Roke Manor Research

Infosight (Situational Awareness Platform)

Infosight is a dynamic IEA platform, built around a PMESII-PT framework. Infosight allows you to efficiently use automatically collected, geographically referenced data, such as demographics, surveys, census data, people movement, and infrastructure creating near real-time understanding of the IE. Users exploit these layers of visualised data to generate enriched insights.

Features

• Real-time situational awareness & alerting with report generation.
• Static and near-real-time data fused to derive actionable insights.
• Automated collection of political, military, economic, social and infrastructure data.
• Enables organisations to adopt, adapt, and develop new operational strategies.
• Centralised intelligence repository provides a single organisational source of truth.
• Geographically-contextualised data allows analysts to gain deeper insight.
• Interactive environments, maps and layers allow analysts to derive insights.
• Monitor, analyse, characterise, assess, and visualise the Information Environment.
• Infosight exploits data, visualisations and AI to deliver enriched understanding.
• Exploit open-source and unstructured data sources using big data tools.

Benefits

• Quickly understand and report on information environments.
• Provide operational understanding and actionable insight from disparate data sources.
• Gain operational intelligence advantage in targeted information environments.
• Accurately collect against bespoke Critical and Priority intelligence requirements.
• Filter intelligence to advance understanding of specific requirements.
• Empower analysts to report accurately and efficiently on information environments.
• Develop enriched understanding of the physical and information environments.
• Export automated assessments to provide accurate near real time briefs.
• Utilise AI/ML to save analyst time when monitoring open-source data.
• Apply NLP technologies to deliver insight and non-kinetic advantages.

£60,000 a licence a year

• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenderopportunities@roke.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

503919710916638

Contact

Roke Opportunities
01794 833000
tenderopportunities@roke.co.uk

Service scope

• Software add-on or extension: No
• Cloud deployment model: Hybrid cloud
• Service constraints: No.
• System requirements:
  • Windows 10 or later.
  • Optimised for Chrome Browser.
  • Consistent Internet Connection.
  • Minimum 4GB RAM.
  • Optimised for Desktop & Laptop use.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 1 business working day, during office hours.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: To be discussed as part of the statement of work.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Once the purchase of Infosight Licenses has been completed, Roke will begin the onboarding process for users. This can be done either virtually or in-person depending on the requirement of a workshop. Throughout the qualification process, Roke will work with key stakeholders to generate user stories for those who will be using the platform to ensure that we as a business understand how the buyer will be using the platform and what they aim to achieve and create the onboarding materials in line with this. A tailored workshop will be delivered for users off the back of their individual requirements supported by the Infosight product owner and the buyer account manager. How-to guides are embedded in the platform for quick reference and Roke will make every reasonable effort to accommodate follow up sessions with users requiring further assistance getting up to speed.
• Service documentation: No
• End-of-contract data extraction: Any customer data brought in and used by Roke will be returned to the customer and deleted from Roke infrastructure either at the termination of the contract or in line with pre-agreed data retention policies.
• End-of-contract process: At the end of the contract, Roke will revoke license access for Infosight and users will no longer be able to access the platform.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: There are no significant differences between the desktop and mobile service.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: Infosight delivers insights through a web-based interface.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: Roke welcomes the opportunity to test and develop Infosight in line with access and usability requirements for users that require assistive technology.
• API: No
• Customisation available: Yes
• Description of customisation: Infosight is by design, a flexible platform designed to ingest 3rd party data alongside your own and our proprietary. We can easily integrate external datasets to allow for a more enriched picture within the platform. This can be map layers, environmental or other contextualising datasets. Roke can create bespoke analytics and reporting modules to integrate with Infosight allowing further customisation of the functionality within the platform in line with customer requirements. This will be achieved by the Roke technical teams in close collaboration with the customer. Alerts and reports can be created to monitor regions and groups in line with customer requirements. The granularity of these reports is set by the buyer, ensuring the levels of awareness are fit for purpose against buyers' requirements. Access to specific data can be restricted within the platform through the application of credential-based access. This can also work for user-level settings in terms of preferred alerts, base maps and other front end settings.

Scaling

• Independence of resources: We would discuss any resource conflicts with the customer prior to commencing work.

Analytics

• Service usage metrics: Yes
• Metrics types: Users can audit themselves to a certain extent – for example they can view their usage, web apps access, data layers accessed. But the details of user tracking are limited to Roke administrative accounts (unless otherwise specified by a customer). Here is an example of fields captured in audit files: Org member Action taken Time stamp Current status Member’s Source IP address.
• Reporting types:
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: Less than once a year
• Penetration testing approach: ‘IT Health Check’ performed by a CHECK service provider
• Protecting data at rest: Physical access control, complying with another standard
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Data can be downloaded/exported from the service if required. Data export is controlled by the predefined functionality within the service.
• Data export formats:
  • CSV
  • ODF
  • Other
• Other data export formats:
  • SHP
  • PDF
  • FGDB
• Data import formats:
  • CSV
  • ODF

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Bonded fibre optic connections
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
• Other protection within supplier network: Various means. ISO27k accredited company.

Availability and resilience

• Guaranteed availability: If applicable, Roke will use commercially reasonable efforts to make the Covered Services available with a Quarterly Uptime Percentage of 99.9%, “Service Commitment”. For any Service Quarter that the Quarterly Uptime Percentage is less than Roke’s Service Commitment, the Buyer will receive an SLA Credit equivalent to the net Covered Downtime during the relevant Service Quarter in excess of the maximum Downtime permitted under the Service Commitment. The Covered Services may in part be facilitated by Mapbox and Amazon Web Services (AWS). As such, Mapbox operations/availability transparency can be seen at www.mapbox.com/legal/sla. Should issues with Covered Services arise, communication should be made with Roke via the appropriate representative. If applicable once Roke has verified that the Quarterly Uptime Percentage for Buyer’s account fell below 99.9%, the appropriate SLA Credit will be applied to the Customer’s account and shall apply towards the next invoice. SLA Credits are the Customer’s sole and exclusive remedy for any breach of this SLA (save that Roke acknowledges and agrees that multiple breaches of this SLA which amount to a material breach of the Agreement will entitle the Customer to terminate this Agreement in accordance with the provisions of clause 5.2(a)). SLA Credits are non-transferable.
• Approach to resilience: AWS and esri assure that they meet the following timescales for patching. Roke will also do the same, as detailed in their SLA. esri health dashboard can be monitored here: http://status.arcgis.com/ For AWS: https://status.aws.amazon.com/
• Outage reporting: In the event of an outage, automated email alerts will be sent to the buyer, The dedicated account manager will provide continual status updates while Roke look to resolve any outage by liaising directly with AWS and ESRI providing continual updates both by phone and email.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: Only authorised individuals can authenticate to and access management interfaces for the Infosight service. To streamline processes and ensure service stability and security, Roke will maintain control of the management interfaces and will work closely with the consumer if access to the management console is required. Security credentials have minimum requirements. Minimum password length is 12 characters Must contain at least one letter Must contain at least one upper case letter Must contain at least one lower case letter Contains at least one number Contains at least one special character Password expires every 90 days Cannot reuse previous 5 passwords.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: You control when users can access audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: You control when users can access audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: BSI
• ISO/IEC 27001 accreditation date: 28/04/2021
• What the ISO/IEC 27001 doesn’t cover: Not applicable. Certificate number: IS615807
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Information Security is central to all activities, processes, plans, projects, contracts and partnerships within Roke. Compliance with Information Security procedures in line with Policies and guidelines is a requirement, a clause to this effect is in all Employee Contracts. IS Policies are available to all employees. Breach of the IS Policies and procedures may result in disciplinary action, including dismissal. Employees are trained on Information Security, according to their company function. Contracts of Employment include a condition covering Company confidentiality. Roke hjas a Business Continuity Plan that is maintained, tested and regularly reviewed. Statutory and regulatory requirements are met and monitored for ongoing changes. Further Policies and Directives such as those for access, acceptable use of email and the Internet, malware protection, backups, passwords, systems monitoring etc. are in place, maintained and are regularly reviewed. This Information Security Policy is reviewed at least annually and may be amended in order to ensure its continuing viability, applicability and legal compliance and with a view to achieving continual improvement in the ISMS. The ISMS and Information Security operations are subject to continuous improvement through a program of internal and external audits and risk assessments. Confidentiality Agreements are entered into with third-party companies.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Compliance with ISO9001
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Assessed on a case by case basis, compliance with ISO27k as appropriate
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Assessed on a case by case basis, compliance with ISO27k as appropriate
• Incident management type: Supplier-defined controls
• Incident management approach: Assessed on a case by case basis, compliance with ISO27k as appropriate

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Roke has an Environmental management system which has been independently audited and ISO 14001:2015 certified by BSI, a UKAS certification body. All our environmental aspects have been identified, and the impacts are managed and are regularly reviewed to ensure continual improvement in this area. We have targets and objectives, identified in our published and Crown Commercial approved Carbon Reduction Plan (PPN 06/21) We project that Scope 1 & 2 carbon emissions will decrease over the next five years from 2020 figure of 352.47 tCO2e to 180tCO2e by 2025. This is a reduction of 48.9% . Our future Carbon Reduction Initiatives include LED lighting replacement ongoing - potential reduction 8.1 tCo2e, PIR light controllers, ongoing - potential reduction 1.9 tCo2e, ESOS 3 Environmental engineering recommendations for alternative integrated environmental power supplies and replacement of Oil boilers. We currently have in place 12 Electric vehicle charging points at our Romsey site, we have refurbished our Pavilion to include better insulation, temperature control and PIR lighting. We have introduced a car benefit scheme which offers Hybrid, PHEV and EV cars for Roke staff. A replacement major chiller unit has been installed with on demand driven pumps. We have replaced Diesel with Hydrotreated Vegetable Oil (HVO).

  Covid-19 recovery

  During what proved to be a difficult time for all, Roke applied, and continues to where necessary, its expertise and knowledge to ensure maximum safety for employees and visitors of Roke. With several measures and approaches to mitigate the spread of COVID-19, Roke were able to minimise disruption and carry on as business as usual. ; ; Some of the measures taken to mitigate and recover from the COVID-19 pandemic included, but were not limited to; Risk assessments, regular communications between the business, hygiene stations, liquid guarding of high-touch surfaces such as hot desks, social distancing, face coverings, weekly COVID Working Group, COVID support line and a monthly COVID “Playbook” that was distributed to the wider business. This included briefings and updates regarding COVID-19 and the latest rules and regulations we should follow. The playbook also provided reminders and guidance around Roke’s measures and controls that supported the recovery of COVID-19.

  Tackling economic inequality

  Roke is focused on developing talent from various backgrounds that are underrepresented in the workforce and the Engineering industry specifically. The work of our Employee Resource Groups helps support colleagues to progress their careers, which is key to addressing inequity based on ethnicity, gender, sexual orientation, and disability. Roke has set itself 5-year targets to increase representation of minority groups within the workforce and this drives actions in recruitment, such as training interviewers in unconscious bias and neurodiversity in order to ensure all applicants equal opportunity.; ; Roke is active in the community by working with groups to help progress opportunities for talent from non-traditional routes. The Roke Academy: Our centre of excellence for learning and development, focuses on non-traditional areas of recruitment to embrace undiscovered talent who may not have previously had the opportunity to enter the tech field. Our STEM activity and work with groups such as Tap Talent helps us give the widest possible group encouragement to join our industry.; ; Roke benchmarks salaries against similar organisations, and demographic factors such as gender and ethnicity are considered during annual salary reviews. Roke has previously paid cost of living bonuses which are more advantageous to those in lower earnings bands to help address disproportionate impact of financial crises. We publish equal pay surveys annually and are proud of the steady progression in narrowing the gap.

  Equal opportunity

  Roke is regularly updating our behaviours and social values framework, which is an integral part of our business and operational philosophy. We recognise that our strength comes from our diverse backgrounds and perspectives, and that we all have a responsibility to create an environment where we each have the freedom, support and trust to succeed. We are encouraged to bring our true self to work and we respect our Roke community, embracing diversity and inclusivity across the business. Roke runs a network of Employee Resource Groups which act as communities to lead initiatives in various areas, including Women in Roke, Inspire (LGBT+), Majority Ethnic, Veterans, Neuro-diversity and disability. ; ; Roke works with colleges and universities to nurture young people from diverse backgrounds and encourage them to take an active interest in science, technology, engineering and mathematics (STEM). We believe that such educational outreach is fundamental to ensuring the UK continues to be competitive in the development of cutting-edge technology. Our activities in this area include technology involvement days, such as child to work day and work experience placements, as well as visiting schools to bring the curriculum to life with examples of exciting technology. ; ; With an increased hire of Graduates/Apprentices, there has been renewed focus on the development of a network of Early Careers employees. The Group continues to target and attract increasing numbers of early careers joiners, both direct from school or following degree-level study. ; Roke Academy was formed to align with the company’s initiatives to provide equal opportunities to individuals from all walks of life. Over 15% of our staff have a registered disability and Roke is Disability Confident committed accredited.

  Wellbeing

  Roke’s Healthy Workplaces working group focuses on key initiatives to promote wellbeing at work and mental health has been a focus this year. The group helps employees make better decisions for themselves for a healthier lifestyle both at work and at home. Roke has a network of trained Mental Health First Aiders. Roke runs a number of Employee Assistance Programmes, which are an employee benefit designed to assist employees with personal problems and/or work-related problems that may impact their job performance, health, mental and emotional wellbeing. Roke also has an active social club that exists to provide a focus for social activities across the site, comprising of a number of clubs and interest groups with the aim of improving community integration. ; ; The Roke HSE team promote and build a sustainable and resilient future, continually developing a positive culture focusing on all aspects of Health, Safety and Environment. The health of our workforce matters at Roke; there are a number of initiatives to support colleagues in their work and everyday life including day one Occupational Health provision, with ongoing support throughout each employee's career. There is provision of onsite Mental Health first aiders and 24/7 support via our Employee Assistance Program, with virtual GP appointments and counselling available through our Health Care Cash Plan insurance. Employees also have access to expert psychological help.; ; Roke’s people management systems have recently been independently audited BSI, a UKAS certification body and certified as compliant with ISO 14003:2021 (management of psychological and psychosocial hazards); Roke are one of the first companies to achieve this standard.; ; ‘We are Roke’ is a real-time engagement tool providing dashboard information on employee sentiment across the Group and enables the company to issue targeted surveys to measure employee feedback and use the outputs to enable change for the better.

Pricing

• Price: £60,000 a licence a year
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: Trial up to two users for up to 2 weeks; no download (any report downloaded needs to be deleted after trial), no screenshots, no sharing of the data, no use of the application outside of UK IT Systems, no publishing of the any related content. Technical support will be available.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenderopportunities@roke.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.