Skip to main content

Beta Help us improve the Digital Marketplace - send your feedback

Layer 7 IT Security

QA, Test Automation and Software Testing Services

We develop and implement QA strategies for QA testing, including embedding QA testing capabilities within delivery teams to enhance the software development lifecycle (SDLC). Our approach leverages cloud-based tools and a variety of QA testing methodologies such as unit, integration, smoke, accessibility, performance, and security testing.

Features

  • Provide advice on the latest functional QA testing techniques.
  • Develop QA test strategies.
  • Guide on risk management approaches.
  • Design non-functional test cases.
  • Recommend QA techniques and frameworks.
  • Supported tests: Unit, API, System, and more.
  • Expertise in Infrastructure/Multi-browser testing.
  • Tools: Selenium, Cucumber, Java, etc.
  • Specialise in citizen-facing applications.
  • Use Agile Automation methodologies.

Benefits

  • We influence the QA testing industry.
  • We provide expert technical advice.
  • We adhere to top standards like ISTQB.
  • Automated testing for all user stories.
  • Conduct API test automation.
  • Support continuous testing in CI/CD.
  • Offer regression test automation.
  • Expert in positive and negative testing paths.

Pricing

£275 to £1,250 a unit a day

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at chris.tait@layer7.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

2 2 3 3 8 1 6 3 1 3 0 3 8 1 0

Contact

Layer 7 IT Security Christopher Tait
Telephone: 0191 640 2807
Email: chris.tait@layer7.uk

Planning

Planning service
Yes
How the planning service works
Our planning methodology encompasses the following steps: Establishing a clear vision and objectives for each project. Defining the scope of activities necessary to achieve those objectives. Setting success criteria, ensuring alignment with agreed-upon definitions of completion. We leverage GDS Agile methodologies, including: Daily Stand-ups Sprint Planning Meetings Team Reviews (show and tells) Retrospective Meetings End-of-phase Retrospectives User Stories Backlog Refinement Team Walls Additionally, we adhere to the GDS Service Manual guidelines: Discovery: comprehensively understanding the problem before committing to a solution. Alpha: exploring various solutions to identified problems. Beta: implementing the best solution and preparing for integration with existing services. Live: providing sustainable support while continuously refining and enhancing the service.
Planning service works with specific services
No

Training

Training service provided
Yes
How the training service works
We actively help to coach and train your teams throughout all Layer 7 engagements, through a collaborative, transparent nd safe-space approach. Any member of your organisation may join our collaborative online workspace to work and share their ideas with us. We passionately 'work out loud', utilising the latest technology and embedding a co-creative approach within the team. We typically utilise a phased workload approach with our digital partners (clients), reducing our team size as we upskill and knowledge transfer to members of your team. Helping you improve your understanding of any given service, its problem, and its solution, and how to be a digital leader, to inspire a digital culture, and promote strategies within in your organisation.
Training is tied to specific services
No

Setup and migration

Setup or migration service available
Yes
How the setup or migration service works
Working seamlessly with our clients in multi-disciplinary teams comprising programme directors, business architects, cloud technical architects, agile digital delivery experts and procurement specialists to establish a consistent understanding of the business and technical objectives and their respective priorities that underpin the business case for implementing cloud hosting or software services. Confirming the scope of the implementation and any critical dates, such as decommissioning deadlines. Developing a commercial strategy for the programme for cloud technologies, services and suppliers. Establish the delivery methodology and supporting tools that are to be adopted to drive the transformation, e.g. Scaled Agile Framework (SAFe) or Disciplined Agile Delivery (DAD). Design and implement the governance, management, team organisation, controls and assurance models that are to be used to drive the implementation. Generating a roadmap for the implementation of the cloud hosting or software services to drive detailed planning activities across the sub-teams and suppliers at relevant intervals (such as programme increments). Maximise the implementation process, maintain plans, report progress and resolve issues as required.
Setup or migration service is for specific cloud services
No

Quality assurance and performance testing

Quality assurance and performance testing service
Yes
How the quality assurance and performance testing works
We adopt an agile approach to QA, employing Test Driven Development (TDD), Acceptance Test Driven Development (ATDD), and Behaviour Driven Development (BDD).

TDD uses automated unit tests to shape software design and eliminate dependencies.

ATDD focuses on the external outcomes of the system from a user’s perspective, ensuring the system delivers the correct output for specific inputs.

BDD uses a continuous suite of unit tests to provide ongoing feedback and ensures all components function correctly. These tests also serve as current, reliable documentation, unlike traditional documentation that may become outdated.

Our team includes ISTQB-certified Agile QA practitioners with expertise in a broad range of testing tools such as Jira, JMeter, Selenium, Zephyr, Pivotal Tracker, Appium, Cucumber, Katalon, TestOps, QMetry, qTest Scenario, SoapUI, SpecFlow, Behat, and Practitest.

Security testing

Security services
Yes
Security services type
  • Security strategy
  • Security risk management
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
Certified security testers
Yes
Security testing certifications
  • CHECK
  • CREST

Ongoing support

Ongoing support service
Yes
Types of service supported
  • Buyer hosting or software
  • Hosting or software provided by your organisation
  • Hosting or software provided by a third-party organisation
How the support service works
We implement and maintain self-healing clusters equipped with sophisticated real-time monitoring systems, ensuring over 99.99% availability for a variety of web, e-commerce, and application environments. Our approach includes the setup of AutoScale clusters that manage node synchronization, session handling, and database scaling across Hybrid and Multi-Cloud setups. Our services extend to responsive and proactive patch management, real-time log analysis, and Cloud environment monitoring. We also assist in achieving compliance standards like PCI DSS using tools such as AWS SecurityHub, Azure Security Center, and Security Command Center (GCP). Additionally, we offer Managed DevOps services that include the deployment of new testing environments, stress testing, code analysis, and continuous integration, all facilitated by automation tools configured specifically for your organization. We also provide proactive cost management and optimization services, including reserved instance planning and resource optimization strategies.

Service scope

Service constraints
N/A

User support

Email or online ticketing support
No
Phone support
Yes
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
No
Support levels
Standard 9 to 5 service support UK business hours which is included as standard with the service.

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Conforms to BS7858:2019
Government security clearance
Up to Developed Vetting (DV)

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
Atlas Certification
ISO/IEC 27001 accreditation date
18/03/2024
What the ISO/IEC 27001 doesn’t cover
N/A
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Cyber essentials
Yes
Cyber essentials plus
Yes
Other security certifications
No

Social Value

Social Value

Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

Fighting climate change

Layer 7 are fully committed to fighting climate change. As a business we have a published Carbon Reduction Plan and are looking beyond our emissions with our Net Zero Programme where we are looking to achieve Net Zero by 2026 and become certified carbon neutral. Within Layer 7 we have an environmental and climate change continuous education programme for all staff and seek to evangelise positive climate change through our supply chain. Through our third party supply chain climate change incentive programme we reward our partners who are certified net zero.

Covid-19 recovery

As part of Layer 7 Covid-19 recovery plans at the beginning of all contracts we create a create socioeconomic impact assessment to define the sociodemographic profile of the local area, identify impacted communities and develop positive solutions to enhance local skills and create opportunities for local supply chain partners. A delivery framework is subsequently generated to maximise social value outcomes, determine employment opportunities and skills planning. To aid local community recovery we seek to identify and source wherever possible products and services from within the local community. Layer 7 has a fully flexible working policy such that our staff may work fully remote, fully office based or a hybrid approach which is fully their choosing dependent upon current circumstances and mental wellbeing. Through a variety of tools and technology we ensure our Layer 7 Team stays connected and constantly communicating with each other, so no individual feels isolated. Our Layer 7 wellbeing programme aims to support our staff incorporating both mental and physical wellbeing as we emerge from COVID and beyond. Through our Mental Health Leaders and healthy lifestyle support plans, Layer 7 is seeking to support its staff and reduce the demand on health and care services. We also share and promote details of local and national mental health campaigns for staff to be made aware of what support is available We have extended our flexible working model to our supply chain, such that we work collaboratively together to assist our suppliers to deliver their services and products to us leveraging new innovative ways to facilitate their recovery. As part of our ISO 9001 accreditation, we monitor the training requirements of our staff to ensure that individuals have the necessary competence to meet the needs of our clients, the business and our quality management system.

Tackling economic inequality

Social purpose is embedded into Layer 7. From creating new businesses and new employment opportunities, to improving education and training, Layer 7 is committed to tackling economic inequality root and branch. Our vision is to help reduce the unequal distribution of income and opportunity between different groups in society. Layer 7 is committed to working with small, diverse, high-quality suppliers. We have a Layer 7 Supplier Diversity function which endeavours, on a good-faith effort basis, to work with and develop small, minority, and women-owned businesses. Our team is always looking for small and diverse suppliers that can deliver creative, high-quality products and services. Ultimately, our goal is to diversify our supplier base by encouraging small and diverse suppliers to compete for business. Layer 7 is committed to supporting ex-forces personnel and their families. We are a signatory of the Armed Forces Covenant, a commitment to the people who have served the nation through military service. The covenant helps members of the armed forces community have the same access to services and employment opportunities as anyone else. As a SME we are committed to leveraging and forming new relationships with emerging fellow micros and SMEs. Where we don’t have the vertical expertise in house, we will seek to identify and source wherever possible from a start-up, micro or SME. As part of our commitment to developing and providing opportunities for the next generation of cyber defenders, Layer 7 has started the process of becoming a NCSC CyberFirst employer to engage young people and provide them with valuable paid experience.

Equal opportunity

We are dedicated to encouraging a supportive and inclusive culture amongst the whole workforce and strive to promote diversity and eliminate discrimination. Our aim is to ensure that all employees and job applicants are given equal opportunity and that our organisation is representative of all sections of society. Each employee will be respected and valued and able to give their best as a result. Layer 7 is a Disability Confident employer and are on a roadmap to achieving Level 3 - Disability Confident Leader. through our recruitment processes we strive to remove any potential subconscious bias by utilising anonymisation processes prior to any applicant cv sifting and engage external independent specialist observers as part of our entire interview processes. Through our Employee Continuous Development Plans, all staff follow a training and skill enhancement plan which is available to all and develops new skills, leading to industry recognised qualifications. Each plan is tailored to the individual. We ensure our workforce is representative of the communities served as part of each awarded contract and identify work opportunities for disadvantaged people. In tackling modern slavery we publish a slavery and human trafficking statement which demonstrates the steps we are taking to prevent modern slavery. Our supply chain assurance process and supplier code of conduct formally detail how we expect our suppliers to operate to avoid labour exploitation and include clauses on modern slavery in our / their contracts. We monitor our supply chains regularly evaluating our direct and indirect suppliers. We perform a human rights impact assessment on any potential new engagement, identifying high-risk areas where modern slavery could exist We train our staff on how they can report their concerns and whistle blow on modern slavery

Wellbeing

Layer 7is committed to continuing to create a workplace culture that promotes and supports the health and wellbeing of all staff. Colleagues have access to our Employee Assistance Programme, where free, confidential help can be sought if needed. We aim to support and the health and wellbeing of our people, both physically and mentally, to enable them to be the best possible version of themselves. Wellbeing at Layer 7 is split into three areas, Physical, Mental, and Social. Within the ‘physical’ space, we aim to raise awareness of the importance of physical activity for managing stress and maintaining mental wellbeing. Within the ‘mental’ space, we provide a safe, non-judgemental environment for our colleagues to ensure that everyone feels happy and engaged both inside and outside of work. We also have trained Layer 7 Mental Health First Aiders who are on hand to support our colleagues. Within the ‘social’ space, we have a dedicated team who ensure that we stay connected as a firm. We run many initiatives and events to raise awareness and promote wellness. Recent events have included Stress Awareness Month, Mental Health Awareness Week, and World Mental Health Day, amongst others

Pricing

Price
£275 to £1,250 a unit a day
Discount for educational organisations
No

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at chris.tait@layer7.uk. Tell them what format you need. It will help if you say what assistive technology you use.