OCEAN SOFTWARE PTY LTD

FlightPRO

Air Planning software allowing collaboration and integration of data across an entire air force off a single interoperable database using real-time information. A COTS system providing efficiency, optimisation and consolidation of legacy tools and process in the field of air operations and training from individual units to command level.

Features

• Collaborative scheduling and competency tracking
• Graphical Time, task and resource planning including conflict alerts
• Integrates live currency data directly into operational planning process
• Syllabus management, courseware definition and training outcome capture
• airspace management and deconfliction
• Real-time reporting
• Manpower rostering capability to manage complex teams and shifts
• AI and what-if scenario planning
• SMS, QMS and ORM tracking and reporting
• E-mail integration

Benefits

• Available on multiple devices
• Single interoperable database across all units and locations
• Recruitment to retirement view of all personnel
• Single source of data truth from individual to command level
• Single digital interface to reduce training overhead and skill fade
• Open APIs for ‘enter once' culture and 3rd party integration
• Accredited on multiple networks from unrestricted to secret
• Software can be deployed in a disconnected environment

£5 to £20 a user a month

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at jonw@ocean.com.au. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

297935270708317

Contact

Jon Windover
07957417490
jonw@ocean.com.au

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
• Service constraints: We support Microsoft Windows desktops that are currently supported by standard Microsoft support agreements. ; We support Currently supported versions of Chrome based browsers and IE 11.
• System requirements:
  • Current Version Chrome Based Browser or IE 11 Current Version
  • Windows 10

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Within 24 hrs during the week. ; Greater coverage is open to negotiation.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Onsite support
• Support levels: Level 1 - first response helpdesk dealing with queries/questions ; Level 2 - direct customer follow up if L1 requires further investigation ; Level 3 - provide escalation and resolution of issues that cannot be resolved with L1 and L2 support. Typically technical and non-functional.; Ocean also has the provision for an on-site support representative.; Cost for all services are subject to multiple pricing frameworks.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Ocean delivers training to primarily three levels of users; introductory, basic and advanced. ; Introductory Training is intended for casual users of the Software. This level of training is typically delivered through FlightPRO® Introductory Courseware. ; Basic Training is intended for regular and non-expert users such as Instructor, Staff and Crew. This level of training is typically delivered through Classroom Briefs and On the Job Training (OJT). ; Advanced Training is intended for Subject Matter Experts. Due to the flexibility within the Software to be configured to meet the Customer’s requirements, this training is delivered through one-on-one sessions and OJT. It allows configuration of the Software to be applied whilst training users to make future configuration changes once Ocean has departed.; In addition to all means of training delivery, the Software is embedded with Online Help functionality to allow users to search for all functions and capability within the FlightPRO® product. The FlightPRO® Reference Guide is based on the content within the Online Help. ; Train-the-Trainer is also an approach that is available.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: The data is owned by the customer and will therefore be available upon the conclusion and termination of contract. The data can be extracted through the API, or as an SQL database. It can also be extracted from the SQL database to a number of other formats if required.
• End-of-contract process: At the end of the contract access to the service is terminated. The Customer has the ability to extract data from the system by reports or the API prior to the end of contract. ; Ocean will securely keep the data for 90 days post the end of the contract incase the data is required and can be requested at additional cost during the period. ; If a copy of the full SQL database is required an additional cost is required for Ocean to provide this.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Chrome
• Application to install: Yes
• Compatible operating systems: Windows
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: The API provides support for web screen data entry and strip modification. ; The IP address of the API connected machine must be provided and configured before accepting connection from an external systems.
• API documentation: Yes
• API documentation formats: PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: FlightPRO is designed to be fully configurable to the needs of each unit and department across an air force. All modules and data are configurable. Ocean, or the customer can do this.

Scaling

• Independence of resources: Ocean Manages the Cloud VM's capability to ensure that the demand from all users is catered for. Ocean also provides a spirited system for each batch of users to allow for control by Ocean on the demand. Ocean has many customers who have FlightPRO deployed in high volume environments.

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Other
• Other data at rest protection approach: Our API endpoints are secured and in addition all data is encrypted in the database.
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Data can be exported via export functions throughout the software into a number of formats including XML, CSV, Excel , Powerpoint, PDF, Word
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • PDF
  • Word
  • Excel
  • Powerpoint
• Data import formats:
  • CSV
  • Other
• Other data import formats: MS Excel

Data-in-transit protection

• Data protection between buyer and supplier networks: Private network or public sector network
• Data protection within supplier network: Legacy SSL and TLS (under version 1.2)

Availability and resilience

• Guaranteed availability: FlightPRO provides a guaranteed availability of 99.95%. The Monthly fee is reduced by 5% for every 0.1% below this availability . Therefore if only 99.65% availability is obtained in a given month a 15% fee reduction is provided in the next month.
• Approach to resilience: This is available on request
• Outage reporting: Email alerts

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Limited access network (for example PSN)
  • Username or password
  • Other
• Other user authentication: IP Based Approval
• Access restrictions in management interfaces and support channels: FlightPRO contains extensive security controls. Every individual element of FlightPRO capability can be assigned to a user or user group, including the ability to assign security controls. Initially, a single user is given this capability and is responsible for how the controls are managed in the customer's organisation.
• Access restriction testing frequency: Less than once a year
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • Cyber Essentials
  • Defence Industry Security Program (DISP) (Australia)

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: Our security governance is based on ISO 27001, OWASP, UK Cyber Essentials and NIST standards, We are not certified due to the high cost of certification and non requirement currently by our customers. We are certified to UK Cyber Essentials.
• Information security policies and processes: Ocean has an extensive Information security policy which is documents as part of our employee guidelines. This policy has been certified as compliant to UK Cyber Essentials. Ocean also has a Cyber Incident response plan which details the response to any Cyber incident. ; Ocean has appointed a CISO and CSO, These positions report directly to the CEO. ; A combination of Monitoring and policy enforcement are used to ensure the policies are followed. All employees also sign the policy and if they utilise BYOD devices also separately sign a BYOD policy.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: All changes to the system are documented using Use Cases in Azure Devops. ; All code changes are checked both Automatically using Code compliance tools and manual through Peer Code Reviews. ; the OWASP SAMM model is used as our model for security development process.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Penetration testing is performed at least once a year on our system, This is arranged either independently by our customers or by Ocean should a customer lead test not be performed in a 12 month period. ; The Results of the test are determined, any High security threats are rectified within the next release (3 months per release), Mediums are rectified with 12 months and Lows are assessed if they require rectification.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: IP based access monitoring is performed daily, with alerts raised automatically should non-recognised IPs attempt to gain access multiple times, or multiple IPs attempt to gain access at the same time.; Password access failures are monitored on a daily basis for patterns of behaviour. Alerts of multiple password failures are generated automatically. ; IPs are blocked (not only user accounts) where multiple attempts of unusual behaviour is observed.
• Incident management type: Supplier-defined controls
• Incident management approach: Ocean has a Cyber Response Plan, this is based on the Standard Australian Cyber Response Plan template and includes all areas of response.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Fighting climate change:

  Fighting climate change

  Ocean Software maintains an environmentally responsible ethos; it is committed to combating climate change and to positively influencing sustainable, environmentally friendly practices and principles.; ; Practices such as recycling of everyday ‘end of use’ items and materials, including glass, plastics, paper and consumables (such as printer toners and cartridges) are routinely enforced, as is the recycling of all retired hardware. Additionally, Ocean Software upholds a strict policy of minimising employee carbon footprint by employing virtual meeting practices whenever possible in preference to arranging in-person meetings that would otherwise require public or private transport or air travel.
• Covid-19 recovery:

  Covid-19 recovery

  Through revised internal processes and with a focus on business continuity principles, Ocean Software continued to provide full employment throughout the pandemic, maintaining successful outcomes in research, software product development, and growth opportunities for both internal and external stakeholders.; ; Ocean Software has continued to adapt its business practices to meet the evolving needs of post-COVID society. Examples include: providing flexibility around how and where staff work, including remote working, as well as maintaining a COVID-safe physical office space; introducing frequent virtual social gatherings to mitigate loneliness; and creating a Head of People and Culture senior leadership position to manage the business implications of COVID-19 legislation and its physical and psychological impact on employees.
• Equal opportunity:

  Equal opportunity

  Ocean Software’s Employment Guidelines provide for Equal Opportunity. Policy objectives aim to ensure:; - The elimination of discrimination, sexual harassment and victimisation to the greatest extent possible.; - The promotion and protection of the right to equality in line with the Charter of Human Rights.; - The encouragement of continual improvement via the ongoing review, identification and elimination of systemic causes and introduction of new and innovative best practices.; ; Ocean Software's commitment to Equal Opportunity extends to: the selection of contractors and all business parties and interactions; mentor and development programs; internal policies, including that of its Code of Conduct; the balance of women in leadership; and a diverse workforce.
• Wellbeing:

  Wellbeing

  Ocean Software’s commitment to Health & Well Being includes a long-standing contract with its Well-Being provider, which entails a variety of programs and initiatives ranging from physical fitness to financial fitness initiatives, through to physical health checks and vaccination programs.; ; Additionally, Ocean Software has extended its offering to provide an Employee Assistance Program, which has made available counselling services to all staff and includes online resources through a privately accessed portal.; ; To better understand the factors important to and impacting on its workforce, Ocean Software has established a self-nominated ‘Social and Employee Engagement Group’. In liaison with management, this team of 5 staff represents the voice of the workforce.; ; Collectively, all Well Being initiatives aim to provide an engaging, healthy, and motivating work environment.

Pricing

• Price: £5 to £20 a user a month
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at jonw@ocean.com.au. Tell them what format you need. It will help if you say what assistive technology you use.