Simulated Phishing and Associated Training Framework
Introduction
The Simulated Phishing and Associated Training Framework, managed by JISC, is an essential tool for organisations seeking to bolster their cybersecurity defences. This framework, which falls under the technology category, assists organisations in mitigating risks associated with phishing attacks by providing simulated phishing exercises and comprehensive training programmes for staff. It is designed to enhance employees' ability to identify and respond to phishing attempts, thereby strengthening the overall security posture of an organisation. The framework is set to conclude on 11 April 2024, and it does not operate as a Dynamic Purchasing System (DPS).
Context & Use Case
Phishing attacks remain one of the most prevalent cybersecurity threats faced by organisations today. These attacks often take the form of deceptive emails or messages intended to trick recipients into divulging sensitive information such as passwords, financial details, or personal data. The Simulated Phishing and Associated Training Framework provides a structured approach for organisations to tackle this challenge by simulating phishing attacks and equipping employees with the necessary skills to recognise and combat such threats. Contracting authorities utilise this framework to proactively address cybersecurity vulnerabilities, promote a culture of security awareness, and reduce the likelihood of successful phishing attempts within their organisations.
Scope of Services
The framework encompasses a range of services designed to enhance organisational resilience against phishing attacks. Typical services provided include: 1. Simulated phishing campaigns tailored to mimic real-world phishing threats. 2. Training programmes focused on educating employees about phishing tactics and prevention techniques. 3. Development and deployment of awareness materials to reinforce key security messages. 4. Reporting and analysis of phishing simulation results to identify areas for improvement. 5. Consultancy services to develop customised phishing prevention strategies.
Who Can Apply
The Simulated Phishing and Associated Training Framework is open to suppliers with expertise in cybersecurity, particularly those with experience in delivering simulated phishing exercises and training programmes. Suitable suppliers are those who can demonstrate a robust understanding of phishing methodologies and the ability to provide tailored training solutions that meet the specific needs of diverse organisations. While the framework does not operate as a DPS, suppliers must ensure that they meet the eligibility criteria set by JISC and any specific requirements outlined for participation.
Buyer Benefits
Public sector buyers leverage this framework to access a streamlined procurement route that ensures compliance with regulatory standards and offers a quick path to market. The framework provides a competitive environment where multiple suppliers can offer their services, enabling buyers to select the most suitable solutions for their needs. By utilising this framework, contracting authorities can enhance their cybersecurity measures efficiently, reducing potential risks associated with phishing attacks and enhancing their overall security posture.
Lots
Not applicable
Next Steps
Suppliers interested in participating in the Simulated Phishing and Associated Training Framework should review the specific requirements and criteria for application. It is advisable to contact JISC directly for detailed information on how to apply and to understand any updates or changes that may affect the framework before its end date in April 2024.
How Biddable Can Help
Biddable offers support to suppliers navigating the complexities of public sector frameworks. By providing insights into framework discovery, aiding in the preparation of application materials, and offering visibility into upcoming procurement opportunities, Biddable ensures that suppliers are well-prepared to engage with frameworks like the Simulated Phishing and Associated Training Framework. Our goal is to facilitate a smoother experience in accessing and competing within public sector procurement channels.