ALPHA-HELIX CONSULTING SERVICES LIMITED

Software Development and Microsoft Dynamics 365 Implementation Partner

Alpha-Helix are specialist in Software Consulting and Digital Transformations. We combine our professional delivery with creative problem solving for our customers success. We design and deliver, lean and agile solutions globally for customers in various sectors using technologies such as Microsoft Dynamics 365, Power Platform, Azure, CMS Websites etc.

Features

• Transformation Partner
• Microsoft Dynamics 365
• Power Platform
• Social Housing Applications
• Software Development
• Architecture Design and Implementation
• Software Testing
• Project Governance
• Change Management Process
• Security and Operational Management

Benefits

• Templated best practices and principles
• Aligned Business Process
• Seamless user experience
• Keep it Simple
• Lean and agile solution delivery
• Effective governance and change management process
• Business transformation
• Best architecture practices
• Disciplined practice
• Expert consultants

£80 to £120 a licence

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at abish@alphahelixconsulting.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

291527138730358

Contact

Abish Asharaf
07541 778878
abish@alphahelixconsulting.co.uk

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Microsoft 365
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Hybrid cloud
• Service constraints: NA
• System requirements: Cloud Platform

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 24 Hrs
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Depends on the support hours bought by customers.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Training provided for user onboarding
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Using Data migration tools
• End-of-contract process: Option to extend the service or move to other providers

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Accessible through an app on mobile and access using browser on desktop
• Service interface: No
• User support accessibility: WCAG 2.1 AAA
• API: Yes
• What users can and can't do using the API: Using custom connectors or by developing components
• API documentation: Yes
• API documentation formats: Open API (also known as Swagger)
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Using product extension capability

Scaling

• Independence of resources: Performance managed using cloud scaling

Analytics

• Service usage metrics: Yes
• Metrics types: Performance and Analytics dashboard
• Reporting types: Real-time dashboards

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Microsoft and Wordpress

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Encryption of all physical media
• Data sanitisation process: No
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Using data migration ETL approach
• Data export formats:
  • CSV
  • ODF
• Data import formats:
  • CSV
  • ODF

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: A per supplier standard and service chosen by customer
• Approach to resilience: Microsoft standard
• Outage reporting: Email alerts, a public dashboard

Identity and authentication

• User authentication needed: Yes
• User authentication: 2-factor authentication
• Access restrictions in management interfaces and support channels: Microsoft SSO and Authentication
• Access restriction testing frequency: At least every 6 months
• Management access authentication: 2-factor authentication

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Supplier standard

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: AHCS Project and Change Management Approach
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: AHCS Project and Change Management Approach
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: AHCS Project and Change Management Approach
• Incident management type: Supplier-defined controls
• Incident management approach: AHCS Project and Change Management Approach

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  Fighting climate change

  Fighting climate change

  update later by abish in this section of the web site

Pricing

• Price: £80 to £120 a licence
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: 30 days

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at abish@alphahelixconsulting.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.