Press Release: Commissum continues NHS business growth with place on NHS Cyber Services Framework

Commissum continues NHS business growth with place on NHS Cyber Services Framework.

Commissum is delighted to announce that it has been awarded a place on the NHS Shared Business Services Cyber Security Services Framework. Commissum is one of only five organisations to be awarded all three lots, as detailed below following an OJEU process. The Framework, with a nominal value of £250m, will provide NHS clients with a direct award route to market for Commissum’s services.

Frank Green, Chief Sales & Marketing Officer offered the following comments:

“Being awarded all three lots alongside global corporates is an unequivocal stamp of approval from the NHS and we are immensely proud of the recognition that Commissum offers a genuine and compelling alternative to the old guard system integrators and large IT corporates.

As a challenger business, we are able to offer the NHS and Public Sector both better service and genuine value whilst being more flexible and responsive than all of our corporate competitors without the burden of bureaucracy.

This framework is a step-change approach in the way that the NHS procures cyber services and will allow NHS organisations to access the expertise and specialist services from Commissum in a way that they haven’t been able to before.”

Building on the success of working with the NHS on many cyber security contracts awarded to Commissum over previous years, the CSS framework allows all public sector organisations the ability to direct award work, and work packages, of up to 7-year contracts to Commissum.

Alex Northwood, Commissum Frameworks Manager had the following words to offer:

Our clients continue to feed back to us that our ‘big company approach’ to process excellence, quality and service delivery combined with our agile and responsive approach to relationships, account management and commitment to delivering rapid successful outcomes means we are the natural choice for so many public sector organisations. I am delighted to be able to lead this important part of Commissum as our business continues to go from strength to strength.” 

Features of the Framework include:

  • Highest quality of service provision: Award restricted to the outstanding Suppliers per Lot following a rigorous tender process.
  • In collaboration with NHS Digital and NCSC: Developed in partnership to address Department for Health and Social Care Cyber Security agenda and offer local organisations an efficient & compliant route to source specialised healthcare security support
  • END-TO-END CYBER RISK MANAGEMENT: Structured to guide you through your cyber risk management capability development: from emergency incident response, advisory on cyber security compliance, to on-going support from specialist security personnel.

Awarded lots:

Lot 1: Emergency Cyber Incident Management

Lot 2: Cyber Security Consultancy Services

Lot 3: Security Personnel

As per NHS Shared Business Services:


This cyber security services framework is a new framework which offers a complete range of external support services to help NHS and wider public sector organisations manage cyber risks and recover in the event of a cyber security incident. Through design, delivery, testing, governance and assurance it enables service continuity in patient care by ensuring patient data is secured and critical services and systems remain available.

The framework has been developed in partnership with NHS Digital and the National Cyber Security Centre (NCSC).

Who can take advantage?

NHS, Local Authorities, Emergency Services, Education sector and all Public Sector Organisations located across the UK nations (England, Scotland, Wales, Northern Ireland).

Lot 1 Emergency Cyber Incident Management

Includes provision of urgent incident response capability for large-scale or local incidents, with the ability to quickly draw down expert skills and resource 24/7/365.

Particularly useful to support incident control, containment, resolution and remediation in the event of a Cyber Security Incident.

Lot 2 Cyber Consultancy Services

Delivers specialist support needed to enhance an organisation’s cyber credentials, including Data Security On-Site Assessments, Security Testing, Technical Assurance, Forensics and Investigations, Policy Development, Awareness and Training.

Particularly useful for any organisation that has a requirement to access ad-hoc or ongoing advisory support often strategic in nature with well-defined outcomes.

Lot 3 Security Personnel

Includes supply of specialist personnel to support and augment existing in-house capability.

Requirements are anticipated to be wide ranging and of a more routine nature. This lot will ultimately support organisations to reduce their exposure to threats, improve security defences and provide resource support to respond to cyber incidents.

If you are an NHS or Public Sector organisation, you can now direct award business to Commissum without further competition through this framework. Please contact Frameworks Manager, Alex Northwood, on 0121 663 1026 for instructions, or click here to register for portal access.