NOVA BLUE TECHNOLOGIES LIMITED

Nova Blue MIDAS

MIDAS is Nova Blue’s full spectrum cybersecurity as a managed service for M365 or Google Workspace. We cover all elements of cybersecurity rather than providing a single point solution. It also provides your organisation with 24x7 Extended Detection and Response (XDR) capabilities, managed by world class cybersecurity experts.

Features

• Secure email configuration, management and monitoring.
• Secure endpoint configuration, management and monitoring.
• Secure M365 or GWS tenant configuration, management and monitoring.
• Secure cloud application configuration, management and monitoring.
• Vulnerability management
• Insider threat detection
• Data loss prevention
• Workforce engagement and cybersecurity education.
• Phishing and spear-phishing simulation.
• Mobile Device Management.

Benefits

• Not just monitoring; we preconfigure your entire tenant for security.
• Stops attacks before they start.
• 24x7x365 monitoring reduces cyber risks wholistically.
• Reduces the entire cyber attack surface.
• Educates entire workforce developing cyber culture and reducing risk.
• Manages risk on endpoints, including mobiles.

£2,000 to £4,000 a unit a month

• Education pricing available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at hello@nova-blue.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

690034955187719

Contact

Steven Mason
+44 1242 907077
hello@nova-blue.co.uk

Planning

• Planning service: Yes
• How the planning service works: At the core of our MIDAS cybersecurity service lies a commitment to bespoke, client-centric planning. Recognizing that each organization's security needs are as unique as its fingerprint, we ensure that every client receives a tailored cybersecurity programme. This customization is the cornerstone of our approach, enabling us to address the specific vulnerabilities, compliance requirements, and business objectives of each client.; ; Our planning process is spearheaded by a team of world-class security architects. These experts bring a wealth of experience and a proactive stance towards cybersecurity, ensuring that each plan is not only reactive to the current threat landscape but also anticipatory of future risks. They work closely with clients to understand their operational context, technological infrastructure, and strategic goals.; ; This collaborative approach allows us to devise a comprehensive cybersecurity program that encompasses risk assessment, threat identification, mitigation strategies, and continuous monitoring. Our bespoke plans are designed to be dynamic, evolving with the cybersecurity landscape, while being flexible enough to support the client’s own growth and changes.; ; By choosing MIDAS, clients are assured of a cybersecurity partner that values customization, expertise, and proactive planning, ensuring robust protection tailored to their specific needs.
• Planning service works with specific services: No

Training

• Training service provided: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: Our MIDAS cybersecurity service is distinguished not only by its bespoke strategic planning but also by its seamless onboarding process, meticulously tailored to meet each client's specific needs. We recognize the importance of integrating our clients smoothly into our security framework, aiming to empower their operations with our comprehensive services without any disruption.; ; A dedicated onboarding engineer is assigned to every client, fostering a personalized approach from the outset. This engineer works in partnership with the client to develop an onboarding plan that respects their unique operational context. Our methodical approach ensures that the onboarding process reinforces our clients’ cybersecurity posture efficiently, without imposing undue strain on their existing workflows.; ; By establishing clear Key Performance Indicators (KPIs) for onboarding, we maintain a transparent and measurable process. These KPIs enable us to monitor our progress effectively, tackle any emerging challenges swiftly, and fine-tune our strategies as necessary. Our commitment to meeting the agreed upon timelines through these KPIs underscores our dedication to client satisfaction and service excellence.
• Setup or migration service is for specific cloud services: No

Quality assurance and performance testing

• Quality assurance and performance testing service: Yes
• How the quality assurance and performance testing works: At the heart of our MIDAS cybersecurity service is a relentless commitment to quality and performance, guided by clearly defined Key Performance Indicators (KPIs) that we meticulously manage throughout the service lifecycle. These KPIs serve as our benchmarks for service excellence, enabling us to deliver consistent, high-quality cybersecurity protection.; ; To ensure transparency and ongoing alignment with our clients’ expectations, we provide comprehensive monthly reports on these KPIs. These reports offer insights into our service performance, highlight achievements, and identify areas for continuous improvement. This level of detailed reporting fosters an environment of trust and collaboration, ensuring clients are always informed and engaged with their cybersecurity posture.; ; Further strengthening our commitment to service quality is our bi-annual service review sessions. These sessions are a critical component of our client engagement strategy, offering an opportunity for in-depth discussions about the service’s effectiveness and fit for purpose. During these sessions, we welcome client feedback, discuss any evolving security needs, and collectively evaluate the service’s alignment with their goals. These regular interactions ensure that our service remains responsive to our clients’ needs and continues to deliver the highest standards of cybersecurity protection.

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
  • Other
• Other security services:
  • VCISO services
  • NIST 800-171 compliance assistance.
  • FCA / PRA compliance assistance.
  • Cyber Essentials / Cyber Essentials Plus compliance assistance.
  • Tabletop exercises
  • Incident response planning and playbook development.
  • ISO2700X compliance assistance.
• Certified security testers: Yes
• Security testing certifications: CHECK

Ongoing support

• Ongoing support service: Yes
• Types of service supported: Hosting or software provided by a third-party organisation
• How the support service works: Our MIDAS service offers unparalleled ongoing support, specializing in the management of leading security tools within the Microsoft 365 Defender suite and Google Workspace. This focus enables us to provide targeted and effective cybersecurity solutions, harnessing the sophisticated capabilities of these platforms to safeguard our clients’ digital environments.; ; Through MIDAS, clients gain access to a dedicated team of cybersecurity experts skilled in optimizing and managing the comprehensive security features of Microsoft 365 Defender and Google Workspace. Our support extends from initial setup and configuration to continuous monitoring, threat detection, and incident response. This ensures that our clients’ security postures are not only robust but also dynamically aligned with the evolving threat landscape.; ; We believe in proactive engagement and continuous improvement. To this end, our team regularly updates security configurations, tailors threat intelligence to the specific needs of each client, and provides actionable insights to enhance security measures. We use a series of baselines specifically for these cloud services based on the CISA SCUBA baselines. Our support model is designed to be adaptive, responsive, and aligned with our clients’ operational rhythms, ensuring that their business continuity is maintained without compromise.

Service scope

• Service constraints: MIDAS is designed to secure cloud productivity tenants, like M365 and Google Workspace. This includes endpoint monitoring, but if a client has a full on-premises or hybrid configuration, our other managed service (ATLAS) might be a better fit.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Within service agreement levels: within 2 hours.; Outside of service agreement levels: within 24 hours.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Web chat
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: We use Microsoft Teams, and invite clients into our tenant to communicate with clients.
• Web chat accessibility testing: N/A
• Support levels: We have 3 MIDAS service tiers:; Essential - provides services 8x5 (UK hours); Complete - provides services 16x5 (UK hours); Premium - provides services 24x7

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Microsoft

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • CISSP
  • CISSM

Social Value

• Social Value:

  Social Value

  • Tackling economic inequality
  • Wellbeing

  Tackling economic inequality

  Our commitment to social value is deeply embedded in our operational ethos, particularly in how we tackle economic inequality across the UK. At the heart of our recruitment strategy is a focus on 'attitude, aptitude, and appetite' over traditional credentials. This approach allows us to identify and nurture talent from diverse backgrounds, providing them with rigorous training in cybersecurity—a field where skills are critically short. By doing so, we contribute significantly to the development of high-demand skills within the UK, fostering economic resilience and growth.; ; As a fully remote company, we are proud to offer pay scales that are not influenced by geographic location. This policy ensures that individuals living in economically disadvantaged areas have access to the same earning opportunities as those in more affluent regions like London. This approach not only promotes financial equality but also stimulates economic activity and prosperity in areas that are traditionally overlooked.; ; Flexibility is another cornerstone of our work culture. Recognizing the diverse needs of our workforce, we offer unparalleled flexibility in working hours and locations. This policy is particularly beneficial for individuals facing challenges with traditional employment models, such as returning parents or those with caregiving responsibilities. Our aim is to provide a supportive and adaptable work environment where everyone has the opportunity to thrive.; ; Furthermore, our in-house training and mentoring system is designed to upskill employees in cybersecurity and contemporary business practices. This initiative not only enhances their professional development but also ensures they are well-equipped to navigate and succeed in the modern business landscape.; ; Through these practices, we are actively contributing to the reduction of economic inequality in the UK, providing meaningful employment opportunities, and fostering a culture of inclusivity and growth.

  Wellbeing

  At Nova Blue, we prioritize the well-being of our employees as a core value, integrating comprehensive support into every aspect of our workplace culture. Recognizing the importance of mental health, we ensure that a "mental health first aider" is available at all times, providing immediate support and guidance to any team member in need. This initiative is part of our broader commitment to fostering a safe and supportive work environment.; ; Our dedication to well-being is further encapsulated in our "Well-being Manifesto," a document that every member of our team commits to. This manifesto is not just a statement of intent; it is a reflection of our culture. Directors at Nova Blue are evaluated based on well-being metrics, ensuring that our leadership actively promotes and participates in our well-being initiatives.; ; Understanding the power of technology in supporting mental health, we offer all employees free memberships to leading mental health applications, Calm and Headspace. These resources provide accessible tools for mindfulness, meditation, and stress management, empowering our team to maintain their mental health.; ; Well-being is woven into the fabric of our daily operations. We regularly discuss the importance of physical and mental health in daily stand-ups, weekly team meetings, and executive board meetings. By normalizing conversations about well-being, we create an open and supportive environment that recognizes the whole person.; ; In addition to mental health support, we believe in the benefits of physical health for overall well-being. The company covers gym memberships for all employees, encouraging the use of work time for gym attendance. This reinforces our belief that health is indeed wealth, promoting a balanced and healthy lifestyle as a foundation for productivity and happiness.; ; Through these initiatives, Nova Blue is not just a place of employment but a community that values and actively promotes the well-being of every team member.

Pricing

• Price: £2,000 to £4,000 a unit a month
• Discount for educational organisations: Yes

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at hello@nova-blue.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.