Skip to main content

Help us improve the Digital Marketplace - send your feedback

  1. Digital Marketplace
  2. Lot 2: Cloud software
  3. Atlassian Platinum Solution Partner

Atlassian Platinum Solution Partner

Spectrum provide consultancy, training, support, hosting, licence management and marketplace apps for all Atlassian products in JIRA, Confluence, JIRA Service Management, Opsgenie, Bitbucket, Trello and Bamboo.


  • Project Management
  • Software Development
  • Defect Tracking
  • Document Management
  • Collaboration Software
  • Service Desk ITSM
  • System Monitoring
  • Dashboard Reporting
  • Platform Migrations
  • Licence Management


  • Encourages Agile Software Development
  • Encourages Team Collaboration
  • Extensibility to work with third party applications
  • Extensibility to work with thousands of Apps
  • Products suitable for companies of any size


£900 a unit a day

  • Education pricing available
  • Free trial available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Tell them what format you need. It will help if you say what assistive technology you use.


G-Cloud 13

Service ID

5 1 9 2 7 5 0 8 5 1 8 5 9 6 4


Telephone: 0204 538 7243

Service scope

Software add-on or extension
Cloud deployment model
  • Private cloud
  • Community cloud
Service constraints
System requirements
  • CPU: Quad core 2GHz+ CPU
  • RAM: 6GB.
  • Minimum database space: 10GB.

User support

Email or online ticketing support
Email or online ticketing
Support response times
Questions: Response & Resolution = 3 Days

No Support Services over a weekend.
User can manage status and priority of support tickets
Online ticketing support accessibility
None or don’t know
Phone support
Web chat support
Onsite support
Onsite support
Support levels
Support Window: 5 days a week (Monday - Friday): 9.30am - 18.00pm.

140 Hours (5 Days) at £120 p/h = £4,800 per annum
280 Hours (10 Days) at £110 p/h = £8,800 per annum
3>120 Hours (> 15 Days) at £100 p/h = £12,000 per annum

Spectrum provide both a technical account manager and cloud support engineer
Support available to third parties

Onboarding and offboarding

Getting started
We offer 'starter packages' which include the following:

1. Tool installation and basic configurations
2. Licence management
3. Training (online and classroom based)
4. Documentation
Service documentation
Documentation formats
End-of-contract data extraction
The customer has no need to extract their data, it remains hosted within their on-premise platform or cloud based platform
End-of-contract process
A Spectrum Contract can include:

1. Services
2. Licences (with partner discount)
3. Hosting
4. Support Services
5. Marketplace Apps

Additional costs can include Platform Discovery Evaluations, Licence Estate Assessments and Health Check Audits which act as a prerequisite before any Services are carried out.

Using the service

Web browser interface
Supported browsers
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
Application to install
Compatible operating systems
  • Android
  • IOS
  • MacOS
  • Windows
  • Windows Phone
Designed for use on mobile devices
Differences between the mobile and desktop service

Features are the same, jus screen sizes and layout are different between desktop and browser
Service interface
User support accessibility
WCAG 2.1 AA or EN 301 549
Description of service interface
JIRA Service Management web based portal
Accessibility standards
WCAG 2.1 AA or EN 301 549
Accessibility testing
We test our software using a variety of screen readers and browsers. We've found the following combinations provide the most accessible experience when using our products:

If you're using Windows, we recommend using NVDA with Firefox.

If you're using OSX, we recommend using VoiceOver with Safari.
What users can and can't do using the API
The Jira REST API enables users to interact with Jira programmatically. This API is used to build apps, script interactions with Jira, customer requests (JIRA Service Management) or develop any other type of integration.
API documentation
API documentation formats
API sandbox or test environment
Customisation available
Description of customisation
Users can customise the tool configuration deployments Spectrum undertake on all Atlassian products implementations (JIRA, Confluence etc). For JIRA Software, examples include workflows, screens, fields, schemas, permission schemes etc.


Independence of resources
Spectrum offer dedicated resources per customer to deliver the work. Resources will not be moved onto other customers until a) the work is complete and signed off b) customer requests alternative options. Technical delivery resources have 3 months notice periods in their contracts, therefore minimising the risk to customers should they decide to leave Spectrum.


Service usage metrics
Metrics types
Spectrum uses the Atlassian marketplace App called Insight Asset Management, which is a great tool for Users to access metrics when they need them- during sprint planning, checking in at the daily standup, or optimising delivery. You can find Insights in the upper right hand corner of the board, backlog, and deployments view when using JIRA Software.
Reporting types
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request


Supplier type
Reseller providing extra support
Organisation whose services are being resold
Atlassian Licences

Staff security

Staff security clearance
Conforms to BS7858:2019
Government security clearance
Up to Security Clearance (SC)

Asset protection

Knowledge of data storage and processing locations
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations
Datacentre security standards
Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency
At least every 6 months
Penetration testing approach
Another external penetration testing organisation
Protecting data at rest
  • Encryption of all physical media
  • Other
Other data at rest protection approach
We encrypt customer data in transit and at rest on Atlassian Cloud products using secure, authenticated, and industry-accepted encryption mechanisms. All customer data stored within Atlassian Cloud products and services is encrypted in transit over public networks using TLS 1.2+ with Perfect Forward Secrecy (PFS)
Data sanitisation process
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach
In-house destruction process

Data importing and exporting

Data export approach
All Atlassian products have the functionality for users to export their data by using the 'Export' button, usually in a CSV/Excel format.
Data export formats
Data import formats

Data-in-transit protection

Data protection between buyer and supplier networks
Private network or public sector network
Data protection within supplier network
Legacy SSL and TLS (under version 1.2)

Availability and resilience

Guaranteed availability
Support Window: 5 days a week (Monday - Friday): 9.30am - 18.00pm.

System Restoration: 2 Hours (maximum response time)
Major/Minor Correction: 5 days (maximum response time)
Improvement: < 3 Weeks (maximum response time)
Questions/Admin: 3 days (maximum response time)

Customers are refunded any breach of SLA's on a case by case basis at the discretion of both parties.
Approach to resilience
Available on request
Outage reporting
Outages are reported via a Service Desk support request

Identity and authentication

User authentication needed
User authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Username or password
  • Other
Other user authentication
Single Sign On (SSO)
Access restrictions in management interfaces and support channels
There are three levels of permissions in Atlassian products (Confluence etc) using permission schemes:

Global permissions
Space permissions
Page restrictions.
Access restriction testing frequency
Management access authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Username or password
  • Other
Description of management access authentication

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
Access to supplier activity audit information
Users have access to real-time audit information
How long supplier audit data is stored for
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
ISO 28000:2007 certification
CSA STAR certification
PCI certification
Cyber essentials
Cyber essentials plus
Other security certifications

Security governance

Named board-level person responsible for service security
Security governance certified
Security governance standards
ISO/IEC 27001
Information security policies and processes
Spectrum follow the ISO27001 policy on security which is in the process of being implemented.

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Spectrum Configuration Management approach:

Standard changes: Pre-approved changes that are low risk, performed frequently, and follow a documented process (for example adding memory or storage)

Normal changes: Non-emergency changes that require further review and approval by Spectrum board such as upgrading to a new content management system etc

Emergency changes: Changes that arise from an unexpected error or threat that needs to be addressed immediately (for example implementing a security patch or resolving a major incident)
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
Spectrum and Atlassian undertake a vulnerability management process on all their products:

Network and Wireless Assessment which identifies possible vulnerabilities in network security:

Host Assessment
Database Assessment
Application Scans
Determine Critical and Attractive Assets
Conduct Vulnerability Assessment
Vulnerability Analysis and Risk Assessment
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
Atlassian's process for incident monitoring can be found here
Incident management type
Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach

Secure development

Approach to secure software development best practice
Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Connection to public sector networks

Social Value

Fighting climate change

Fighting climate change

Available on request
Covid-19 recovery

Covid-19 recovery

Available on request
Tackling economic inequality

Tackling economic inequality

Available on request
Equal opportunity

Equal opportunity

Available on request


Available on request


£900 a unit a day
Discount for educational organisations
Free trial available
Description of free trial
Free licence trial of all Atlassian products and some Platform assessments/audits and health checks free of charge.

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Tell them what format you need. It will help if you say what assistive technology you use.