Crescent Services has joined the CPC website so all our customers can access our frameworks and services in one place! Learn more 

CPC Swoosh

Procuring to protect: cybersecurity and ICT in 2025-26

Published

By CPC Helpdesk

In 2025-26, cybersecurity cannot be simply an ICT concern - it must be strategic priority, for each and every organisation. The following article explores how Crescent Purchasing Consortium can help you procure important protection against it.

The recent wave of cyber attacks targeting UK institutions has highlighted that the risk of cyber attacks is growing. In 2025, the private sector experienced a series of high-profile cyber breaches, with major British retailers including the Co-operative Group, Harrods and Marks & Spencer (who suffered a ransomware attack), making headlines far and wide. Cyber attacks can cause a wide range of damage, including exposure of customer data, disrupted operations, reputational harm and financial damage.

Regrettably, all sectors are at risk of a cyber attack, including the public sector, which increasingly sees government departments, local councils and public health bodies facing sophisticated cyber threats that require robust solutions.

The procurement perspective: selecting the right ICT partner

To help prevent cyber attacks, procurement leaders have a requirement to focus spending on proactive investments in secure and scalable digital infrastructure. This is where we come in. Crescent Purchasing Consortium (CPC) is an experienced provider of comprehensive digital procurement solutions, designed to meet the evolving needs of public sector institutions like yours. These include our range of compliant ICT frameworks, which arrive with experienced and vetted suppliers you can rely on.

ICT Network, Storage and Service Solutions

Launched in September 2025, CPC's brand new ICT Network, Storage and Service Solutions framework has been developed from two of our prior ICT agreements, namely Outsourced ICT and ICT Networking and Storage Solutions. Another compliant procurement solution from our expert team, the framework can be used to purchase secure network infrastructure, network services, installation services and IT storage solutions that ensure data integrity, rapid recovery and seamless scalability.

As well as outsourced ICT services, our purchasing framework offers a range of network security systems for on premise, cloud and hybrid cloud solutions, while providing a simple and useful route to market for outsourcing your managed ICT services, including remote, hybrid and on-site support. In all, CPC’s ICT Network, Storage and Service Solutions framework provides end-to-end management of your ICT services, plus security provision, from support services to infrastructure monitoring.

Corporate Software & Related Products and Services

Part of CPC's framework catalogue through the 2025-26 academic year, our Corporate Software & Related Products and Services framework grants public sector buyers access to secure, modular and customisable software platforms; platforms designed to streamline operations, while embedding cybersecurity at every layer. Officially recommended to schools and academies by the Department for Education, this nine-lot framework covers HR, payroll system and financial management software, as well as customer relationship management (CRM) and management information systems (MIS), plus more.

ICT Hardware and Peripherals Solutions

Finally, our ICT Hardware and Peripherals Solutions framework is another debuted in 2025 and another recommended to schools and academies by the DfE, affirming its suitability and usability. As one might reasonably expect, a wide range of desktop computers, laptops and tablets, plus peripherals and accessories, are available through this CPC framework, which additionally facilitates security features, such as secure configuration and device tracking, to help organisations to maintain control over their digital assets. The agreement is divided into two lots, connecting institutions with assessed and approved suppliers of desktop PC/portable device solutions and Apple branded solutions, respectively.

Learnings from recent cyber events

The aforementioned Marks & Spencer breach, while significant in its own right, is one of sadly many cyber attacks to have affected UK organisations. In recent months, several UK government agencies have even reported attempted intrusions, with attackers targeting sensitive customer data and critical infrastructure. These incidents highlight the widespread need for:

  • Zero trust architectures

    • Trust no device, user or system by default.

  • Real-time threat detection

    • Identify and stop threats before they escalate.

  • Integrated procurement strategies

    • Align ICT investments with long-term digital resilience goals.

To minimise the threat of cyber attacks succeeding, institutions' procurement teams must think beyond cost and compliance. As such, the real value lies in selecting partners who both understand the complexity of public sector challenges and can also deliver secure and future-proof solutions. Crescent Purchasing Consortium is not only a buying framework provider, we’re a public sector procurement specialist and strategic ally in your digital security transformation. So why not put us to work?

Contact CPC to see how our ICT frameworks and procurement experts can help your institution to fight cyber attacks.

Want more advice/insight, this Cyber Security Month? Read on for Howden Group's piece on 'cyber mythbusters'...