Maxica Consulting Limited

Maxica 365

Most PPM tools require you to centralise your data and duplicate effort. We have designed MAXICA 365 to work with, not against you, building your portfolio on the data you have already. Use MAXICA 365 to maximise your data value and control in delivering successful projects faster.

Features

• Project management.
• Project Portfolio Management (PPM).
• Resource planning.
• Capacity planning.
• Dependency mapping.
• Strategic portfolio alignment.
• Risk and Issue reporting.
• Project Status reporting.
• Portfolio performance reporting.
• Data quality reporting.

Benefits

• Fully configurable service to align with maturity and budget targets.
• Proactive capacity management and forecasting.
• Delivers a step change in project portfolio management maturity.
• Delivered through our core values of Trust, Simplicity, Excellence, Accountability.
• MAXICA 365 delivers quality insights to all organisation levels.
• Provides portfolio metrics, programme, project, risk and issues.
• Dramatically reduces project managers administrative time.

£25 to £75 a user

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Derron.Taplin@maxica.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

520972100026903

Contact

Derron Taplin
07824 303 999
Derron.Taplin@maxica.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: We currently cover the whole of the UK via our Maxica 365 service.
• System requirements:
  • Azure and tenancy and AAD user accounts
  • PowerBI license

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Target and actual Service Level Agreements (SLA's) will be defined at the initiation of our work with your organisation.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: No
• Support levels: Target and actual Service Level Agreements (SLA's) will be defined at the initiation of our work with your organisation.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: Remote user training sessions, end user guides and resources available within the system.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Users can extract their data via simple data extraction feature built into the service. This can be done at anytime.
• End-of-contract process: User can choose to renew their contract or terminate their contract.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Chrome
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: None or don’t know
• API: No
• Customisation available: No

Scaling

• Independence of resources: The service leverages cloud scaling technologies automated according to demand.

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: Never
• Protecting data at rest: Physical access control, complying with SSAE-16 / ISAE 3402
• Data sanitisation process: No
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Users can extract their data via simple data extraction feature built into the service. This can be done at anytime.
• Data export formats: CSV
• Data import formats: Other
• Other data import formats: N/A

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: N/A
• Approach to resilience: Leverages Microsoft Azure resilience capabilities.
• Outage reporting: Email alerts are used to notify service users of planned outages.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Username or password
• Access restrictions in management interfaces and support channels: Access restrictions in management interfaces and support channels are managed by a combination of user authentication, (2FA) and Role-Based Access Control (RBAC).
• Access restriction testing frequency: At least once a year
• Management access authentication: 2-factor authentication

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: N/A
• Information security policies and processes: N/A.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: We rigorously test and validate all changes before implementation to prevent unintended consequences. By creating testing environments mirroring production settings, we accurately simulate the impact of changes. Through functional, integration, and regression testing, we ensure system performance and functionality remain intact. Post-implementation, we validate security controls, promptly addressing any identified vulnerabilities to maintain system reliability.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Azure security Centre is utilised to regularly scan MAXICA365 and supporting resources for vulnerabilities. Secure coding practices and appropriate tools such as DevOps are used to minimise the introduction of vulnerabilities. Strong identity and access controls (IAM) using Azure Active Directory (AAD), Role-Based Access Control (RBAC), and Azure AD Privileged Identity Management (PIM) to limit access to Azure resources based on the principle of least privilege. Dependent upon the severity of the vulnerability patches are prioritised, tested and immediately deployed.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Utilise Azure Security Center to continuously monitor Azure resources, MAXICA365 and supporting resources for security threats and vulnerabilities. Coordinate with Azure support services and engage with Microsoft's Incident Response team, if necessary, to escalate and address the incidents promptly. High-severity incidents, such as active data breaches or widespread service disruptions, receive immediate attention and response.
• Incident management type: Supplier-defined controls
• Incident management approach: We maintain pre-defined incident response procedures for common events, including service disruptions, security breaches. These procedures outline roles and responsibilities, escalation paths, and mitigation steps. Users can report incidents through various channels, including a dedicated channel in the app, or email. We provide incident reports to affected users and stakeholders upon request.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  Equal opportunity

  Equal opportunity

  Maxica Consulting Limited is fully committed to providing equality in the workplace and all opportunities for, and during employment, will be afforded to individuals fairly and irrespective of age, disability, gender, gender reassignment, marital or civil partnership status, pregnancy or maternity, race including colour, ethnic or national origins and nationality, religion or belief or sexual orientation. We aim to create a working environment that is free from discrimination and harassment in any form, in which all staff, are treated with dignity and respect.; ; There are a number of ways in which Maxica Consulting Limited aims to ensure equal opportunities in the workplace, including:; ; * Recruitment and selection:; ; Recruitment and selection procedures will be free from bias or discrimination. Recruitment procedures will be conducted objectively and will be based upon specific and reasonable job-related criteria. Decisions regarding an individual’s suitability for a particular role will be based on aptitude and ability. We will consider making appropriate reasonable adjustments to the recruitment process to ensure that disabled applicants are not substantially disadvantaged.; ; * Career development and training:; ; All staff will be given an appropriate induction to enable them to fulfil the responsibilities of their role. All employees will be encouraged to develop their full potential and we will not unreasonably deny an employee access to training or other career development opportunities. These will be identified as part of an ongoing performance management process and will be determined objectively, taking into account the needs of the business and available resources. Selection for promotion will be based on objective criteria and decisions will be made on the basis of merit.

Pricing

• Price: £25 to £75 a user
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: All aspects and features of the product are included in the trial. Trials are organised upon request.
• Link to free trial: https://maxica.com/maxica365.php

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Derron.Taplin@maxica.com. Tell them what format you need. It will help if you say what assistive technology you use.