Identity Attestation Verification

Descriptions

5.1 The Supplier will come under the overall direction of the Digital Identity Programme Delivery Lead for Foundations and Data and they will report to the appointed Delivery Manager who will oversee delivery of the contracted deliverables. 5.2 The Supplier will carry out a detailed assessment of the discovery of the existing processes of user identity validation/verification and entitlement attestation processes and procedures and define the next steps that presents technical solution options for circa 20k SECRET users (Who can be based overseas), which is also scalable to other users like OFFCIAL in the future. 5.3 The Supplier will carry out detailed business analysis and design of user identity validation/verification and entitlement attestation processes and procedures and outline the required embedding of such process that supports each of the defined options that is presented to the Digital Identity for Defence Programme. 5.4 The end-to-end processes and procedures that are in scope for handling and processing the authority’s identity information include but not limited to: • Creating new identities (including verification / provenance / attestation) • Managing existing identities (whole life management including data updates) • Retiring old identities (and reinstating where needed) • Processes for working with identities internally • Processes for working with identities to/from business and operational partners • processes for reviewing / auditing / reporting on identity activity and data changes 5.5 These processes will have (usually minor) variations depending on the identity: • Military (current, reservists, cadets and veterans) • Civilians in the Military (e.g. Royal Fleet Auxiliary) • Guests from other warfighting partners who use MOD IT services • Departmental Civil Servants • Non-MOD employees (Contractors) • Civil servants and others from other government departments (OGDs) who use MOD IT services (e.g. MOD police) • Departmental partners, which range from supplier-selected teams from major supplier organisations to individually contracted staff • Deployed users • Other defence-related staff who use MOD IT services 5.6 The processes under development need to operate at scale, with a (nominal) 250k identities that we would consider to be the active core defence community, and of the order of 1000 changes (joiners/movers/leavers) a week. 5.7 Each defined option must be analysed holistically to ensure (if accepted/approved) can be implemented with immediate effect.