Nexus SharePoint Online
SharePoint Online delivers the powerful features of the SharePoint platform without the associated overhead of managing the infrastructure. Flexible management options ensure that you still retain the control needed to meet the compliance requirements of your organisation. SharePoint Online is available standalone or as part of a Microsoft 365 plan.
Features
- Shared document and meeting workspaces
- Create document libraries with version control
- Social, create communities, follow documents, share and save content
- Collaborative environment, co-authoring, versions and check in/out
- Cross device availability, access and interact with SharePoint newsfeed
- Easily manage capabilities, policies and security for all content
- Automated server maintenance ensures latest version and features
- Powerful, fast and effective search engine
- Ease of access to business critical information
- Manage and leverage valuable data effectively
Benefits
- Agility to scale and adapt to changing business conditions
- Built for high availability and data redundancy
- Automatic software patching reduces maintenance time and effort
- Business-class IT support, guaranteed 99.9% uptime, geo-redundancy, disaster recovery
- Pay-as-you-go pricing options, providing predictability and flexibility for organisations
- Security and manageability, product for global scalability and reliability
- Streamline processes to reduce hardware and support costs
- Increase productivity through time saving
- Control corporate risk by effective management of documentation
- Seamless integration with other components of Microsoft 365
Pricing
£4.56 a user a month
- Education pricing available
- Free trial available
Service documents
Request an accessible format
Framework
G-Cloud 13
Service ID
1 3 6 2 8 1 4 7 3 4 7 4 2 7 4
Contact
Nexus Open Systems Ltd
Stuart Wilson
Telephone: 01392 205095
Email: stuart.wilson@nexusos.co.uk
Service scope
- Software add-on or extension
- No
- Cloud deployment model
-
- Public cloud
- Private cloud
- Hybrid cloud
- Service constraints
- Microsoft provide planned maintenance notifications which will inform customers about service infrastructure work that might affect some Cloud Services. The scheduling of this maintenance can be viewed online.
- System requirements
- None
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
- Standard SLA is for 2 hours response for Critical issues; 4 hours response for Major issues and 8 hours response for Minor issues.
- User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- None or don’t know
- Phone support
- Yes
- Phone support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support
- Web chat
- Web chat support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support accessibility standard
- None or don’t know
- How the web chat support is accessible
- Users can interact with our Technical, Sales and Training teams. Raising questions which are dealt with there and then. Alternatively we will take enquiries away and respond direct to users through email.
- Web chat accessibility testing
- None as yet
- Onsite support
- Yes, at extra cost
- Support levels
- Support Levels: Basic - Service Desk Facility; Incident & Problem Management; Dedicated Account Management; Third Party Liaison; Escalation Procedure; Remote Support; Access to Customer Portal. Standard - Service Desk Facility; Incident & Problem Management; Dedicated Account Management; Third Party Liaison; Escalation Procedure; Remote Support; Access to Customer Portal; Service Level Agreement; Remote Monitoring & Alerting. Advanced - Service Desk Facility; Incident & Problem Management; Dedicated Account Management; Third Party Liaison; Escalation Procedure; Remote Support; Access to Customer Portal; Service Level Agreement; Remote Monitoring & Alerting; Annual IT Strategy; Monthly Remote Health Checks; Proactive Monitoring & Alerting; On-site Support. Support cost: Pricing is dependant on customers infrastructure and environment A dedicated Technical Account Manager is assigned to each customer and our Service Desk team includes Cloud Support Engineers.
- Support available to third parties
- Yes
Onboarding and offboarding
- Getting started
- We follow a defined process for on-boarding new clients to ensure that they have the assurance of our help, whilst at the same time remain in control of the cloud services which are often at the core of their business. Through the on-boarding process Nexus will complete a detailed assessment of: • Client’s strategic vision • Organisational culture • Current and future objectives • Desire business outcomes • Potential improvements to existing business processes • Project and programme delivery resources • Current governance and programmes. We can provide onsite training to our clients as well as instruction at our own training centre. User documentation is provided by way of client portal guide
- Service documentation
- No
- End-of-contract data extraction
-
You own your data and retain all rights, title, and interest in the data you store with Microsoft 365. You can download a copy of all of your data at any time and for any reason, without any assistance from Microsoft.
Exchange Online data, including emails, calendar appointments, contacts, and tasks, can be downloaded to a local computer by any end user at any time via the Import and Export wizards.
SharePoint Online documents can be downloaded at any time from the workspace into your local computer.
Vanity domain names such as contoso.com can be removed by following the Domain Removal instructions in Microsoft 365 Help.
To download a copy of end-user metadata (such as email address, first and last name, and other data), you can use PowerShell cmdletscommand let, including the Get-MsolUser Windows PowerShell cmdletcommand let for Microsoft 365. If you use Exchange Online, you can also use the Get-MailUser and Get-User Exchange PowerShell commands.
Upon expiration or termination of your Microsoft 365 subscription or contract, Microsoft will provide you, by default, additional limited access for 90 days to export your data. - End-of-contract process
- There are no additional costs at the end of the contract.
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Internet Explorer 11
- Microsoft Edge
- Firefox
- Chrome
- Safari
- Application to install
- No
- Designed for use on mobile devices
- Yes
- Differences between the mobile and desktop service
- Different mobile devices work with Microsoft 365 in different ways, Microsoft provide detailed information online regarding compatibility and functionality.
- Service interface
- Yes
- User support accessibility
- WCAG 2.1 A
- Description of service interface
- Application client and web browser
- Accessibility standards
- WCAG 2.1 A
- Accessibility testing
- The interface is provided by Microsoft and has been extensively tested with assistive technology.
- API
- Yes
- What users can and can't do using the API
- Whether you want to incorporate the richness of Microsoft 365 data into your app, or create a custom experience within Microsoft 365 itself, or use custom reports to keep your Microsoft 365 environment running smoothly, you can use the developer features to achieve your goals. The Microsoft 365 APIs enable you to provide access to your customer's Microsoft 365 data, including the things they care about most--their mail, calendars, contacts, users and groups, files, and folders--all right from within your app itself. You can access the Microsoft 365 APIs from solutions across all mobile, web, and desktop platforms.
- API documentation
- Yes
- API documentation formats
- HTML
- API sandbox or test environment
- No
- Customisation available
- No
Scaling
- Independence of resources
- SharePoint Online as part of Microsoft 365 is built on Azure which is a multi-tenant service, meaning that multiple customers’ deployments and virtual machines are stored on the same physical hardware. Azure, provides geographically dispersed regions around the world. These platforms also provide capabilities that support availability and a variety of disaster recovery scenarios. Azure has resiliency and disaster recovery built in to many of its services.
Analytics
- Service usage metrics
- No
Resellers
- Supplier type
- Reseller providing extra features and support
- Organisation whose services are being resold
- Microsoft
Staff security
- Staff security clearance
- Conforms to BS7858:2019
- Government security clearance
- Up to Security Clearance (SC)
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
-
- United Kingdom
- European Economic Area (EEA)
- Other locations
- User control over data storage and processing locations
- Yes
- Datacentre security standards
- Complies with a recognised standard (for example CSA CCM version 3.0)
- Penetration testing frequency
- At least every 6 months
- Penetration testing approach
- ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
- Protecting data at rest
- Physical access control, complying with CSA CCM v3.0
- Data sanitisation process
- No
- Equipment disposal approach
- A third-party destruction service
Data importing and exporting
- Data export approach
-
You own your data and retain all rights, title, and interest in the data you store with Microsoft 365.
You can download a copy of all of your data at any time and for any reason, without any assistance from Microsoft.
Exchange Online data, including emails, calendar appointments, contacts, and tasks, can be downloaded to a local computer by any end user at any time via the Import and Export wizards.
SharePoint Online documents can be downloaded at any time from the workspace into your local computer. - Data export formats
-
- CSV
- Other
- Other data export formats
- .pst file
- Data import formats
- Other
- Other data import formats
- .pst file
Data-in-transit protection
- Data protection between buyer and supplier networks
-
- TLS (version 1.2 or above)
- IPsec or TLS VPN gateway
- Data protection within supplier network
-
- TLS (version 1.2 or above)
- IPsec or TLS VPN gateway
Availability and resilience
- Guaranteed availability
- This service is underpinned by a Microsoft Service Level Agreement (SLA) which describes Microsoft’s commitments for up time and connectivity. For this service, availability of at least 99.95% is guaranteed. The following monthly up time limits attract the indicated service credits. <99.95% (10%); <99% (25%); <95% (100%).
- Approach to resilience
- Available on request
- Outage reporting
- A public dashboard shows the status of the service. Email alerts are available from the Office 365 Service Health Dashboard RSS Feed.
Identity and authentication
- User authentication needed
- Yes
- User authentication
- 2-factor authentication
- Access restrictions in management interfaces and support channels
- Nexus manage access to management interfaces and support channels through the use of Named Contacts. Those users who require access to management interfaces and support channels such as the client portal must apply for access through their organisation to the Nexus Service Desk. These user applications are then reviewed and approved or rejected with the individual recorded as a Named Contact for the particular service and appropriate credentials provided.
- Access restriction testing frequency
- At least every 6 months
- Management access authentication
-
- 2-factor authentication
- Username or password
Audit information for users
- Access to user activity audit information
- Users contact the support team to get audit information
- How long user audit data is stored for
- User-defined
- Access to supplier activity audit information
- Users contact the support team to get audit information
- How long supplier audit data is stored for
- User-defined
- How long system logs are stored for
- User-defined
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- NQA
- ISO/IEC 27001 accreditation date
- 29/04/2021
- What the ISO/IEC 27001 doesn’t cover
- Our ISO 27001 certification relates to the information security management system and not to the products or services of our organisation. The certificate reference number, the mark of the Certification Body and/or the accreditation mark may not be shown on products or stated in documents regarding products or services.
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- Yes
- Cyber essentials plus
- No
- Other security certifications
- No
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
-
- CSA CCM version 3.0
- ISO/IEC 27001
- Information security policies and processes
- Nexus hold and maintain an Information Security Policy. We have an Information Security Office (ISO) who is responsible for the development, management and enforcement of the policy across our organisation.
Operational security
- Configuration and change management standard
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Configuration and change management approach
- Nexus have a configuration management process for tracking changes in the specification of our services and products, this is managed centrally. Nexus also implement a full change management process for assessing and if appropriate executing any changes to services and products.
- Vulnerability management type
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Vulnerability management approach
- One key operational best practice that Microsoft uses to harden its cloud services is known as the “assume breach” strategy. A dedicated “red team” of software security experts simulates real-world attacks at the network, platform, and application layers, testing Office 365's ability to detect, protect against, and recover from breaches. By constantly challenging the security capabilities of the service, Microsoft can stay ahead of emerging threats.
- Protective monitoring type
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Protective monitoring approach
- Microsoft security researchers are constantly on the lookout for threats. They have access to an expansive set of telemetry gained from Microsoft’s global presence in the cloud and on-premises. This wide-reaching and diverse collection of datasets enables Microsoft to discover new attack patterns and trends across its on-premises consumer and enterprise products, as well as its online services. As a result, Security Center can rapidly update its detection algorithms as attackers release new and increasingly sophisticated exploits. In the event that customer data is compromised, Microsoft will notify its customers.
- Incident management type
- Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
- Incident management approach
- All Incident tickets will be recorded in the Nexus Service Desk system under the Incident Management workflow. All new Incident tickets will undergo an initial impact assessment. Nexus will further look to determine the number of users/systems affected and establish the commercial impact to the customer’s environment. We have a knowledge base to be able to check for common events. Users can report incidents by phone, email or through their client portal. Incidents are included in any appropriate service monthly ticket summary reports.
Secure development
- Approach to secure software development best practice
- Supplier-defined process
Public sector networks
- Connection to public sector networks
- No
Social Value
- Fighting climate change
-
Fighting climate change
The environmental benefits of our G-Cloud Service provision are substantiated by Microsoft’s own studies and commitments towards climate change.
A 2018 study found that using the Microsoft Azure and 365 cloud platforms can be up to 93% more energy efficient and up to 98% more carbon efficient than on-premises solutions.
Microsoft has committed to focus on four key areas of environmental impact to local communities; carbon, water, waste, and ecosystems by way of; using 100% renewable energy by 2025 by partnering with renewable energy projects, replenishing more water than they consume by 2030, achieving zero-waste certification by 2030 and achieving net-zero deforestation from new construction and re-forestation initiatives by greening communities with native woodlands.
Real sustainability requires solutions that address wastefulness at every level of a business. Hosting on the cloud is more environmentally friendly and results in less of a carbon footprint.
Cloud infrastructures support environmental proactivity, powering virtual services rather than physical products and hardware, and cutting down on paper waste, improving energy efficiency, and (given that it allows employees access from anywhere with an internet connection) reducing commuter-related emissions. Reports predict that data centre energy consumption would drop by 31% from based on the adoption of cloud computing and other virtual data options. - Covid-19 recovery
-
Covid-19 recovery
As a member of the COVID-19 High Performance Computing Consortium, Microsoft is helping researchers accelerate their understanding of the virus and the development of treatments and vaccines through two major initiatives; HPC Consortium and AI for Health.
The COVID-19 HPC Consortium encompasses computing capabilities from some of the most powerful and advanced computers in the world. Microsoft hope to empower researchers around the world to accelerate understanding of the COVID-19 virus and the development of treatments and vaccines to help address infections. Consortium members manage a range of computing capabilities that span from small clusters to some of the very largest supercomputers in the world.
AI for Health is a new $60 million, five-year philanthropic program from Microsoft, created to empower non-profits, researchers, and organizations tackling some of the toughest challenges in global health. Microsoft are providing access to AI and expertise in these areas; Accelerating medical research to advance the prevention, diagnoses, and treatment of diseases, increasing our shared understanding of health and longevity to protect against global health crises, reducing health inequity and improving access to care for underserved populations and supporting fundamental research capabilities, including data collaboratives and differential privacy. - Wellbeing
-
Wellbeing
The primary benefits of Microsoft's cloud services are the transfer of ownership of compliance and maintenance of cloud infrastructure and its security and that IT Managers and business owners no longer need to be concerned about those elements of their IT systems once in a Microsoft cloud platform. This has a massive positive impact on wellbeing of employees within organisations across the world.
Pricing
- Price
- £4.56 a user a month
- Discount for educational organisations
- Yes
- Free trial available
- Yes
- Description of free trial
- Full featured trial, valid for 30 days