NETWORK RAIL INFRASTRUCTURE LIMITED
Certificate Lifecycle Management Programme Core Services
This is a large award for IT Services — above three-quarters of comparable contracts. Based on 36,449 valued IT Services tenders in our corpus.
Network Rail is seeking to engage the market regarding the future procurement of a Certificate Lifecycle Management (CLM) solution.
This project is driven by significant industry changes, including the CA/Browser Forum's decision to reduce the maximum lifespan of public SSL/TLS certificates over the coming years.
By 2029, certificates will require renewal as frequently as every 47 days, and domain validation reuse will be limited to just 10 days.
These changes are intended to enhance security but will introduce substantial operational overhead, making manual certificate management impractical and automation essential.
Network Rail operates across a complex landscape of on-premises, cloud, and supplier-managed environments.
A key challenge is the fragmented ownership and lack of central visibility over certificates, particularly those issued and managed by third-party suppliers.
This fragmentation increases the risk of outages due to expired or misconfigured certificates and limits Network Rail's ability to monitor, renew, or enforce compliance directly.
The CLM project aims to address these challenges by implementing a solution that enables the centralised, automated management of certificates throughout their lifecycle, regardless of where they are issued or managed.
The solution must provide comprehensive visibility across all environments, support robust automation for renewal and validation, and enable clear supplier accountability through contractual mechanisms.
This includes the ability to track certificates managed by third parties, enforce renewal responsibilities, and ensure that incidents caused by supplier failures can be managed contractually.
Network Rail is inviting suppliers to demonstrate how their solutions can meet these requirements, including the ability to: Centrally track and manage certificates across all environments and suppliers.
Automate certificate renewal, validation, and compliance processes.
Provide visibility and control over third-party issued certificates.
Support supplier accountability and contractual enforcement.
Align with upcoming industry standards and security requirements.
Deliver proven solutions at scale, with references from similar large infrastructure organisations.
We welcome responses from suppliers offering innovative, scalable, and future-proof approaches, including those with experience in complex, multi-stakeholder environments.
Suppliers are encouraged to share relevant case studies, lessons learned, and any alternative models that could help Network Rail achieve its objectives.
This market engagement will inform Network Rail's approach to the procurement of a CLM solution that ensures security, operational resilience, and compliance in a rapidly evolving digital landscape.
What the supplier must deliver
The solution must provide comprehensive visibility across
The solution must provide comprehensive visibility across all environments, support robust automation for renewal and validation, and enable clear supplier accountability through contractual mechanisms.
This includes the ability to track certificates
This includes the ability to track certificates managed by third parties, enforce renewal responsibilities, and ensure that incidents caused by supplier failures can be managed contractually.
Network Rail is inviting suppliers to demonstrate
Network Rail is inviting suppliers to demonstrate how their solutions can meet these requirements, including the ability to:.
Provide visibility and control over third-party issued
Provide visibility and control over third-party issued certificates.
Support supplier accountability and contractual enforcement
Support supplier accountability and contractual enforcement.
Derived from the notice text — always confirm against the original documents.
Make the case to bid
Reveal who to approach at NETWORK RAIL INFRASTRUCTURE LIMITED, and generate a go-to-market strategy from their news, accounts and people.
The full intelligence dossier
Our agent reads NETWORK RAIL INFRASTRUCTURE LIMITED’s accounts, hunts live signals, finds the people who decide — and hands you a bid strategy plus a go-to-market influence plan, including what your team should post this week. You approve every paid step.
Ask me about this tender, the buyer, who wins their work, or whether you should bid.
- OCID
- ocds-h6vhtk-059daa
- Stage
- planning · planning
- Source
- Find a Tender
- Buyer ref
- 070933-2025
Contains public sector information licensed under the Open Government Licence v3.0. Source data © Crown copyright.
Who wins this kind of work
The suppliers and buyers around this opportunity — drawn from official award data. Drag to orbit; click a node to explore.
Top suppliers & buyers in IT Services
NETWORK RAIL INFRASTRUCTURE LIMITED’s tender network
Assembling the network…