Separation of Scottish Hydro Electric Transmission network and domain

Descriptions

Scottish Hydro Electric Transmission (SHET) seek a skilled provider of network and security consulting and project delivery services to design and deliver a major IT + OT network and authentication re-structure. The objective of the project is to further separate SHET network zones from other SSE BU networking, enabling SHET to apply networking changes in a more agile way with less inter-group dependency. The projects span both IT and OT (operational technology). The current network design is complex with a disparate combination of separate and shared services with other SSE businesses. It is important that the design for the "To-Be" solution minimises the risk to the business during the transformation from the current network architecture to the future model. Suppliers should appreciate transition will be undertaken in the context of a live operating environment. This project will help ensure SHET continue to meet the NIS Directive CAF (Cyber Assessment Framework) B2 principle and contributing outcomes in the RIIO-T3 Ofgem regulatory period. • In 2025 the project will define a costed strategy, architecture secure design, support model and execution plan for SHET to meet its desired network and security outcomes. • In 2026 execution of the approved design will follow as part of the RIIO-T3 regulatory period. On-site execution will take place across the territory of Scotland. It is desirable that the supplier have the capability to provide IT managed services and project delivery services (for example but not limited to networking, infrastructure, cybersecurity specialisms) and professional services as this may be a future requirement. Due to the nature of the work involved, it is anticipated that the supplier and any sub-contractor personnel will be UK based and where necessary their employees assigned to the programme or with access to SHET data may be required to hold appropriate security clearance for their role. To successfully deliver the project, the design and execution phases must address and deliver solutions that: 1. Improved Transmission OT systems and network, with increased cyber security prevention and avoidance of risk. 2. Maintenance of SHET compliance with the CAF Principle B2 and preparation to meet the Enhanced CAF Profile once released. 3. Enable SHET to: a. Drive towards network independence whilst retaining benefits of sharing wider corporate network where beneficial to do so , b. Enable initiative-taking risk avoidance and management, and increased ability to accommodate future cyber and functional changes. 4. Strengthens SHET overall network security posture while also making it easier to monitor and track traffic throughout SHET network. 5. Solution will need to be scalable to support anticipated future business growth.