Tenders

Security Operations- Out of Hours Service

Open
Deadline
29 days left
April 26, 2026
Contract Details
Category
Open Procedure
Reference
015742-2026
Value
Not disclosed
Location
United Kingdom
Published
March 20, 2026
CPV Code
Project Timeline

Tender Published

February 20, 2026

Deadline for Questions

April 19, 2026

Submission Deadline

April 26, 2026

Contract Start Date

July 03, 2026

Buyer IntelligencePRO
🔒
Unlock Buyer Intelligence
See spending patterns, preferred procedures, and more.
Upgrade to Professional →
View Original
Budget
Not disclosed
Duration
37 months
Location
United Kingdom
Type
Open Procedure
67
Quality Score/100
Good

Original Tender Description

L&Q intends to procure a hybrid Out‑of‑Hours Security Operations Centre service to operate as an extension of the internal L&Q SOC. The service will provide protective monitoring, triage, and incident response outside of core operating hours. The OOH SOC partner will be responsible for: Continuous monitoring, triage, and incident escalation during defined out‑of‑hours periods. Supporting L&Q's internal SOC with investigations, analysis, and agreed incident response actions. Operating in alignment with L&Q playbooks, processes, and security tooling (including Microsoft Sentinel, Microsoft Defender XDR, and others). Providing structured shift handovers, monthly reporting, and ongoing collaboration with L&Q SOC staff. This work is critical for maintaining security oversight during nights, weekends, and bank holidays, reducing the risk of compromise during periods where internal analysts are unavailable. High‑Level Scope of Services: Service Operating Hours Mon-Fri: 17:00-09:00 Weekends & Bank Holidays: 24/7 coverage Service Performance Expectations Availability: 99.5% across operating hours Incident Acknowledgement & Escalation Times: High: 15 minutes to start incident triage, 75 minutes or end of shift to escalate Medium: 2 hours to start incident triage, 4 hours or end of shift to escalate Low: 5 hours to start incident triage, 8 hours or end of shift to escalate Key Functions: Triage of all alarms generated within Microsoft Sentinel/Microsoft Defender XDR. Use of L&Q-provided tooling (Sentinel, Defender family, Azure, email analysis tools). Remote host investigations as required. Triage of reported suspicious/malicious emails. Blocking of malicious IPs on host and/or network (as per playbook direction). Ad‑hoc investigatory support to defined timescales. Incident Response support for security incidents that are detected or reported through channels outside of the SIEM. Detection engineering support in collaboration with the L&Q Group SOC, enhancing existing detections and developing new analytics and rule logic as needed Reporting & Governance: Monthly service performance reporting. Written handovers at shift boundaries. Quarterly account management meetings. Documented change‑control processes aligned with L&Q practice. Security & Compliance Requirements: Supplier must be headquartered in the UK or EU, or otherwise demonstrate GDPR‑compliant operating arrangements. Analysts must be proficient in Microsoft Sentinel, KQL, Defender product suite. Proven experience delivering SOC services for organisations of similar scale (4,000-5,000 staff).

Risk Analysis

Please log in to use risk analysis.

Login

Win Strategy

Please log in to access winning strategy recommendations.

Login

Competitors

Upgrade to see which companies are likely to bid on this tender, based on historical procurement data.

Login

Requirements & Qualifications

24 requirements across 5 categories

Submission (1)
Mandatory (1)
Compliance (1)
Technical (20)
Financial (1)
SUBMISSION REQUIREMENTS1
--Submission Deadline: 2026-04-26T00:00:00.
MANDATORY EXCLUSION GROUNDS1
--None explicitly stated in the provided tender summary.
ELIGIBILITY REQUIREMENTS1
--Supplier must be headquartered in the UK or EU, or demonstrate GDPR-compliant operating arrangements.
TECHNICAL CAPABILITY REQUIREMENTS20
--Ability to provide continuous monitoring, triage, and incident escalation during defined out-of-hours periods (Mon-Fri: 17:00-09:00, Weekends & Bank Holidays: 24/7 coverage).
--Ability to support L&Q's internal SOC with investigations, analysis, and agreed incident response actions.
--Ability to operate in alignment with L&Q playbooks, processes, and security tooling (including Microsoft Sentinel, Microsoft Defender XDR, and others).
FINANCIAL REQUIREMENTS1
--None explicitly stated in the provided tender summary.

Requirements Preview

Sign up to view complete requirements and analysis

Documents

No processed documents available for this tender.

Documents will appear here once they are downloaded and analyzed.

67
Good

Tender Quality Score

This tender provides a clear description of the required security operations service but suffers from significant transparency and completeness issues, particularly the absence of evaluation criteria and actual tender documents. Its fairness is notably compromised by these omissions and the classified value.

Score Breakdown

Legal Compliance75/100

The tender correctly identifies the procedure type (Open) and CPV code. There are no reported disputes or suspensions. However, the estimated value is classified, and the reveal date is missing, which can impact transparency and compliance with disclosure requirements, depending on specific UK procurement thresholds and regulations.

Classified estimated value
Missing reveal date
Clarity80/100

The service description, scope, performance expectations, and technical requirements are exceptionally clear and well-detailed. The AI-extracted requirements are comprehensive. The primary deficiency is the complete absence of specified evaluation criteria, which is critical for bidders to understand how their proposals will be assessed.

No evaluation criteria specified
Completeness65/100

Basic information like title, organization, reference, deadlines, and duration are present. However, the tender lacks access to the actual tender documents (content not processed), the estimated value is not disclosed, and evaluation criteria are missing. These are significant gaps for a complete tender package.

No document content available
Value not disclosed (classified)
Fairness50/100

Fairness is significantly undermined by the lack of access to full tender documents, the classified estimated value, and the absence of evaluation criteria. The lack of e-submission also creates potential barriers. While the technical requirements are specific (e.g., Microsoft Sentinel, KQL, specific scale), they are generally justifiable for a specialized SOC service and do not appear overtly tailored to a single company.

No document content available
Value not disclosed (classified)
Practicality60/100

The contract start date and duration are clearly specified. However, the absence of electronic submission capabilities is a practical drawback in modern procurement. The lack of a direct document URL (in the provided summary) and the classified value also reduce the practicality for potential bidders to fully engage.

No e-submission
No document URL (in summary)
Data Consistency90/100

Key fields such as title, reference, organization, description, deadlines, CPV code, and NUTS code are consistently populated. Dates are logical. There are no reported disputes or suspensions. Minor omissions include the 'Liable Person' and specific codes for 'Type' and 'Procedure'.

"Liable Person" empty
"Type Code" and "Procedure Code" empty
Sustainability40/100

The tender does not explicitly mention any green procurement criteria, social aspects, or a focus on innovation. This indicates a missed opportunity to integrate broader sustainability goals into the procurement process.

Not green procurement
No social criteria

Strengths

Clear and detailed service description and technical requirements
Well-defined performance expectations (availability, incident response times)
Correctly identified procedure type and CPV code
Logical and consistent timeline information
No reported disputes or suspensions

Concerns

Complete absence of evaluation criteria
Lack of access to full tender documents (content not processed)
Estimated value is classified/not disclosed
No electronic submission capability
Missing reveal date

Recommendations

1. Publish the full tender documents and clearly state the evaluation criteria to ensure transparency and fairness.
2. Disclose the estimated contract value, if legally permissible and above relevant thresholds, to improve transparency.
3. Implement electronic submission for improved accessibility and efficiency for bidders.

AI Scoring Preview

Sign up to view complete requirements and analysis

Complete quality score analysis
Detailed sub-score breakdown
Strengths & concerns insights
Strategic recommendations

No credit card required • Setup in 2 minutes

New Service

Want us to handle this tender?

Our procurement experts prepare everything. Proven to work — you review, approve, and submit.

~1hYour time only
80%+80%+
$0Upfront
See full comparison
Without TaaSWith TaaS
40-80 hrs
Preparation time
~1 hr
Your time only
15-25%
Average win rate
80%+
Win rate
Risk of errors
Manual review
Expert QA
Compliance check
You do all
Handle everything
We do all
End-to-end service
Let's Win This Tender
Pay only when you win · 400+ companies trust us
Or do it yourself

Add to Pipeline