Old Hall Street, Liverpool, L3 9PP, England
Contact Name: Crown Commercial Service on behalf of Cabinet Office : Cabinet Office
Contact Email: supplier@crowncommercial.gov.uk
Contact Telephone: 3450103503
The Cabinet Office requires a Governance, Risk, and Compliance (GRC) tool to enhance its cyber risks and compliance requirements. The tool will enable clear tracking of governance activities, risks and ensure alignment with departmental objectives. Ultimately, this will promote more efficient and well-managed digital services across the department. Overarching requirements: Centralised management: Must provide a single platform to record, track, and manage governance activities, risks, and compliance tasks. While the immediate focus is on cyber risks, the ability to serve as a consolidated enterprise risk management tool is also highly valued. Self- service reporting: Should offer dashboards and reports for up-to-date visibility for stakeholders and senior management. service reporting: Should offer dashboards and reports for up-to-date visibility for stakeholders and senior management. Risk Assessment and Tracking: Ability to identify, assess, and monitor risks as well as controls with options for categorisation and prioritisation. Policy and Compliance Monitoring: Support for capturing and auditing compliance with relevant policies, regulations, and standards.
{
"awards": [
{
"contractPeriod": {
"endDate": "2027-10-26T23:59:59+01:00",
"startDate": "2025-10-27T00:00:00Z"
},
"date": "2025-10-27T00:00:00Z",
"datePublished": "2025-11-13T09:21:11Z",
"documents": [
{
"datePublished": "2025-11-13T09:21:11Z",
"description": "Awarded contract notice on Contracts Finder",
"documentType": "awardNotice",
"format": "text/html",
"id": "1",
"language": "en",
"url": "https://www.contractsfinder.service.gov.uk/Notice/9da76c70-7ced-42de-9d21-6ed49d5479fa"
},
{
"documentType": "contractSigned",
"format": "application/vnd.openxmlformats-officedocument.wordprocessingml.document",
"id": "2",
"url": "https://www.contractsfinder.service.gov.uk/Notice/Attachment/5180a012-dc38-4d77-aa46-e79c635b32cc"
}
],
"id": "ocds-b5fd17-bc9432df-f245-45ea-bdd1-7c8d845abfb9-1",
"status": "active",
"suppliers": [
{
"id": "GB-CFS-317277",
"name": "PHOENIX SOFTWARE LIMITED"
}
],
"value": {
"amount": 320000,
"currency": "GBP"
}
}
],
"buyer": {
"id": "GB-SRS-supplierregistration.cabinetoffice.gov.uk/6sQD8uds",
"name": "Crown Commercial Service"
},
"date": "2025-11-13T09:21:11Z",
"id": "9da76c70-7ced-42de-9d21-6ed49d5479fa-871954",
"initiationType": "tender",
"language": "en",
"ocid": "ocds-b5fd17-bc9432df-f245-45ea-bdd1-7c8d845abfb9",
"parties": [
{
"address": {
"countryName": "England",
"locality": "Liverpool",
"postalCode": "L3 9PP",
"streetAddress": "Floor 9, The Capital Building, Old Hall Street"
},
"contactPoint": {
"email": "supplier@crowncommercial.gov.uk",
"name": "Crown Commercial Service on behalf of Cabinet Office : Cabinet Office",
"telephone": "3450103503"
},
"details": {
"url": "https://www.gov.uk/government/organisations/crown-commercial-service"
},
"id": "GB-SRS-supplierregistration.cabinetoffice.gov.uk/6sQD8uds",
"identifier": {
"id": "supplierregistration.cabinetoffice.gov.uk/6sQD8uds",
"legalName": "Crown Commercial Service",
"scheme": "GB-SRS"
},
"name": "Crown Commercial Service",
"roles": [
"buyer"
]
},
{
"address": {
"streetAddress": "Blenheim House York Road, Pocklington YO42 1NS York United Kingdom"
},
"details": {
"scale": "large",
"vcse": false
},
"id": "GB-CFS-317277",
"identifier": {
"legalName": "PHOENIX SOFTWARE LIMITED"
},
"name": "PHOENIX SOFTWARE LIMITED",
"roles": [
"supplier"
]
}
],
"tag": [
"award"
],
"tender": {
"classification": {
"description": "IT services: consulting, software development, Internet and support",
"id": "72000000",
"scheme": "CPV"
},
"contractPeriod": {
"endDate": "2027-10-26T23:59:59+01:00",
"startDate": "2025-10-27T00:00:00Z"
},
"description": "The Cabinet Office requires a Governance, Risk, and Compliance (GRC) tool to enhance its cyber risks and compliance requirements. The tool will enable clear tracking of governance activities, risks and ensure alignment with departmental objectives. Ultimately, this will promote more efficient and well-managed digital services across the department.\r\n\r\nOverarching requirements:\r\nCentralised management: Must provide a single platform to record, track, and manage governance activities, risks, and compliance tasks. While the immediate focus is on cyber risks, the ability to serve as a consolidated enterprise risk management tool is also highly valued.\r\n\r\nSelf- service reporting: Should offer dashboards and reports for up-to-date visibility for stakeholders and senior management. service reporting: Should offer dashboards and reports for up-to-date visibility for stakeholders and senior management.\r\n\r\nRisk Assessment and Tracking: Ability to identify, assess, and monitor risks as well as controls with options for categorisation and prioritisation.\r\n\r\nPolicy and Compliance Monitoring: Support for capturing and auditing compliance with relevant policies, regulations, and standards.",
"id": "CCIT25A23.",
"items": [
{
"deliveryAddresses": [
{
"countryName": "United Kingdom"
}
],
"id": "1"
}
],
"mainProcurementCategory": "services",
"procurementMethod": "selective",
"procurementMethodDetails": "Call-off from a framework agreement",
"status": "complete",
"suitability": {
"sme": false,
"vcse": false
},
"tenderPeriod": {
"endDate": "2025-10-20T00:00:00+01:00"
},
"title": "Provision of a Cyber Security Governance Risk \u0026 Compliance Solution",
"value": {
"amount": 320000,
"currency": "GBP"
}
}
}