FLUIDONE LIMITED

Network Monitoring and Management

Real time device and circuit monitoring with proactive systems support provided via a suite of management tools. Data is provided on a real time and monthly basis detailing WAN circuit bandwidth usage, device processing and memory usage, IOS/service patch information, event log history and any logged incidents.

Features

• Real-time Performance Reporting
• Alerting on Threshold Breach
• Customised Reporting

Benefits

• Service provider model offers cost effective, best value model
• Proactive service reduces time spent on ad hoc queries
• Trend management aids capacity planning to reduce bandwidth costs
• End to end communication path monitored assures good user experience
• Failover testing assures resilience
• Network traffic visibility reduces time to resolve issues

£10 to £58 a unit a month

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at williamlugg@fluidone.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

371028030436405

Contact

Will Lugg
02070996892
williamlugg@fluidone.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: WAN Monitoring, Ticketing Systems, Incident Management, Inventory Management, Config Management
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Hybrid cloud
• Service constraints: None - The service provided is vendor and carrier agnostic and is therefore available across any platform both public and private
• System requirements:
  • Internet connectivity (can be supplied)
  • Internet browser

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: The service is truly proactive, with management and monitoring performed by a dedicated team of technical engineers available 24x7 hours a day, 7 days a week (depending on the support chosen by the Buyer).; ; Less than 5% of all support calls are inbound; pre-emptive support by our helpdesk team accounts for the rest. ; ; Buyers also have the option to view the monitoring platform via a secure portal to get an instant view of each device/node on their network with "traffic light" indications showing green, amber or red depending on connectivity status. Response times are the same at all times.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Three levels of functional service are available and are known as the Support Class. The level of functional service will be consistent across the buyer's infrastructure. Pricing is based on a cost per device and varies according to Support Class and term of contract. The three support classes are: ; ; Portal Access - provides a 24/7/365 monitoring and reporting service for devices. ; ; Reactive Management - provides a monitoring, alerting & reporting service with a Cloud Service Desk that will act on the alerts received, and manage the Incident until its resolution. Configuration of routers and their hardware maintenance is managed by the customer.; ; Proactive Management - FluidOne is responsible for the full end to end management. This includes the proactive monitoring and management of the network, router configuration and hardware maintenance/replacement. ; ; Each Buyer will have a technical account manager and access to cloud support engineers throughout the contract.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Training is provided at every stage of implementation. Typically, a live demonstration of the main features will have been shown to all relevant buyer personnel prior to signing a contract. Customers will have a Technical Account Manager assigned to them who will help users familiarise themselves with the main features. Formal training is offered whilst documentation showing screenshots and in-depth service details is provided, combined with on-line videos to assist with the basic functions and features.; ; The essence of the service is your users can view the same screens as the FluidOne Service Desk engineers, enabling the performance of joint triage. With a safe pair of hands guiding them when required, the approach helps users learn the elements that are important to them at a rapid pace. The FluidOne Service Desk is always on hand for any available 24/7/365.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Data is stored electronically on a per device basis and can be accessed and exported by users at any time up to the end of contract date. To ensure the integrity of any data exported is made available in the appropriate format, assistance will be given by the Service Desk. Once the contract comes to an end, direct access is no longer available, however, reasonable requests for information would be dealt with on a case by case basis.
• End-of-contract process: An exit plan is agreed in advance. As the service provided is bespoke to each buyer, any elements that would attract any additional costs would be clearly detailed and agreed as part of the exit plan. FluidOne would comply with all reasonable requests to assist with migration and will work in a collegiate and collaborative way with all third parties of a customer’s choosing – our philosophy is to focus on the benefits to customers and to ensure we protect any future business and we take the same approach with suppliers and partners, who may also be competitors in certain fields.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Screen contents need to be scrolled more frequently depending on the size of the device, but in all other aspects the mobile version is the same as the desktop version.
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: The service interface is a https portal secured with username and password and is made accessible to buyers under controlled access conditions governed by ISO27001 policies.
• Accessibility standards: None or don’t know
• Description of accessibility: Users can view traffic down to application/protocol and user level to perform triage independently or in tandem with the 24/7 Service Desk. Meta data is captured and presented to the user in the form of custom report templates allowing them to produce reports easily via mouse click. Users are not permitted to create their own templates or access the monitoring system itself to make changes.
• Accessibility testing: Not applicable.
• API: No
• Customisation available: No

Scaling

• Independence of resources: Each buyer is allocated dedicated bandwidth on either an MPLS or VPLS virtual port on the FluidOne internal infrastructure. It is not possible to exceed their allocated bandwidth. Quality of service parameters are also used, in tandem with traffic shaping and policing to prevent particular traffic types from flooding resources. User access is read-only, so only allowable reports/resources can be accessed, but in the unlikely event that any compromise occurred firewalls are configured to block users' traffic by port/destination/source address if necessary.

Analytics

• Service usage metrics: Yes
• Metrics types: • Percentage of calls handled proactively.; ; • Utilisation showing the amounts of ingress and egress traffic for each circuit at prescribed intervals and aggregated totals; ; • Availability of each circuit as a percentage of time across the network. Users can choose the time periods that suit them. Typically we report on “Standard Working Hours” and “Outside of Standard Working Hours”. These are customisable.; ; • Latency showing the average levels for each circuit across the network; ; • Unusual daily or periodic latency trends for each circuit across the network; ; • Maintenance history for each router connected to the UK Customer Network
• Reporting types:
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Solarwinds

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: FluidOne has developed its own reporting module to simplify the process of exporting data for users. Unstructured data is aggregated from the network monitoring platform, ticketing platform and device installation application as well as third party intelligence (e.g. Cisco’s last date of service (LDOS) data) providing accurate and up-to-date management information for decision support. Buyers are in control with this module, allowing them to set their own reporting time frame, decide whether to include or exclude devices, circuits or sites, and drill down into what is important to them.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • PDF
  • MHTML
  • Microsoft Excel
  • TIFF
  • Microsoft Word
• Data import formats:
  • CSV
  • Other
• Other data import formats: Microsoft Excel

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)
  • Other
• Other protection within supplier network: Remote camera monitoring backed by digital recordings, with retention that meets industry standards. CCTV integrated with access controls to provide event-driven capability.; Smart-Card readers with biometric access authentication technology.; Secured cabinets and cages.; Visitor identity and authorisation Management systems are housed in secure facilities. Site access is monitored and regulated via specific access controls. All processes are in accordance with ISO27001 and BS25999/ISO22301 practices and procedures. Site access is monitored and regulated via specific access controls via swipe cards containing photographic ID. Daily audits are taken of all firewall activity to ensure no unauthorised changes have occurred.

Availability and resilience

• Guaranteed availability: FluidOne will “back-to-back” all SLAs for services provided by partners for delivery timeframes, network availability and maintenance agreements. All services entirely within the control and remit of FluidOne i.e., our response times to faults, frequency of updates will be covered by rigorous SLAs. SLA’s will be agreed and confirmed with specific, measurable targets.; ; FluidOne agrees to use its reasonable endeavours to respond within 30 minutes in the event of any issue adversely and materially affecting the services being raised by the customer. SLAs for updates are based on defined priority criteria.; ; Any device or circuit being monitored will show up as amber or red immediately upon the dashboard if a fault has occurred. FluidOne circuit availability is measured from service being unavailable at a site or a ticket being logged with our support team for an unmonitored circuit until the service has been restored. ; ; In the event that FluidOne fails to achieve the service levels in any month and the Buyer is entitled to service credits, any owing will be reported by FluidOne in the following month and are credited. Performance reviews are delivered as part of monthly meetings, monitoring performance of our service desk against our agreed SLAs.
• Approach to resilience: The FluidOne Business Continuity Plan is established according to ISO22301 and is independently audited. Supported by a fully resilient network set up on multiple Data Centres with an SLA of 99.99%. All services are dual homed to provide geographic resilience for business continuity and disaster recovery scenarios as part of our ISO 22301 certification. All systems conform to ISO23001. Risk assessments are carried out for any systems that are not resilient. ISO27001 covers back-up policy with systems brought back up within a fixed amount of time dependent on Maximum Tolerable Period of Disruption (MTPD) and Recovery Time Objective (RTO). Critical systems are all designed and implemented in a resilient fashion. Datacentre resilience is provided via dual data centres, with a third DR site being one of our core office locations. Additional information is available on request.
• Outage reporting: A public dashboard requiring user ID and password displays alerts based on traffic light systems across the entire estate and for all elements of the service. Buyers are also asked to complete a contact template with names/contact details for personnel to whom email alerts or texts are sent. This is a bespoke system allowing for different levels of authority to be notified depending on severity of the issue. Devices can be configured with different levels of alerting depending on their importance to the network. Circuit and network availability is measured directly by monitoring of each device and circuit and presented to both FluidOne and buyers on a secure portal. Availability of each circuit as a percentage of time across each buyer's network is shown real-time and in monthly Quality of Service reports. Device availability is also captured and presented on the portal and each buyer will have their own individual dashboard showing outages. Further details of the platform are available on request.

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: All managed devices are secured via TACACS and/or vendor specific orchestration platforms; all engineering access is logged by individual user and time stamped. Read-only access to customer premise equipment can be made available on a case by case basis. FluidOne can further provide customers with a Terminal Access Controller Access-Control System (TACACS) authenticated, limited command login. This login will be controlled by the TACACS servers and will provide access to the unprivileged mode on routing equipment; this will provide the ability to carry out basic diagnostics i.e. ICMP ping and trace routes from the router.
• Access restriction testing frequency: At least every 6 months
• Management access authentication: 2-factor authentication

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Alcumus ISOQAR
• ISO/IEC 27001 accreditation date: 12/03/2025
• What the ISO/IEC 27001 doesn’t cover: Anything out of the boundaries of the scope as defined in Information Security Management System (ISMS) Manual. The scope of the organisation’s ISMS is as follows: Managed Network and Communications Infrastructure Solutions The boundaries of the scope include the Network Operations Centre and associated systems and resources. The organisation can determine the relationship between its selected information security controls and its risk assessment and risk treatment processes, and subsequently, back to the ISMS policy and objectives. This is demonstrated by the following documentation: • Information security policy statement (ISPS001) • Procedures and controls that support the ISMS • ISMS risk assessment procedure (ISP005) • Risk assessment (ISMS risk assessment.xls) • Risk treatment plan
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: All information security policies are dictated by our ISO27001 governance. All employees have access to our QMS via CRM linking directly to the guidance and policies themselves. These policies are:; ; Acceptable Use Policy, Access Control Policy, Anti-Bribery Policy, Backup Policy, Clear Desk and Screen Policy, Conflict of Interest Policy, Control of Documents, Control of Records Policy, Corrective and Preventative Action Policy, Data Classification and Confidential Data Policy, Email Policy, Encryption Policy, Equipment Reuse and Disposal Policy, Group Retention Criteria Policy, Guest Access Policy, Information Security Incident Reporting Policy, Information Security Policy Statement, Internal Information Security Management System Audit Policy, ISO 27001 Awareness Policy, Mobile Device Policy, Network Security Policy, Outsourcing Policy, Password Policy, Remote Access Policy, Risk Assessment Procedure, Information Security Awareness Policy, Secure Development Policy, Social Media Policy, VPN Policy, Wireless Access Policy

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Changes to components of the service are tracked and managed via the same systems that are used to track changes to customer devices. All managed devices are secured via TACACS servers and/or vendor specific orchestration platforms; all engineering access is logged by individual user and time stamped. All device configuration files are checked daily for any changes - these changes are then automatically added to the Network Configuration Management system change database.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Threats are assessed under the guidance of the Internal Information Security Management System Audit Policy. Internal audits of all Information Security Management System policies, procedures and controls are carried out at least once per annum in accordance with the Information Security Management System Internal Audit Schedule. Certain policies, procedures and controls may require more regular review according to importance or history of problems. Information from vendors is regularly monitored regarding patches which may need to be applied in between audits. Any discrepancies found during the audit are recorded on the Issues Register and acted upon.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: FluidOne Implements Dual Skinned firewalls with Next Gen Security Features, Malware Intrusion Detection and Prevention Services. For the purpose of this policy an information security event or incident is defined as: ; ''An identified occurrence or weakness indicating a possible breach of information security policy or failure of safeguards, or a previously unknown situation which may be security relevant.'' ; All responses are responded to within 30 minutes by default. Special measures/policies exist for critical threats, details of which are available on request.
• Incident management type: Supplier-defined controls
• Incident management approach: FluidOne has a documented Incident Management Process which is updated annually. A summary is provided here:; Users will be notified proactively within 30 minutes of any incident that is service affecting. Users can also log incidents via phone, web or email. All incidents are logged and reported on via the Advanced Reporting Module (ARM). Availability reporting shows when, and for how long a device has been down. Live incident reporting provides analysis of incident category and resolution codes. This helps customers identify incident trends.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  FluidOne recognises that climate change is one of the most prominent challenges which threatens our global community. We are committed to the continual improvement of our performance in reducing and minimising negative impacts on the environment through the adoption of sustainable practices. Our Environmental Policy includes regular documented updates that monitor, measure, report and reduce energy use across all our sites.; ; We actively reduce our consumption of resources and improve efficiency in their use by re-using or recycling where possible. We promote individual and company awareness of good environmental practices and integrate recognised applicable best practice into our business activities.; ; We work closely with our suppliers to ensure environmental criteria are considered in the procurement of goods and services including asset lifecycle management and agreed mean lifecycle of a product. We are working with partners who sponsor several reforestation projects and have a focus is on giving technology a second life and contributing to the circular economy.; ; We encourage developing plans with buyers so that they can achieve their own sustainability targets. Introducing our sustainability partners forms part of this and as part of service reviews, we can develop plans including completing remote diagnostics and report on buyers’ utilisation level of all services. We can provide excess utilisation (for example power draw in data centres) as well zero usage (unused services) reports that lead to potential changes in services.

  Covid-19 recovery

  Covid and the subsequent adoption of new working practices amplified the operational benefits of flexible working and effective collaboration, but there are some important environmental advantages too.; ; The businesses' working policies were adjusted during the Covid-19 pandemic to ensure the safety of colleagues with changes made post pandemic during recovery to maintain limiting the possibility of transmission.; ; FluidOne deploy solutions that help people work effectively from anywhere. We carefully found the balance that maintains culture but reduces the need for teams to always meet physically. The results help to lower the amount of travelling and the subsequent environmental impact that creates. ; ; We are helping our customers with this; collaboration tools like Microsoft Teams (or other platforms) to the implementation of smart meeting room technology support reducing the frequency of physical office visits and in turn can help to reduce energy consumption or may even help reduce the footprint taken by office space

  Equal opportunity

  FluidOne values and actively strives to have a diverse and inclusive workforce in a working environment free from discrimination. An inclusive work culture where people of different backgrounds are valued equally will ensure better outcomes for us all. We seek to promote the principles of equality, diversity and inclusion in all dealings with employees, workers, job applicants, clients, customers, suppliers, contractors, recruitment agencies and the public. ; ; With our industry being approximately 80% male, this makes the candidate pool for recruitment of experienced roles predominantly male and not as diverse as the wider community. Our leadership team believe the most effective long-term way to change the balance is to encourage more females and diverse candidates to make their first career move to be into the IT and Comms industry. ; ; We have aligned with a local university in London with a less privileged student base than other London universities. Our engagement has resulted in planning events where we can give support and to aid students on their career planning, creating some internships and entry level roles each year with FluidOne. Our representatives attend campus to discuss their experiences offering a more interactive approach to a traditional career fair, talking to students as they visit, with a view to continuing conversations.

  Wellbeing

  At FluidOne, our people are our most important assets, with. staff mental wellbeing one of our top priorities. We offer all employees - regardless of how long they’ve been with us - an Employee Assistance Programme (EAP). With EAP, staff can get 24/7 support, guidance, counselling, and expert legal advice on any personal and professional issues that could be affecting their home or work life. The wellbeing portal also offers a virtual library of wellbeing guides, with everything from dietary tips, fitness plans, and financial advice. ; ; We actively seek and retain talent and are proud of our culture of being straight-forward and one that promotes well-being, collaboration and innovation, as well as having fun.; ; Help employees flourish in the best ways possible is a continuous area of attention to. More flexibility in the scheduling of training and coaching is provided with additional support to managers to best support their teams. Staff culture is key to our success with teamwork and collaboration at our centre. As we support each other and work together to achieve our ambitions, this is represented with focus on regularly understanding how staff feel through one-to-ones, regular team meetings and mini-surveys.; ; The company deliver regular initiatives such as hosting company Pow Wow meetings in person or via video conference which shares company updates, as well as enjoying informative and fun get-togethers. Combining work and play this way proved popular with employees.; ; We are extremely proud to be recognised as an organisation that puts its employees first with recognition testament to our continued commitment to make FluidOne an incredible place to work.

Pricing

• Price: £10 to £58 a unit a month
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at williamlugg@fluidone.com. Tell them what format you need. It will help if you say what assistive technology you use.