Trustmarque Solutions Limited

Trustmarque Snow ITAM Software Hosted As A Service

Trustmarque’s hosted Snow Software Service is designed to help customers manage their software estates more efficiently/save money, and mitigate risk. As the Public Sector transitions towards consumption cloud ICT, traditional software assets will need to be managed as digital assets, making Trustmarque’s Snow Software Service continuously relevant in maintaining assets.

Features

• Market leading IT Asset Management technology in Snow Licence Manager
• Software Asset Management
• Hardware Asset Management
• Software Licence Management
• Software Metering
• Cost avoidance
• Cost Savings
• Hosted with automatic updates
• Service Levels

Benefits

• Have access to experienced SAM consultants to augment/improve the team
• Achieve significant cost reduction
• Improve control of software assets
• Reduce risk through improved visibility of the software estate
• Ensure minimal impact on existing resource and infrastructure
• Identify Software Usage
• Resilient and secure
• Easy to maintain

£8.00 a device a year

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@trustmarque.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

341189111803203

Contact

Lorraine Spence
01904 924089
tenders@trustmarque.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
• Service constraints: Hosting on Microsoft Azure is an additional cost and needs to be scoped for the customers unique requirements.
• System requirements: Azure hosting through Trustmarque

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Subject to an agreed SLA
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Web chat
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: WCAG 2.1 AA or EN 301 549
• Web chat accessibility testing: None.
• Onsite support: Yes, at extra cost
• Support levels: User support is provided by Snow technical experts and the customer will have access to consultants for telephone and onsite support where required.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: User training is available, delivered by Snow Software. Trustmarque also offer Knowledge Transfer sessions onsite with the customer.
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: Data can be exported from the software by the customer or be provided by Trustmarque at an additional agreed cost.
• End-of-contract process: Snow Software Service Provider licensing only.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
• Application to install: Yes
• Compatible operating systems:
  • Linux or Unix
  • MacOS
  • Windows
  • Other
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Different asset type
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: Snow utilises REST API
• API documentation: Yes
• API documentation formats: Other
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Customisation is available to import custom data into the platform

Scaling

• Independence of resources: Single tenant cloud based systems provide customer isolation

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Snow Software

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Other
• Other data at rest protection approach: Encryption of raw data
• Data sanitisation process: No
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Users use in built reporting functions to export the required data.
• Data export formats:
  • CSV
  • ODF
  • Other
• Other data export formats:
  • XLS
  • PDF
  • XML
• Data import formats:
  • CSV
  • ODF
  • Other
• Other data import formats:
  • XLS
  • XML

Data-in-transit protection

• Data protection between buyer and supplier networks: Legacy SSL and TLS (under version 1.2)
• Data protection within supplier network: Legacy SSL and TLS (under version 1.2)

Availability and resilience

• Guaranteed availability: 99.90%
• Approach to resilience: Information available on request.
• Outage reporting: Notified by Service Desk / Auto Alert notifications.

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: No customer access to management interfaces
• Access restriction testing frequency: At least once a year
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: BSI
• ISO/IEC 27001 accreditation date: 24/02/2017
• What the ISO/IEC 27001 doesn’t cover: Anything NOT mentioned here: Information Security relating to hardware, software, networking, paper documentation, personnel and supporting media for client facing information, client owned and supplied information, remote access, internal and data processing facilities. The management of 3rd Party Service Providers. In accordance with the Statement of Applicability version 4.0.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: Yes
• Who accredited the PCI DSS certification: We maintain and host PCI DSS compliant solutions
• PCI DSS accreditation date: N/A
• What the PCI DSS doesn’t cover: N/A
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • PSN
  • ISO22301 (Continuity and Data Recovery)

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Please engage Trustmarque for full details of our approach to Security Governance and Policies.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: Please engage Trustmarque for full details of our approach to Security Governance and Policies.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: Please engage with Trustmarque for full details of our Vulnerability Management processes.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: Please engage with Trustmarque for full details of our Protective Monitoring process.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: Please engage with Trustmarque for full details of our Incident Management Process.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Trustmarque's Environmental Policy and Carbon Reduction Plan include delivering and supporting actions on reducing our carbon footprint and our impact on climate change. We have set a target to achieve net zero by 2035. Our policies include 'Virtual First 'meetings, energy reduction plans, flexible working, green software solutions and associated services from innovative suppliers to promote digital environmental innovation, promoting sustainable procurement. Please contact Trustmarque to discuss the provision of Social Value. Any Social Value deliverable must be agreed with Trustmarque and be proportionate to the contract value and scope.

  Covid-19 recovery

  Trustmarque can provide re-training for those left disadvantaged by Covid-19 through skills training, CV and interview workshops. We promote employment and skills by working with Buyers to identify individuals who can benefit from our incentives, which can include workshops to develop and help those who face barriers to employment and increase digital accessibility for communities and hard to reach groups. We can also provide access to apply for apprenticeship and work experience opportunities. Please contact Trustmarque to discuss the provision of Social Value. Any Social Value deliverable must be agreed with Trustmarque and be proportionate to the contract value and scope.

  Tackling economic inequality

  Trustmarque tackles economic inequality through operating a diverse supply chain including many SMEs and micro businesses. Our access to a broad range of suppliers ensures both resilience and capacity. Trustmarque is continuously refining our supply chain to meet the ever-changing needs of our customers and to ensure we can always offer the best solution through capability, capacity and resilience at the best price. Our vendor agnostic approach among suppliers allows us to support innovation and disruptive technologies to deliver lower cost and/or higher quality goods and services to customers. Please contact Trustmarque to discuss the provision of Social Value. Any Social Value deliverable must be agreed with Trustmarque and be proportionate to the contract value and scope.

  Equal opportunity

  Trustmarque operates an Equal Opportunities policy that outlines our commitments including creating a workforce that reflects the diversity of our communities. Other initiatives include supporting disabled people to develop skills and supporting in-work progression. Trustmarque is a Level 1 Disability Confident employer, demonstrating our commitment to employing a diverse workforce so all can flourish. We are committed to a policy of treating all its employees and applicants equally. We are committed to creating an environment where diversity is valued and respected and where our people can bring their different perspectives, and whole selves to work. Inclusivity and equal opportunities for all colleagues are paramount. Trustmarque is a Living wage employer, and we offer 14–18-month apprenticeships. In February 2024 we launched Encircle our DEI network – made by colleagues, for colleagues to support Diversity, Equity, and Inclusion in the workplace. Please contact Trustmarque to discuss the provision of Social Value. Any Social Value deliverable must be agreed with Trustmarque and be proportionate to the contract value and scope.

  Wellbeing

  We align our approach to mental wellbeing to the six standards in the Mental Health at Work commitment, including staff work and wellbeing sessions, flexible working, speak-up policy, etc. We have a dedicated team of qualified Mental Health First Aiders who offer support to all Trustmarque Group Colleagues to offer advice regarding how to support and signpost – this is linked to the ALGEE mental health action plan. The Work+Wellbeing team also facilitate workshops or share resources to support wellbeing within the workplace, this can be found on our Work+Wellbeing team via the Trustmarque Hub. We have an Employee Assistance Programme which is available 24/7 to all Trustmarque Group Colleagues. Please contact Trustmarque to discuss the provision of Social Value. Any Social Value deliverable must be agreed with Trustmarque and be proportionate to the contract value and scope.

Pricing

• Price: £8.00 a device a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@trustmarque.com. Tell them what format you need. It will help if you say what assistive technology you use.