Cognizant Worldwide Limited

Cognizant GDPR Readiness Assessment Service

Cognizant’s approach to GDPR is based on the critical areas of focus: Personal Data, People, Process and Technology. This section concentrates on the beginning of the journey and the assessment work needed to determine change requirements in order to attain GDPR compliance and longer term detailed project planning.

Features

• Two levels of Assessment - Quick overview or Deep Dive
• Assesses an organisations current Privacy status
• Delivers a comparrison against GDPR Regulation
• Integrates comparative tables into a clients reporting systems
• Covers unstructured as well as structured data
• Assesses current data protection maturity
• Comprehensive and pragmatic
• Scientific based solution
• Builds on Cognizant's own GDPR compliance experience
• Proven solution already deployed with many big name clients

Benefits

• Evaluation tool directly links back to GDPR regulation articles
• Provides "Heat Map" for quick Risk Assessment
• Covers unstructured as well as structured data
• Executive Summary provision
• "Sensitive" data dashboard
• PII repository mapping
• Data security assessment
• Prioritised project roadmap provision

£415 to £1,550 a unit a day

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at inquiryPSandHealth@cognizant.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

421894159531871

Contact

Frank Mcdade
+44 (0) 7711 588 127
inquiryPSandHealth@cognizant.com

Planning

• Planning service: Yes
• How the planning service works: Cognizant offers two Assessment services to determine GDPR Compliance. The fiist is the Privacy Impact Assessment which is a high level “snapshot” and takes approximately 1 consultant 1 day to complete. The object of this assessment is to illustrate the areas of weakness within an organization with respect to GDPR compliance, that need attention.; ; The second Assessment service offered by Cognizant is the GDPR Readiness Assessment. This a fully detailed analysis across all areas of an organization with all key stakeholders identified and interviewed to determine key repositories and processes where Personal Data is held and / or used. The key outcomes of this service is to deliver a full project plan of work required to achieve GDPR compliance along with a “Heat” map to identify priorities. This engagement typically takes between 4 and 6 weeks to complete (dependent upon the size and scope of the organization under review). Two tracks are offered – Qualitative and Quantative – to deliver the most comprehensive outcome – with the size of the engagement team varying dependent upon the size of the project.
• Planning service works with specific services: No

Training

• Training service provided: No

Setup and migration

• Setup or migration service available: No

Quality assurance and performance testing

• Quality assurance and performance testing service: No

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
• Certified security testers: Yes
• Security testing certifications:
  • GBEST
  • CREST
  • Tigerscheme
  • Cyber Scheme
  • Other
• Other security testing certifications: Certified Ethical Hacker (CEH)

Ongoing support

• Ongoing support service: No

Service scope

• Service constraints: None

User support

• Email or online ticketing support: No
• Phone support: No
• Web chat support: No
• Support levels: This is a planning service based on daily rates according to our SFIA rate card. We will work with the purchasing organisation to agree the scope of the planning exercise and provide either a T&M or fixed price to cover this scope including any required support during the execution of the service.

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: DNV Business Assurance
• ISO/IEC 27001 accreditation date: 02/07/2021
• What the ISO/IEC 27001 doesn’t cover: Certain locations of Cognizant are not in scope of the certification
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: ISO 22301 – Business Continuity Management System

Social Value

• Social Value:

  Social Value

  Fighting climate change

  Fighting climate change

  OUR SOCIAL VALUE COMMITMENT; We support and deliver across all identified areas of Social Value. We have provided the below as an example for Fighting Climate Change.; Our Social Value typically has two components:; 1-Reducing the greenhouse gas emissions of clients’ in house software development/support teams.; 2-Training technical teams in ways of working that reduce GHG emissions.; Below is dependent on the size/scope/length of the engagement:; ACTIONS WE WILL UNDERTAKE; We typically start with a one-day workshop to 1) Define what sustainability is in terms of software development/support. 2) Agree what can be measured, monitored and improved. 3) Produce a comprehensive Social Value Plan outlining our actions.; We use Cognizant's Carbon Footprint Calculator to measure and report on the IT team’s baseline emissions, using energy as a proxy. This data drives action planning and progress tracking.; If appropriate, our specialists conduct in-depth assessments of existing services/ways of working and identify areas where environmental impacts can be reduced. This process aligns with the Greenhouse Gas Protocol Product Standard and ISO/IEC 21030 standards for software measurement. We will assess ideas such as 1) cloud migration (eg optimised scalability). 2) Cloud native design (eg microservices and containers). 3) Green software design (eg code that minimises resource usage); If appropriate, we host workshops to discuss findings and agree changes in ways-of-working.; SUSTAINABILITY PRINCIPLES; We typically run sprints to test changes and measure improvements. We agree ways to integrate these techniques into business as usual.; EMBEDDING THE PRINCIPLES; We train client’s staff in the new ways of working by a blend of joint working, training sessions, and an on-line Sustainability Guide which will cover best practices for sustainable design, development, and operations. We periodically meet with the client to encourage continuous improvement through a blend of refresh training, challenge and innovation.

Pricing

• Price: £415 to £1,550 a unit a day
• Discount for educational organisations: Yes

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at inquiryPSandHealth@cognizant.com. Tell them what format you need. It will help if you say what assistive technology you use.