Specialist Computer Centres plc

Nexthink Infinity

Nexthink Infinity is a real-time Digital Employee Experience Monitoring (DEM) solution, aiming to drive meaningful productivity gains, improve employee satisfaction and mitigate any unnecessary costs. Nexthink provides IT with real time analytics to demonstrate how IT services are being consumed by their employees, where improvements can be made.

Features

• See, diagnose and fix digital workplace issues
• Automate remote actions to resolve issues remotely and timely
• Measure end-user sentiment of IT through on-screen surveys
• Integration with third party applications such as ITSM
• Optimize the performance, adoption and reliability of applications
• Understand the current digital user experience through captured analytics
• Live dashboards to present visual representations of correlated data
• Real time end user analytics from the users device
• Monitor SaaS based application performance and transactions
• Support Service teams to better diagnose and remediate issues

Benefits

• Improve end user productivity
• Reduce services desk costs
• Reduce mean-time-to-repair
• Track and improve user satisfaction
• Reduce IT hardware and Operations cost
• Improve digital adoption rates
• Improve visibility of all computing hardware and software assets
• De-risk transformation projects through improved adoption
• Improve security through governance reporting

£18.51 a licence a year

• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at frameworksales@scc.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

613508947604523

Contact

Warren Strain
01217667000
frameworksales@scc.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Nexthink Infinity is a standalone solution that can also be used to extend and enrich the IT Service desks ITSM platform capabilities to allow agents to better triage tickets, identify probable route cause and remotely remediate issues.
• Cloud deployment model: Public cloud
• Service constraints: Nexthink Infinity is limited to Windows, MacOS and IGEL operating systems
• System requirements:
  • Windows 10 64bits
  • Windows 11
  • MacOS 14.x, 13.x 12.x
  • 35Mb available HDD space
  • Connection to the Internet
  • Supported browsers
  • Chrome, Edge, Forefox and Safari
  • Windows Server 2019 64Bit v1809, Windows Server 2016 64bit v1709
  • Full requirements found at https://docs.nexthink.com/platform/latest/software-requirements

User support

• Email or online ticketing support: Yes, at extra cost
• Support response times: Depending on severity level, ticket response times range from 1hr to 1 week. Our support services description document is available at https://docs.nexthink.com/legal/services-addendum
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Several on-site support packages are available, ranging from per-day professional services, to packaged 'bundles' of time to provide specific capabilites dependant on customer needs.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Online self-paced training, user documentation, professional services
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: Data is provided in a series of flat file bulk data exports.
• End-of-contract process: System access for both UI and data collector elements is denied, following which all customer data is purged as per our data retention policies in place at the time of offboarding

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: Yes
• Compatible operating systems:
  • MacOS
  • Windows
  • Other
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Browser based UI that provides access to dashboards and interaces to manage and operate the system.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: JAWS screen reader is currently tested and supported
• API: Yes
• What users can and can't do using the API: Nexthink provides both RESTFul and Web Hook integration for appropriate applications. The API allows for initiation of stored procedures for data export, enrichment of data from external applications and execution of remote actions. Full information on how to utilise the API functionality can be found at https://developer.nexthink.com/
• API documentation: Yes
• API documentation formats: HTML
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Dashboards, measurement bias metrics and configuration of user interaction campaigns can be customised to meet client needs. Custom PowerShell/Bash scripts can be developed to provide remediation capabilities specific to the clients ennvironment. Customisation can be limited based on roles and responsibilities definitions

Scaling

• Independence of resources: Nexthink is a cloud service with application performance constantly monitored by our operations team and performance maintained. Additionally, customers are generally placed into their own private instance to mitigate any impact from other customers.

Analytics

• Service usage metrics: Yes
• Metrics types: End user digital experience score; latency; throughput; packet loss; connection tie; retransmissions; page load times; DNS resolution time; SSL handshake time; HTTP errors
• Reporting types:
  • API access
  • Real-time dashboards

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: Nexthink

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Other
• Other data at rest protection approach: All data at rest is encrypted either at storage level or at volume level using AES-256. We are investigating Transparent Data Encryption (TDE) and Column-based encryption as well as Bring Your Own Key (BYOK) features.
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Data can be exported in bulk as CSV
• Data export formats: CSV
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: We have a standard SLA of 99.5%
• Approach to resilience: Available on request
• Outage reporting: Nexthink will use commercially reasonable efforts to provide reports on any outages. These will differ depending on nature of outage (i.e. product updates, maintenance windows etc.)

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Access to information and IT system resources are granted on a “need to know” or “least privilege” basis and are authorized by information asset owner. Access is granted using RBAC controls.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: Between 6 months and 12 months
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: Between 6 months and 12 months
• How long system logs are stored for: Between 6 months and 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: EY CertifyPoint
• ISO/IEC 27001 accreditation date: 26/06/2020
• What the ISO/IEC 27001 doesn’t cover: Any Nexthink locations, other departments, non cloud version (V6) and suppliers contracted to Nexthink not mentioned on the certificate.
• ISO 28000:2007 certification: No
• CSA STAR certification: Yes
• CSA STAR accreditation date: 30/06/2021
• CSA STAR certification level: Level 1: CSA STAR Self-Assessment
• What the CSA STAR doesn’t cover: N/a
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Compliance with the standard ISO 27001, 27017, 27018, 27701, GDPR, and AICPA SOC2 Trusted Service Criteria Security and Availability

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Nexthink Cloud security policy describes the change management process. It can be shared under NDA.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Nexthink Cloud Security Policy and Vulnerability Management Policy describe the vulnerability management lifecycle from the vulnerability detection, assessment and remediation using patching techniques, deactivation of functionality, service, compensatory controls and/or virtual patching.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Nexthink Information Security policy describes the monitoring policy. The Security Operations Center have defined monitoring use cases integrated in the Incident response plan which includes playbooks in the event of a Data Breach, following Nexthink Data Breach Policy.
• Incident management type: Supplier-defined controls
• Incident management approach: Nexthink Security Incident Response Plan can be shared under NDA.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Sustainability is central to SCC’s operations and embedded into our business. Our defined carbon reduction targets are externally reported in our Carbon Reduction plan via the Carbon Disclosure Project.

  Covid-19 recovery

  SCC’s products, services and solutions can help facilitate and implement new ways of working for our customers. Through our propositions, additional health, wellbeing and agile working benefits can be achieved.

  Tackling economic inequality

  SCC provides employment and training opportunities, are members of the Disability Confident Scheme and supporters of the Armed Forces Covenant. Working with our supply chain we promote collaboration and diversity.

  Equal opportunity

  SCC is an inclusive employer with various initiatives to support, engage and develop our employees. We promote supply chain diversity and have mechanisms in place to manage modern slavery risks.

  Wellbeing

  SCC has a range of health and wellbeing activities available for our employees to access. Our volunteering programme and charity partnerships help facilitate and deliver a range of community benefits.

Pricing

• Price: £18.51 a licence a year
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: As part of a proof of value engagement, Nexthink will provide a FOC instance for a predetermined amount of time to evalaute the solution based on criteria set out and agreed at the start of the evaluation

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at frameworksales@scc.com. Tell them what format you need. It will help if you say what assistive technology you use.