FCDO’s £2.7bn Security Framework Opens Supplier Fight

The FCDO Security and Resilience Framework is a planned £2.7 billion buying route for UK government security, stabilisation, cyber and justice work worldwide. The Foreign, Commonwealth and Development Office (FCDO, the UK department responsible for diplomacy and development) published the pipeline notice on May 29, 2026, with a formal tender pencilled in for September 24, 2026.

For bidders, the notice turns the next 15 months into a qualification race: be credible enough to land on the framework, or watch years of call-off work move through someone else.

A Pipeline Notice With Unusual Range

The entry sits in the official May procurement notice resource, which carries the Find a Tender files for notices published that day. The record says the department is acting on behalf of UK government as a whole and intends to mix Official Development Assistance (ODA, overseas aid that meets international reporting rules) with non-ODA funding.

The scope is unusually wide for a single route to market. It covers security, stabilisation, governance, justice, serious organised crime, counter terrorism, strategic communications, defence support and cyber security. The wording leaves room for adjacent services and goods, which matters because the final lot structure has not yet been published.

The headline value is excluding Value Added Tax (VAT, the UK sales tax applied to many purchases). Including VAT, the estimate rises to £3.24 billion. That difference is more than an accounting footnote for suppliers building bid teams, insurance cover and country-risk capacity before tender documents land.

• £2.7 billion estimated value excluding VAT for the planned framework.
• Eight years of possible life, made up of an expected three-year term and a possible five-year extension.
• September 24, 2026 is the estimated publication date for the tender notice.
• May 29, 2026 was the publication date for the pipeline notice.

Security Spending Has Shifted Across Whitehall

The timing is easier to read against Whitehall’s wider funding shuffle. In its FCDO Main Estimates memorandum, the department says the UK decided to reduce ODA to the equivalent of 0.3% of Gross National Income (GNI, a broad measure of national earnings) by 2027 to fund higher defence spending.

The same memorandum says the UK Integrated Security Fund (UKISF, a cross-government national security fund) moved permanently to the Cabinet Office on April 1, 2026. That transfer matters because the new framework is described as a cross-government route rather than a single-department contract.

In plain terms, the money lines are being redrawn. Aid, security, cyber resilience and defence-adjacent delivery now meet in the same purchasing conversation. A framework that can use both ODA and non-ODA funds gives officials more ways to buy support without rebuilding the supplier base each time a programme changes character.

That flexibility will also attract scrutiny. Work funded by overseas aid rules cannot simply become domestic security spending under another label. The tender documents will need to show how requirements, eligibility and reporting split across those funding streams.

The Supplier Opening Is Wider Than Defence

The notice says the framework is particularly suitable for small and medium-sized enterprises (SMEs, businesses below the UK size limits) and voluntary, community and social enterprises (VCSEs, mission-led nonprofit and social enterprise suppliers). Supplier breadth is the signal because the work listed reaches beyond prime defence contractors.

The open door could matter for several groups that often sit below the largest integrators:

• Cyber and digital assurance firms that can supply short-notice technical teams.
• Justice, governance and stabilisation specialists with country-level experience.
• Strategic communications advisers used to sensitive overseas environments.
• Security and serious organised crime experts with law enforcement backgrounds.
• VCSEs that can reach local partners where large contractors lack trust.

The catch is capacity. Global security work usually requires vetted staff, rapid mobilisation, travel readiness, safeguarding systems and the financial strength to manage delayed payments or volatile operating conditions. Smaller suppliers may gain a fairer shot at joining the panel, but the tests will not be light.

Procedure Flexibility Cuts Both Ways

The planned competition is being run under the Procurement Act 2023 through a competitive flexible procedure. Cabinet Office competitive tendering procedure guidance says the Act has two competitive procedures: open procedure and competitive flexible procedure. The second gives authorities more room to design their own tender process.

For a complex security framework, that room may help. The buyer can use staged selection, negotiation, demonstrations or technical checks if those steps fit the risk. A single open tender for every possible service line would be cleaner on paper, but much harder to tailor to cyber, policing, governance and crisis support at once.

Flexibility also creates pressure points. Short deadlines can shut out SMEs before the contest starts. Broad evaluation questions can favour firms that already have public-sector bid machines. Heavy security clearance requirements can make the supplier list look diverse in name while leaving the same handful of large companies able to take the biggest work.

The light-touch regime adds another layer. Government light touch contract guidance says these contracts remain subject to procurement objectives, including value for money, public benefit and considering barriers faced by SMEs. It also gives authorities more freedom on time limits and some post-award rules.

The wording about call-off further competitions is crucial. A supplier that joins the framework will not automatically win the work. It earns access to later contests run beneath the framework, where the buyer can compete specific assignments among appointed suppliers.

The Development Framework Offers a Precedent

The closest public comparison is not a tanks-and-guards contract. It is the Global Development Delivery Framework (GDD, the department’s route for development programme support), whose Global Development Delivery Framework award notice recorded a maximum throughput of £3.0 billion excluding VAT across 14 lots.

That older route shows how a broad international framework can be split into tiers and lots, then used for multidisciplinary teams rather than a single product. The new security route appears to borrow the same buying logic while shifting the centre of gravity toward resilience, crime, counter terrorism and cyber.

The comparison is useful because the coming tender may reveal whether the buyer wants a few large umbrella suppliers, a deeper bench of specialists, or a mix of both. Lot design will decide that long before any overseas assignment is competed.

The Tender Date Becomes the Market Test

A pipeline notice sits before the tender notice in the legal sequence. Cabinet Office Procurement Act guidance on pipeline notices says authorities are encouraged to give the market early visibility, but they are not legally bound to proceed with every procurement listed.

That caveat is material here. The published date, value and term can change when the tender notice arrives. So can the route’s service lines, lot structure, selection tests, social value requirements and security conditions.

Still, suppliers have enough to act. The sensible work starts now: map services against the likely work streams, identify partners for countries or capabilities that are missing, check clearance and safeguarding capacity, and decide whether to bid as a lead supplier or specialist subcontractor.

If the tender lands with clear lots and realistic participation rules, the framework can pull smaller specialists into work usually dominated by large integrators. If it lands as one vast test of balance sheets and references, the broad supplier language will fade before the first call-off.