Impulse Nexus - Education Management Information Software System
Impulse Nexus is a complete, mature, modular, web-based education management system that enables greater efficiency by using a centralised, core pupil record. Impulse Nexus provides a holistic view of a child's educational needs, activity and their life circumstances, through advanced reporting functionality, portals and dashboards, with optimised mobile accessibility.
Features
- Single database application with a centralised core pupil record
- Flexible, modular offering fulfilling specific education department requirements
- Information Management system with analytics and powerful reporting
- Information portals for parents, schools, local authorities, professionals to access
- Web-based, mobile optimised with self-service and service redesign
- Secure, statutory compliance; enabling multi-user access and information dashboards
- Admissions, Transfers, Appeals, SEND/ALN, Referrals, Early years, EHCP viewer
- Education Psychology, Child Protection, Results and Tracking, Governors, Online PEP
- Welfare, Benefits, Specialist Support Services and Virtual Schools (LAC attendance/exclusions)
- Powerful HUB data-matching engine that synchronises, cleanses data
Benefits
- Dramatically improves internal processes, affordably and efficiently
- Broadens view of child’s journey through the education system
- Improves integration and quality of data from other council agencies
- Robust, mature system which works excellently at scale
- Multi-professional case management; supports better collaboration to safeguard children
- Intensive support provided by Trusted Advisors with domain expertise
- Excellent value for money with tangible time-saving results
- Experienced people, methodology and values; more effective implementation
- Intuitive data recording; multi-lingual capability
- Advanced analytics, dashboards, visualisations using live data (with drilldown)
Pricing
£17,500 a licence a year
- Education pricing available
Service documents
Request an accessible format
Framework
G-Cloud 13
Service ID
6 6 1 8 8 3 8 1 1 6 0 4 2 4 8
Contact
CACI UK Ltd
CACI Digital Marketplace Sales Team
Telephone: 0207 602 6000
Email: digital.marketplace@caci.co.uk
Service scope
- Software add-on or extension
- No
- Cloud deployment model
- Private cloud
- Service constraints
- None, other than internet access
- System requirements
- Appropriate browser enabled device and connection to the internet.
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
-
CACI provide web support and a helpdesk portal 24/7 to process customer issues, requests for support and software changes.
Impulse Nexus is a highly secure and available system and several aspects of the application are business-critical, so we aim to deliver maximum uptime.
Application and technical support is available 08:00 to 18:00 and at other times by arrangement. If a serious fault (Severity 1 & 2) is reported, and the system is not available or unusable, we will immediately respond and diagnose the issue using our technical consultants. This is typically within two hours if it relates to the software. - User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- WCAG 2.1 AAA
- Phone support
- Yes
- Phone support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support
- Yes, at an extra cost
- Web chat support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support accessibility standard
- WCAG 2.1 AAA
- Web chat accessibility testing
-
CACI have reviewed inclusive features in Skype for Business / Teams:
- Users with vision impairments can get shared content on their own devices. This lets them use their favourite assistive technologies, such as a screen reader or magnifier.
- Users with hearing impairments can get transcription services in real time, through Communication Access Realtime Translation (CART). - Onsite support
- Yes, at extra cost
- Support levels
-
All CACI’s customers receive a comprehensive support package as standard. This is included in the annual support and maintenance charge. Support is an area CACI is confident it over performs in; it’s constantly cited as one of the reasons why our customers partner with us, and why they stay with CACI.
All first line customer care consultants are attuned to practice issues and know how important it is, and are committed to, turning technical issues around quickly when they are affecting a child’s life.
Although our Service Level Agreement (SLA) is focused on service requests, >80% of our support time is spent providing advice to help customers optimise their use of Impulse Nexus and its diverse features. We are proud of this level of engagement and certain this is a uniquely beneficial feature of our service, compared to other providers.
Another popular benefit is CACI’s regular engagement with our userbase. We hold regional user conferences, webinars, workshops and actively encourage our userbase to engage with each other, both to help with best practice and to communicate in relation to CACI’s services and the development of Impulse Nexus. - Support available to third parties
- No
Onboarding and offboarding
- Getting started
-
CACI will confirm all customer requirements for configuration and implementation, including training, as well as a service start date.
Typically, we offer an initial onsite kick-off meeting with the customer at a suitable location (onsite or virtual) and agree the method and types of users to receive training; this will depend on the customer service needs, number and location of users that require training.
Impulse Nexus training sessions are designed to be interactive and are delivered by knowledgeable and experienced consultants, with in-depth knowledge of the solution. Full training documentation will be supplied, as well as user and how-to guides, regular advice notices and webinars.
We continuously improve our software design, implementation, testing and deployment processes. We provide a complete service to manage Impulse Nexus, software upgrades and data backups, for example, to fully comply with statutory application and security requirements etc. Up to 3 service pack updates are scheduled in consultation with the customer annually. - Service documentation
- Yes
- Documentation formats
- End-of-contract data extraction
- The embedded reporting tools allow for full data extracts by the user. Where applicable and as needed, CACI can be commissioned to assist with the extraction as agreed on a case by case basis. As an option, CACI can provide additional (costed) services for Certified Drive Erasure or Disk Destruction through independent 3rd parties.
- End-of-contract process
-
If a customer chooses not to renew, and once written confirmation is received, we will agree a date on which we are to carry out the data extract. Once carried out it is then securely provided to the customer.
Upon confirmation that all is in order, we then clear Impulse Nexus and shut it down, providing written confirmation to the customer that this has taken place and that we have securely destroyed all their data.
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Microsoft Edge
- Firefox
- Chrome
- Safari
- Application to install
- No
- Designed for use on mobile devices
- Yes
- Differences between the mobile and desktop service
- The standard Impulse Nexus service works on mobile devices such as tablets and mobiles. Reporting Dashboards and Portals are fully optimised and able to be viewed on devices such as mobile telephones and tablets etc.
- Service interface
- Yes
- User support accessibility
- WCAG 2.1 AAA
- Description of service interface
- There is a secure, device-adaptive web browser interface to the service.
- Accessibility standards
- WCAG 2.1 AAA
- Accessibility testing
- Testing has been carried out in order to meet specific customers requirements to assist their users with specific accessibility needs e.g. JAWS. CACI has experience of tailoring visual displays for users with visual impairment, for example. Upon contract start CACI's team will discuss any specific requirements before Impulse Nexus is implemented.
- API
- Yes
- What users can and can't do using the API
-
Impulse Nexus can interface and integrate with a range of modern systems. We can provide straightforward integration with Electronic Document And Records Management System (EDRMS) using available webservices
CACI can reference examples of common standards education system interfacing and integration, for example, automatic updating of education training attendance and attainment from schools, care status and looked after children's placements, police notifications etc.
In addition to offering generic interfacing we offer advanced data matching and inter-operability with other 3rd party systems using the Impulse Hub. We have also developed RESTful interfacing with Impulse to enable interfacing with mobile software devices as well as for other purposes. - API documentation
- Yes
- API documentation formats
-
- Open API (also known as Swagger)
- HTML
- API sandbox or test environment
- No
- Customisation available
- Yes
- Description of customisation
-
Impulse Nexus can be customised at a service level to include a number of different modules, generate specific reporting, dashboards, user permissions and role-based settings.
Users can also customise their personal dashboard, generate specific reports and include / remove certain windows and sections of information based on relevance to the users work.
We also offer systems integration options. These are configured as options and require the Impulse Hub matching and systems integration product. The number and type of feeds to Local, Regional and Government systems is virtually unlimited.
Scaling
- Independence of resources
- Regular testing and enhancements to our service and hardware are conducted. Up-time and performance assurances are provided in our SLAs.
Analytics
- Service usage metrics
- Yes
- Metrics types
- Service metrics can be provided on usage of Impulse Nexus with various user-defined variables.
- Reporting types
-
- Real-time dashboards
- Reports on request
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- Up to Security Clearance (SC)
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
- United Kingdom
- User control over data storage and processing locations
- No
- Datacentre security standards
- Supplier-defined controls
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
- Protecting data at rest
- Physical access control, complying with another standard
- Data sanitisation process
- Yes
- Data sanitisation type
- Explicit overwriting of storage before reallocation
- Equipment disposal approach
- Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001
Data importing and exporting
- Data export approach
- Impulse Nexus uses an integrated reporting and filtering system for users to define precisely the data that users want to extract themselves.
- Data export formats
-
- CSV
- Other
- Other data export formats
-
- XML
- HTML
- Data import formats
-
- CSV
- Other
- Other data import formats
-
- XML
- CSV
Data-in-transit protection
- Data protection between buyer and supplier networks
-
- Private network or public sector network
- TLS (version 1.2 or above)
- IPsec or TLS VPN gateway
- Bonded fibre optic connections
- Legacy SSL and TLS (under version 1.2)
- Data protection within supplier network
-
- TLS (version 1.2 or above)
- IPsec or TLS VPN gateway
- Legacy SSL and TLS (under version 1.2)
- Other
- Other protection within supplier network
-
The solution is hosted on dedicated virtual servers within a segregated VLAN located at CACI’s UK based Tier-3 data center.
CACI has implemented security best practice including network segmentation and segregation to protect customer data traversing on our network.
Our data centre has robust physical, technical, and environmental controls protecting systems and data. All systems are installed on highly available hardware, backed up nightly, patched regularly, protected by high-end firewall systems, intrusion detection, data loss prevention and antivirus systems. Network penetration tests are performed annually. Vulnerability scans are performed weekly.
CACI encrypts all data both at rest and in transit.
Availability and resilience
- Guaranteed availability
-
We guarantee 99% availability, using the following definitions:
• Network resilience is defined as recovery in less than 2 hours
• Physical Machine resilience is defined as less than 5 minutes
• Virtual Machine resilience is defined as less than 15 minutes
• Data Center recovery is defined as less than 1 hour (if secondary site option purchased) - Approach to resilience
-
All CACI solutions are highly resilient and hosted within a Tier-3 data centre data proving a very high degree of redundancy including:
Multiple independent network fibre rings provide redundancy in connectivity
N+1 Close Control Unit air conditioning provides redundancy in internal environment management Multiple, disparate 20Mva power feeds from a local power station vastly reduce the likelihood of a power interruption
In the unlikely event of a power interruption, N+N Uninterruptable Power Supply (UPS) systems, combined with three backup diesel generators that are kept warm and able to take up the load from the UPS within five minutes, provide a great degree of redundancy to the power supply.
The solution utilises HP blade server architecture with redundant blades, power, and networks.
CACI’s enterprise storage solution is architected to eliminate any single point of failure (hardware or software) in the system. To mitigate single points of failure at the hardware layer, the system is designed with redundant components, including redundant power domains.
CACI use highly resilient cloud-based collaboration tools such as Outlook, SharePoint, and Teams to provide support to our services. - Outage reporting
- In the unlikely event of service outage an email alert would be sent to the user(s) from CACI Customer Care Team.
Identity and authentication
- User authentication needed
- Yes
- User authentication
-
- 2-factor authentication
- Public key authentication (including by TLS client certificate)
- Identity federation with existing provider (for example Google Apps)
- Limited access network (for example PSN)
- Dedicated link (for example VPN)
- Username or password
- Access restrictions in management interfaces and support channels
- Username and password plus internal processes, audited in accordance with ISO 9001 and ISO 27001 protocols.
- Access restriction testing frequency
- At least every 6 months
- Management access authentication
-
- 2-factor authentication
- Public key authentication (including by TLS client certificate)
- Identity federation with existing provider (for example Google Apps)
- Limited access network (for example PSN)
- Dedicated link (for example VPN)
- Username or password
Audit information for users
- Access to user activity audit information
- Users have access to real-time audit information
- How long user audit data is stored for
- At least 12 months
- Access to supplier activity audit information
- Users have access to real-time audit information
- How long supplier audit data is stored for
- At least 12 months
- How long system logs are stored for
- At least 12 months
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- Certified by British Standards Institute for ISO27001 (cert # IS501477).
- ISO/IEC 27001 accreditation date
- Original Registration Date: 11th April 2006 – last re-certification date was on the 6th July 2021
- What the ISO/IEC 27001 doesn’t cover
- Our ISO 27001 certification covers all CACI services, offices, and data centres.
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- Yes
- Cyber essentials plus
- Yes
- Other security certifications
- Yes
- Any other security certifications
-
- ISO 9001 - this includes additional elements regarding security
- Data Seal - DS 27001/1-2014
- Registered with the ICO - Network and Information Systems Directive
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
-
- ISO/IEC 27001
- Other
- Other security governance standards
-
CACI also holds Data Seal.
CACI are registered with the ICO under the Network and Information Systems (NIS) Directive.
Additionally, CACI holds ISO/IEC standards in 9001:2015 Quality Management Systems (QMS), ISO/IEC 20000-1 Service Management System (SMS) and ISO/IEC 14001 Envi-ronmental management (EMS). - Information security policies and processes
-
CACI have implemented an Information Security Management System (ISMS) containing a set of policies, procedures, and technical controls for systematically managing sensitive data, systems, and processes. The foundation of our ISMS is designed in accordance with the ISO27000 series of international standards, industry best practices and regulatory controls.
We have also adopted the security best practices detailed within the National Cyber Security Centre’s 14 Cloud Security Principles, 10 Steps to Cyber Security and 12 Supply Chain Prin-ciples along with the Government’s Technology Code of Practice into our Information Securi-ty Management System (ISMS) and these form part of business-as-usual operations.
CACI maintains a Risk Management program to mitigate and manage risk companywide. Risk assessments are performed at least annually to ensure appropriate controls are in place to help reduce the risk related to the confidentiality, integrity, and availability of sensitive in-formation.
We maintain ongoing initiatives intended to help minimise the risks associated with human error, theft, fraud, and misuse of facilities. These initiatives include screening, confidentiality agreements, security awareness education and training, and enforcement of disciplinary actions.
Regular audits and a large number of KPI metrics are used to monitor and demonstrate compliance and the continued effectiveness of CACI’s ISMS.
Operational security
- Configuration and change management standard
- Supplier-defined controls
- Configuration and change management approach
-
Documented change management systems form part of ISMS. Major/significant changes are peer reviewed and approved by the change advisory board (CAB) which delivers support to a change management team by approve, assess, prioritise the requested changes.
All changes are subject to our Change Control Policy. Where there’s the possibility of an impact to user activity, the appropriate stakeholders are notified for feedback.
Changes are forwarded to Change managers for CAB approval, who may append plans when appropriate.
Robust systems acceptance testing processes have been established for all new information systems, upgrades and new versions, conducted by dedicated quality assurance team. - Vulnerability management type
- Supplier-defined controls
- Vulnerability management approach
-
CACI has a comprehensive vulnerability management program that includes conducting weekly vulnerability scans on critical systems and applications.
New patches are promptly risk assessed and prioritised based on the severity of the vulnerability and the threat intelligence available.
Where an Emergency patch poses an imminent threat to the network it is installed without undue delay.
All other Windows patches are installed within 14 days of receipt.
Our system administrators subscribe to alerts and publications to ensure new are emerging threats are countered promptly and effectively and that new Technologies and security best practices are assessed and adopted where appropriate. - Protective monitoring type
- Supplier-defined controls
- Protective monitoring approach
-
Robust security logging and alerting controls are in place to capture events in order to prevent security incidents and malpractices, including Active Directory, Intrusion Protection System (IPS) and Data Loss Prevention (DLP).
Solutions are also in place to monitor systems and alert administrators of possible capacity, and resource problems.
Logs are stored centrally and reviewed on a daily basis.
CACI has robust and mature incident response plans and processes and business continuity management to minimise the impact of a cyber-security attack or incident.
Our Security Teams consultants are available 24/7 to react and respond to critical security and infrastructure events. - Incident management type
- Supplier-defined controls
- Incident management approach
-
All employees are required to report any real, perceived, or potential security incidents that may affect the confidentiality, integrity, or availability of data.
All Security Incidents are recorded in-line with our Security Incident Policy and Response Procedure, for each incident a root cause analysis is conducted, a corrective action undertaken, and a preventative action will be implemented to prevent or reduce the probability of the incident reoccurring in the future.
CACI’s cyber security management programme includes cyber incident response plans, advanced technical controls, operation resilience and business continuity management to minimise the impact of a cyber-security attack or incident.
Secure development
- Approach to secure software development best practice
- Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)
Public sector networks
- Connection to public sector networks
- Yes
- Connected networks
-
- Public Services Network (PSN)
- NHS Network (N3)
- Health and Social Care Network (HSCN)
- Other
- Other public sector networks
- CACI provide connectivity to DfE eligibility checking service.
Social Value
- Fighting climate change
-
Fighting climate change
As a supplier primarily of professional IT services, CACI’s environmental impact is minimal. However, we are constantly looking at how we can operate more efficiently in our fight towards climate change. We are working towards a Net Zero Carbon business model through our delivery to our customers as promoting this to our supply chain.
This commitment is demonstrated by our achievement of ISO14001 accreditation, which we have held for nine years. To attain this standard, we ensure our Environment Management System (EMS) met the following requirements:
-Awareness of environmental impact through procedures and controls
-Acceptance of responsibility through environmental management systems
-Reducing harmful impacts via environmental policies
-Displaying community responsibility via staff training and awareness.
We are fully committed to working towards a circular economy approach and where practically possible CACI select the most sustainable means to operate its facilities We remain aware of any and all opportunities to share, lease, reuse, repair, refurbish and recycle existing materials and products.. That includes using recycled paper, enforcing double sided printing, and using Energy Star devices. Our recycling policy includes energy/water consumption, waste materials and paper use.
CACI has an agreed Carbon Reduction Plan (CRP) which is in implementation and is published on our website. This includes a set of carbon reduction targets up until 2050, with a baseline period set from July 2020 to June 2021. We project that carbon emissions for scope 1 and scope 2 will decrease over the next five years to 300 tCO2e by 2026. This is a reduction of 9% on the baseline.
CACI have purchased a licence for Carbon Expert Professional allowing tracking of Scope 1, 2 and 3 emissions, which allows us to robustly assess achievement of targets. Our CRP is reviewed and updated quarterly allowing regular tracking of emissions targets. - Covid-19 recovery
-
Covid-19 recovery
CACI has had to adapt significantly the COVID-19 pandemic struck. Our adaptations range widely across the business, including staff, supplier and customer engagement. By enabling remote working for staff and digital delivery from our supply chain, we have been able to continue delivering our services to customers.
In response to COVID-19, CACI has become a member of the Emergent Alliance (EA). EA is a not-for-profit community, aiming to better inform organisations’, businesses’ and Government economic decision-making. It draws on a diverse collaboration of corporations, individuals, Non-Governmental Organisations (NGOs) and the Government.
Since the beginning of the pandemic, CACI’s immediate concern has been the safety and wellbeing of staff. As a leading business in the digital industry, we have adapted quickly to working remotely through the use of technology and training, with minimal impact on our staff or delivery of services.
CACI has implemented a range of measures by carrying out COVID-19 risk assessments, in line with government guidance, across all offices. These took account of staff numbers, layout and facilities. Steps put in place include:
-Enhanced cleaning regimes and better ventilation
-Hand sanitiser stations
-New desking plans and working regimes to maintain social distancing
-Clear COVID-19 signage located around offices
-Restrictions on communal areas, e.g. kitchens, toilets, stairs, walkways etc.
-Clear reporting and escalation protocol for breaches or reports of COVID-19.
As of today, we still maintain a hybrid working stance. We are conscious that the new-normal may mean more remote working than pre-COVID-19, and as an employer we are offering continued flexibility. This seeks to reduce travel and office occupancy. - Tackling economic inequality
-
Tackling economic inequality
CACI is dedicated to creating employment opportunities, working with local suppliers and hiring local people. We adjust our recruitment and training processes to focus on attributes rather than qualifications, which could exclude those from a disadvantaged background or deprived areas. Inclusivity and accessibility are encouraged via unconscious bias education and positive and inclusive designs, accessible capabilities, and inclusivity in gathering requirements for digital services.
CACI has pledged to promote equality of opportunity within our supply chain, and work with a diverse range, including specialist Small and Medium Enterprise (SME)s. Our network is diverse and wide ranging in terms of skill set, age of business, make up of employees, geographical location, and therefore varying business cultures and diversity of individuals.
We are focussed on creating opportunities from the following groups who experience barriers to employment :
-Long term unemployed
-Armed forces veterans
-Mothers returning to work
-Care leavers - Equal opportunity
-
Equal opportunity
CACI’s Equal Opportunities policy formalises our approach to not discriminate against any employee on the basis of sex or sexual orientation, marital or civil partner status, gender reassignment, race, religion or belief, colour, nationality, ethnic or national origin, disability or age, pregnancy or maternity or other characteristics defined in anti-discrimination legislation (Protected Characteristics), or trade union membership or the fact that they are a part-time worker or a fixed-term employee. Our employees and applicants for employment with CACI are not disadvantaged by any policies or conditions of service which cannot be justified as necessary for operational purposes.
CACI is dedicated to ensuring our work environment, operational delivery and recruitment processes accommodate people with disabilities. Adjustments are made to ensure that those with disabilities are included and supported in our workplaces.
Our Workplace Adjustment Passport (WAP) enables employees to declare a disability, workplace adjustments are driven at company level.
CACI has signed up to the Disability Confident Scheme, formalising our commitment to play a lead role in changing attitudes for the better. We aim to successfully employ and retain disabled people and/or those with health conditions. When designing internal training or selecting an external partner, staff are consulted to capture any specialist needs to tailor sessions, including location, means of delivery and materials. This ensures all staff can develop in a comfortable and accessible environment.
CACI also works closely with the National Autistic Society to create an inclusive recruitment process, partnering with their Autism at Work programme; actively supporting neurodiverse candidates to flourish.
CACI have funded the creation of a number of staff networks, where employees with protected characteristics have time and resources to share ideas and support in a safe private environment. CACI have also offered specific training and talks from speakers related to these characteristics. - Wellbeing
-
Wellbeing
CACI already has a range of comprehensive support initiatives that have been implemented to aid the health and wellbeing of our workforce (including contractors). Below is a comprehensive list, with specific reference to the six standards of Mental Health at Work commitment.
Promotion of an Open Culture around Mental Health:
-Team of 18 Mental Health First Aiders
-Conduct regular drop-in sessions for all staff, delivered by a Mental Health First Aider Team, focus on a particular element of Mental Health.
Prioritising Mental Health in the Workplace by developing and delivering a systematic programme of activity:
-Regular check-ins for staff and our contractor workforce
-Annual Staff Satisfaction Survey, which includes a section on Health & Wellbeing
-Free 24/7 professional counselling
-Private healthcare and health and wellbeing plan (extendable to family members/dependents)
-Employee Assistance Programme
-Discounted gym memberships
-Physiotherapy
-Medical services
-Mental Health First Aider programme
-Stress assessments
Proactively ensure work design and organisational culture to drive positive mental health outcomes
-Comprehensive property and facilities management, ensuring modern, comfortable and state of the art technology for all employees
-Distributed Working Programme, allowing employees and contractors to structure their working week in a way that suits their preference and personal commitments whilst delivering against their work accountabilities
-Open and honest communications at all levels throughout the organisation
Increased organisational confidence and capability:
-Dedicated area of our company intranet for mental health and wellbeing, including various supporting resources and colleagues
-Line Managers and Career Coaches trained in aspects of mental health
Provide mental health tools and support:
-Formal Mental Health First Aid Programme including a team of MHFAs
Increase transparency and accountability through internal and external reporting:
-Publish the results of our annual staff satisfaction survey to all staff. Includes Mental Health and Wellbeing, actions taken and areas for improvement
Pricing
- Price
- £17,500 a licence a year
- Discount for educational organisations
- Yes
- Free trial available
- No