BAE Systems Applied Intelligence Limited

BAE Systems Intelligent Lead Assessment Service (ILAS)

ILAS is an advanced analysis platform that detects, prioritises and monitors risk, using proprietary inference technology. It does this by replicating existing analyst tradecraft, and applying this to complex interconnected data in order to infer leads (fully contextualised and explainable narratives of real-world situations) and continuously assess risk.

Features

• Automated risk detection using expert human tradecraft
• Continuous complex risk monitoring of multi-source high volume data
• Rapid response to new information through real-time intelligence analysis
• Automated risk assessment and generation of risk profiles
• Emerging risk detection and sub-threshold monitoring
• Proactive risk prioritisation configurable to frameworks including MoRiLE
• Confidence analysis managing uncertainty and incompleteness in information and intelligence
• Risk dynamics analysis and highlighting of significant changes impacting intervention
• Explainable, proportionate and targeted outputs, traceable to system of record
• Workflow integration, risk tracking, and audit

Benefits

• Reduced effort for risk and threat assessment, monitoring and alerting
• Increased productivity in risk/threat analysis and research
• Reduced duplication of effort through common view of risk/threat
• Reduced data overwhelm for analysts and decision makers
• Prevention of harm escalation through early intervention
• Reduced costs of intervention through early risk/threat detection
• Improved police efficiency through enabling appropriate engagement of partners
• Increased speed and efficiency of cross organisation information sharing
• Reduced chance of missing a risk/threat or overlooking important information
• Improved outcomes of less experienced resources through automated best practice

£80,000 a licence a year

• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at government.tenders@baesystems.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

370129838130442

Contact

Jules Fraser
03301 580 051
government.tenders@baesystems.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
• Service constraints: ILAS is updated on a frequent basis, integration into customer maintenance schedules will be discussed with each customer.
• System requirements:
  • Please see contractual T&Cs
  • For exact requirements, this will need to be discussed.

User support

• Email or online ticketing support: Yes, at extra cost
• Support response times: Various levels of support and response times are available under the ILAS support service, dependent on the customer requirement.
• User can manage status and priority of support tickets: No
• Phone support: No
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Various levels of support and response times are available under the ILAS support service, dependent on the customer requirement.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: ILAS uses an intuitive user interface that can be used by both expert and non-expert users. Training is available under Lot 3. User documentation is available offline.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: BAE Systems can extract data if required from the system and provide it in an open format. Most of the data held in ILAS is a copy of records held elsewhere in the customer's business. A small amount of data is generated and held within ILAS and this can be exported in an open format if required.
• End-of-contract process: Extraction of user data is included in the price of the contract, any other additional activities will be at an additional cost.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: We have a comprehensive analyst interface with a range of visualisations.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: Specific assistive technologies can be tested as required.
• API: No
• Customisation available: No

Scaling

• Independence of resources: Supporting infrastructure is sized prior to deployment based on a number of factors including projected user volumes. Each customers infrastructure is independently instantiated.

Analytics

• Service usage metrics: Yes
• Metrics types: User access and user interaction metrics are provided.
• Reporting types: Regular reports

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: Less than once a year
• Penetration testing approach: In-house
• Protecting data at rest: Other
• Other data at rest protection approach: Protections vary based upon deployment environment. On cloud deployments all media is encrypted as a minimum standard.
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Data can be exported by raising a service request. The service interface allows the output of data in the form of a PDF document for limited subsets of the data; this method is not intended for export of all the system data.
• Data export formats: Other
• Other data export formats: PDF
• Data import formats:
  • CSV
  • Other
• Other data import formats: JSON

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: We have a range of availability options which are dependant on specific customer requirements.
• Approach to resilience: Dependent upon deployment environment. Architecture allows distributed storage and processing of data as required.
• Outage reporting: Email Alerts

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Management actions have a number of restrictions allowing access to only privileged users. These controls include restrictions that the management actions can only be executed from specific network locations depending on the deployment configuration.
• Access restriction testing frequency: Less than once a year
• Management access authentication:
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Lloyd's Register
• ISO/IEC 27001 accreditation date: 24/11/2022
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: NCSC Certified Incident Provider

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Details to be provided upon implementation.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Details to be provided upon implementation.
• Vulnerability management type: Undisclosed
• Vulnerability management approach: Details to be provided upon implementation
• Protective monitoring type: Undisclosed
• Protective monitoring approach: Details to be provided upon implementation
• Incident management type: Undisclosed
• Incident management approach: Details to be provided upon implementation

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  For information on our Environment and Climate Change response please see https://www.baesystems.com/en/sustainability/environment-and-climate-change

  Covid-19 recovery

  For information on our COVID-19 response please see our website https://www.baesystems.com/en/covid-19-our-response

  Tackling economic inequality

  For information on our contribution to the UK and its regions please see https://www.baesystems.com/en-uk/our-contribution-to-the-uk-and-its-regions

  Equal opportunity

  For information on our processes in creating Equal Opportunities please see https://www.baesystems.com/en-uk/careers/careers-in-the-uk/diversity-and-inclusion-in-the-uk

  Wellbeing

  For information on on how we support Wellbeing in the workplace please see https://www.baesystems.com/en/sustainability/safety-and-wellbeing/wellbeing

Pricing

• Price: £80,000 a licence a year
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: Based on individual customer requirements.

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at government.tenders@baesystems.com. Tell them what format you need. It will help if you say what assistive technology you use.