Roc Technologies Limited

Microsoft 365

Roc’s Microsoft 365 based service provides a combination of professional and managed services to migrate to and manage customer's Microsoft M365 Modern Work platform, rollout security, unified communications content and collaboration, device management, and provide health checks and best practice advice to maintain and support your cloud enabled productivity.

Features

• Implementation of Microsoft 365 for green field developments
• Migration of organisations to Microsoft 365 from on premise
• Tenancy to Tenancy migration and merger within Microsoft 365
• Provision and optimisation of Microsoft 365 licenses
• Configuration of EndPoint onboarding through AutoPilot
• Configuration and rollout of MDM and MAM policies
• Ongoing Management and Support for Microsoft 365 Tenancies
• User Helpdesk for Microsoft 365 and Office applications
• Microsoft Defender rollout and configuration
• Windows 11 deployment

Benefits

• Roc holds Microsoft Solutions Partner designation and multiple gold competencies
• Move from capex to opex based pricing
• Take advantage of ability to scale up and scale down
• Provide endpoint management platform for devices
• Collaborative products and storage
• Cloud Cost Optimisation
• Cloud compliance information and reporting
• Business value and outcomes based delivering Cloud success
• Adaptive transformation to your Cloud environment
• Enable secure enterprise productivity

£375.00 to £1,300.00 a unit a day

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at publicsector@roctechnologies.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

112287051556987

Contact

Tim Elton
01635 581188
publicsector@roctechnologies.com

Service scope

• Software add-on or extension: Yes
• What software services is the service an extension to: Roc's services and qualified Consultants and Architects include expertise across multiple software and hardware vendors which plug in to Microsoft 365 allowing Roc to help your organisation achieve more.
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Hybrid cloud
• Service constraints: Support provided for Microsoft environments only.
• System requirements:
  • Internet access
  • Licenses

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: All email and online support requests will receive an immediate automated response, The SLA associated with the specific contract will determine the actual response and resolution timescales, including and variation for weekend and bank holidays. This will typically range from 30 minutes to 2 hours.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Microsoft Cloud support includes Technical Account Manager, support engineers and a 24/7 Network Operation centre. ; ; Targeted response is based on the call priority and varies between 15 mins and up to 10 hours. ; ; Roc’s Managed Services are offered based upon two standard hours of cover-; • Normal Business Hours: Monday to Friday, 08:00-18:00, excluding public holidays; • 24x7: 24 hours per day, 7 days per week, 365 days per year.; ; We are able to accommodate support hours based on customer need.; ; Roc Compliments Microsoft support by carrying out the assessment design and migration along with ongoing support for the cloud infrastructure.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Managed Service:; For each new managed service provision, a one-time on-boarding charge will apply. This fee is charged to cover transition activity such as process definition, systems configuration, system auditing, remote access configuration etc. This charge will be in line with Roc’s published SFIA Rate card and will vary based upon the nature and complexity of the environment to be on-boarded.; ; During the on-boarding process, Roc will review the configuration of each in-scope item. Where in-scope items have not been configured in-line with best practice, remedial actions may be required before the item can be on-boarded or covered by Roc’s SLA’s. Such remedial activity can be performed by the client or Roc. Where performed by Roc it can be funded via Roc’s published SFIA Rate card or the Additional Service Points purchased as part of the service.; ; Project based delivery:; For each new project, Roc will conduct a Workshop to identify activities such as process definition, systems configuration, system auditing, remote access configuration and define end customer goals based on success criteria.; This charge will be in line with Roc’s published SFIA Rate card and will vary based upon the nature and complexity of the environment to be on-boarded.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Customer can extract data to alternate services using Microsoft and third party tools. There will be service charges associated with this. This is not necessary if the customer wishes to end the managed service agreement but continue with the Microsoft 365 subscriptions.; ; As Roc would work with an incumbent provider to transition a service over to our organisation we would, likewise, work with any incoming provider to ensure a smooth transition of service as part of our Managed Service contracts.
• End-of-contract process: On termination of a managed service, Roc will return all password and documented configuration information. Tenancy ownership will always belong to the client and can be transferred to a different partner.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Chrome
  • Safari
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
  • MacOS
  • Windows
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Mobile versions of applications are designed to allow near desktop experience within the limitations of a mobile device.
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: The service portal provides access to current service status, reporting, and administrative features for users with appropriate permissions.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: None
• API: No
• Customisation available: Yes
• Description of customisation: Roc's M365 service can be customised individually to suit the needs of each customer.; ; Customisation would be discussed and agreed at project scoping.; ; Both customer and Roc are able to customise the solution based on end goals and success criteria.

Scaling

• Independence of resources: Microsoft 365 is a world wide public cloud offering supported by world leading architecture.

Analytics

• Service usage metrics: Yes
• Metrics types: Microsoft 365 provides a wide range of utilisation, performance, uptake, security and best practice reports and metrics. These are available through the service portal and can be included as part of the managed service at an additional cost.
• Reporting types:
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: Microsoft

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest: Physical access control, complying with CSA CCM v3.0
• Data sanitisation process: No
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Data export is dependent upon the service in use. A range of Microsoft and third party tools are available to extract data from Microsoft 365. Additional charges may apply for this.
• Data export formats: Other
• Other data export formats: Dependent on data type
• Data import formats: Other
• Other data import formats: Data can be uploaded in a wide variety of formats

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Please refer to current Microsoft 365 published SLA guidance.
• Approach to resilience: Available from Microsoft,
• Outage reporting: The managed service will report outages as part of our incident management process. Roc Technologies use licensed software to manage risks and work to ITIL Framework. Incident Management is a core process for the Service Desk to ensure that any disruption to service is accurately recorded and managed through to service restoration. Incidents are prioritised and allocated by impact and urgency, Supervisors oversee the day-to-day management of all calls alongside a culture of best practice and ownership of tasks throughout the team. Roc Service Delivery Management team provides reporting on incident management, examples of the types of reporting Roc provides for incident management, and not limited to priority, category, channel, status, and SLA. Roc report on incident management weekly/monthly/quarterly/bi-monthly/6monthly/annually specific to the customer's requirement

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: Office 365 operates an RBAC model for access to administrative functions.; There is also the option for Microsoft's new GDAP (Granular Delegated Admin Privileges) which allows suppliers to have access on a granular basis without the need to create accounts.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: Between 1 month and 6 months
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: Between 1 month and 6 months
• How long system logs are stored for: Less than 1 month

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Citation ISO Certification Limited
• ISO/IEC 27001 accreditation date: 26/04/2018
• What the ISO/IEC 27001 doesn’t cover: Individual cloud service providers and datacenters. We require them to hold their own accreditations.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • ISO/IEC 27001
  • Other
• Other security governance standards: ISO9001, ISO14001, SafeContractor
• Information security policies and processes: • Information Security Policy. • Clear Desk Policy. • Access Control Policy. • Information Classification Policy. • Data Protection Policy. • Network Access Control Policy. • Information Exchange Policy. • Password Policy. • Cryptographic Policy. • Acceptable Use Policy. • CCTV Policy. • Physical Security Policy.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: The Service Desk are responsible for overseeing the information gathering stage and identifying the type of change that will be undertaken, they will include a full test plan, outline of tasks and rollback plan. ; Details of any likely or potential impact will be documented in the change and then the Roc CAB will review and approve/decline changes. Changes are sent to the customer for approval. Changes are broken down into different categories with associated processes for creation, approval and implementation. The process includes appropriate timescales based on the priority and category of change.
• Vulnerability management type: Undisclosed
• Vulnerability management approach: Managed by third party
• Protective monitoring type: Undisclosed
• Protective monitoring approach: Managed by third party.
• Incident management type: Supplier-defined controls
• Incident management approach: Roc Technologies use licensed software to manage risks and work to ITIL Framework. Incident Management is a core process for the Service Desk to ensure that any disruption to service is accurately recorded and managed through to service restoration. Incidents are prioritised and allocated by impact and urgency, Supervisors oversee the management of calls alongside a culture of best practice and ownership of tasks throughout the team. Roc Service Delivery team provides reporting on incident management, examples of the types of reporting, include priority, category, channel, status, and SLA. Roc report on incident management specific to the customer's requirement.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Roc is accredited to ISO14001, has a Carbon Reduction Plan and is committed to achieving Net Zero in Scope 1&2 by 2035 and Scope 3 by 2050. We have a comprehensive understanding of how to influence stakeholders to support environmental protection and improvement. Our approach involves engaging all relevant parties, raising awareness of environmental opportunities and encouraging participation in sustainable practices. ; To reconnect people with the environment and increase awareness of ways to protect and enhance it, we undertake these activities:; • Engagement: engaging with stakeholders to raise awareness of the benefits of environmental opportunities identified. Through workshops, seminars, and outreach programs, we highlight the importance of environmental conservation and encourage active participation in related initiatives.; • Co-design/creation: working collaboratively with stakeholders to devise and deliver solutions that support environmental objectives. Involving stakeholders in the design and implementation process ensures that initiatives are tailored to meet their needs and priorities while maximising environmental benefits.; • Training and education: providing training and education to influence behaviour and promote sustainable practices among staff, suppliers, Partners and other stakeholders. This may include workshops on waste reduction, energy efficiency, and sustainable resource management. Empowering individuals to make informed decisions that minimise their environmental footprint.; • Partnering/collaborating: partnering with community organisations and other stakeholders to engage the community in environmental initiatives related to contracts. Experienced in collaborating with local groups, we leverage expertise/eesources to support environmental objectives and foster community involvement in sustainability efforts.; • Volunteering opportunities: offering volunteering opportunities for contract workforce, enabling them to undertake activities that encourage direct positive impact on the environment. This may include tree planting, litter clean-up campaigns, or habitat restoration projects, providing hands-on opportunities for individuals to contribute to environmental improvement efforts.; Through this, we actively engage stakeholders in supporting environmental protection/improvement and fostering a collective sustainability commitment.

  Covid-19 recovery

  Roc is a people-based business and we have worked closely with our teams to co-create Covid recovery plans. Roc had significant revenue streams from the hospitality and aviation sector resulting in exposure and revenue reduction during the Pandemic. Following the Covid 19 Pandemic Roc created a Post Pandemic Recovery Programme. This programme is led by our employee forum with representatives from across the business. Initiative include:; ; Organisation-wide impact assessment re-baselining our business plan/strategy and to inform recovery plans; Strategy to minimise the impact whilst maximising the opportunities created by the Pandemic; A review of our financial structure and funding solutions; Moving legacy systems to SAS based Cloud solutions; Creating a business plan to mitigate the impact of a future Pandemic's; Investing in staff training and awareness to identify opportunities where Roc could support organisations with their post-Covid recovery plans ; Providing on-line desk booking solutions to encourage our staff to return safely to the office; Creating an apprenticeship programme across the business bringing on new talent; Building partnerships with local suppliers to support the local economy; Working with our investment partner BGF to identify opportunities for growth and investment, especially in STEM ; Partnering with Higher Education to improve student safety and student experience, encouraging students to return to Campus; Implementing space utilisation solutions to provide employees with real time visibility of office utilisation and space availability; Creating sustainability solutions that help clients with providing more environmentally friendly workplaces and working practices to support the post pandemic recovery; Investment in capabilities including our Network and Cyber Practices, aligning to high-growth areas underpinning our economic recovery.; Our planning means Roc is confident that it has a solid business foundation to mitigate the impact of any future Pandemics whilst taking advantage of Post Covid-19, focussing on relevant solutions/services for employees, partners and clients.

  Tackling economic inequality

  One of Roc’s key mantras is ‘to make a difference in the community of which we serve’. We are committed to tackling inequality at the root by creating new business and employment opportunities and by offering enhanced education and training.; Where possible Roc always partner with local suppliers as required in the delivery of our projects which creates employment and apprenticeship opportunities. Alongside this Roc promote prompt payment principles and we mirror this expectation across our supplier chain.; Roc is dedicated to enhancing the lives of disadvantaged children and young people across Roc and our customers local communities, this has been demonstrated through existing youth club sponsorships, and regular charitable donations.; Community investment: Greenham Common Trust ; Roc have recently moved into a new headquarters, leased by the Greenham Common Trust. The Trust’s sole aim is to promote charitable purposes for the benefit of the inhabitants of Newbury, where Roc is located, and its environs. ; Whilst mostly promoting social inclusion and community projects, the Trust also donate and contribute toward the local environment, such as restoration to the local Common, environmental improvements to local areas and construction of local wildlife ponds. ; By leasing our headquarters from such an organisation, this ensures Roc are ensuring that costs for this lease are being used to directly benefit the local environment. ; Roc have defined cultural values, one of which is to, “Make a Difference,” which underpins our support and involvement in community initiatives and charitable work. We do this in the form of sponsorship, donations to national and local charities, which may also be suggested by our staff, and the funding of community projects. Every suggestion is given consideration throughout Good Cause grant scheme, whereby our employees apply for funds to support local charities and initiatives which are important to them.

  Equal opportunity

  Roc is committed to promoting equal opportunity within our organisation and our supply chain through focus on Equality, Diversity and Inclusion.; Aiming to eliminate unlawful discrimination, harassment, and victimisation through:; • Educating all staff about the Act's provisions, emphasising the prohibition of discriminatory behaviour. ; • Regularly assessing policies, procedures, and decision-making processes, identifying/rectifying any discriminatory elements. ; • Establishing clear channels for reporting ensuring prompt investigation and appropriate action to ensure compliance.; We advance Equal Opportunity by: ; • Gathering data on protected characteristics to understand disparities. ; • Conducting equality impact assessments for new policies, services, and projects. Consider how they affect different groups, adjust accordingly. ; • Ensuring that reasonable adjustments are made to accommodate individuals with disabilities or other protected characteristics. ; Fostering good relations by promoting inclusion, engaging with the community, and celebrating diversity. ; We regularly share information demonstrating compliance with the Equality Duty and set measurable equality objectives. Roc is an equal opportunities employer, providing a service free from unfair and unlawful discrimination. ; Our commitment - We value people as individuals with diverse opinions, cultures, lifestyles, and circumstances. All employees are covered by our Equality, Inclusion & Diversity Policy individual differences are recognised/valued, and every employee is entitled to a dignified and respectful working environment. We offer training, development, and progression opportunities to all employees and review all our employment practices to ensure fairness. Over 50% of our leadership is female.; Our commitment as a Service Provider - We aim to fulfil roles from within the local regions and form partnerships with local organisations in service delivery. We aim to provide services to all clients regardless of their characteristics. We believe that equality in the workplace is good management practice and makes sound business sense. We seek to encourage applicants from diverse and underrepresented supported by flexible working policies.

  Wellbeing

  Roc is committed to provide a safe working environment that prioritises the physical and mental wellbeing of our staff. Roc has trained counsellors who are available to discuss any wellbeing concerns with colleagues. Our ESG forum is responsible for identifying and tackling any wellbeing related working issues.; Our family leave offering is to be improved for FY25, offering enhanced maternity, paternity, adoption and shared parental pay provisions. We will review the impact of this in our employee survey and continue to review our offering to ensure that we continually addressing the needs of working parents. ; We offer genuine flexibility over place of work for every role that isn’t subject to the conditions of a client contract (i.e. some roles are required by the client to be present at a particular location or for particular hours). All our roles are offered as either hybrid (with free choice of office days) or remote with flexible working hours considered where possible. Implementation of tax efficient nursery schemes to support working parents (salary sacrifice) – currently under consideration. Implementation of Roc Academy, utilising our apprenticeship levy. Targeting at least 40% spend at levels 2-4. Ensuring that a portion of our training budget is targeted at digital skills and levels 2-4. ; Our employees are our business, therefore Roc devotes a lot of resource to their wellbeing. These include access to a wide range of support materials on a multitude of topics ranging from mental health, to working from home to good nutrition, reducing stress and general good health; a 24hr mental and physical health hotline; Mental health first aiders; and Support groups – e.g. related to the menopause.; Roc provide an employee benefits scheme to all employees which also provides access to wellbeing advise with qualified counselling sessions if required.

Pricing

• Price: £375.00 to £1,300.00 a unit a day
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at publicsector@roctechnologies.com. Tell them what format you need. It will help if you say what assistive technology you use.