COHESIVE UK GROUP LIMITED

AssetWise ALIM

AssetWise ALIM is a cloud-hosted business process solution to enable BIM Level 2 but also a platform for BIM Level 3 (asset-centric) solution. AssetWise ALIM enables Management of Change, Configuration Management, Asset Information Management, Document Management and Control, Contract Management as well as nuclear approved document/asset management.

Features

• Asset Information Management - asset registry and tag management
• Management of Change and Configuration Management (CMII)
• Document Management and Control (Transmittals, RFIs, Comment Tracking, Business Workflow)
• Records Management (in accordance with DoD5015, MoReq)
• Spatial and Linear Network Management, including Pavements, Structures, Geotechnics, Drainage
• Compliance and Safety including Requirements Management
• Comprehensive Audit Trail capabilities
• Integrated 2D/3D Model Management
• Enterprise Interoperability Service

Benefits

• Simplified access to enterprise information by all project stakeholders
• Reduced training and license costs through fewer systems
• Improved decision making through controlled access to accurate trusted information
• Enables automated compliance with industry/regulatory standards
• Single Source of Truth for all Asset and related Information
• Easy to access all Asset and related Information in context
• Maximise re-use of information throughout the lifecycle of a project
• Improve accuracy of available information creating a safer workplace
• Reduce operational costs by reducing search time for information
• Reduce asset handover cost through increased efficiency of electronic handover

£59,870 an instance a year

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at matt.blackwell@cohesivegroup.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

892203102935735

Contact

Matt Blackwell
+447717838847
matt.blackwell@cohesivegroup.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: The solution can be integrated with Bentley ProjectWise to extend its information management capabilities. This provides a full Common Data Environment (CDE) environment. It can also be used with Bentley's Recurring Services.
• Cloud deployment model: Public cloud
• Service constraints: Patching and maintenance windows are scheduled every month to ensure the security and reliability of the service. A notice will be provided and some service disruption may occur during these out-of-hours windows.
• System requirements: All mandatory requirements covered with the offered service

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Response times are covered by an SLA and are based on priority. P1 - Availability Support 24x7 - Response 1 hour - Resolution Worked continuously until resolved - Update Interval - 1 hour P2 - Availability Support 24x5 - Response 2 Business Hours - Resolution 1 Business Day – Update Interval 4 hours P3 - Availability Support 24x5 - Response 4 Business Hours - Resolution 10 Business Days - Update Interval 1 Business Day P4 - Availability Support 24x5 - Response 8 Business Hours - Resolution Mutually Agreed - Update Interval Mutually Agreed
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: A standard SLA is Included with the subscription providing 24x7 uptime, support, RPO and RTO and product upgrades. Bentley offers a Recurring Advancement Services Program which is a tailored offering to achieve your ever-evolving desired business outcomes by advancing your digital workflows using Bentley applications.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: After the cloud service is enabled we will engage with the users (stakeholders, representatives from various departments) to define configuration details. Once the system is finally configured, we will perform on-site or remote training sessions for each group/role. There are options to share video, training material, and prepare custom training material. The implementation team will provide remote early life support in the first two weeks following the go live.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: There are different ways to extract data depending on the volume of data to be extracted. It ranges from simple document check out, to using a bulk export utility or automated using SSIS packages.
• End-of-contract process: We recommend engaging with us to get your data extracted before the contract ends. At a minimum, we will provide the database and file repositories.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: The main UI is a web front-end that can be used on desktop computers, but also on mobile devices.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AAA
• Description of service interface: Web-based interface access through a browser
• Accessibility standards: WCAG 2.1 AAA
• Accessibility testing: No specific interface testing with users of assistive technology has been done.
• API: Yes
• What users can and can't do using the API: The API allows you to read and write data to the system and also allows you to make some configuration changes to it. Customising the UI, adding additional event handlers, wizards or business rules can be provided as an add-on service.
• API documentation: Yes
• API documentation formats:
  • Open API (also known as Swagger)
  • Other
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: Bentley AssetWise ALIM has APIs to customise the user interface, add event handlers and business logic. Bentley services can be used to build server-side customisations for the cloud environment using this API. Bentleys RESTful API allows users to connect to the system to create their own customisations. It means you can build your own customisation to create/modify and delete any AssetWise ALIM object in any way you want

Scaling

• Independence of resources: Systems are logically separated in a virtual cloud environment. All systems are monitored in real time for performance and availability.

Analytics

• Service usage metrics: Yes
• Metrics types: Usage statistics are provided within a quarterly report. These reports include SLA statistics, including uptime and Service Request resolution.
• Reporting types: Reports on request

Resellers

• Supplier type: Reseller (no extras)
• Organisation whose services are being resold: Bentley Systems

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: In-house
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: The system has multiple options to export data ranging from simply copying out, via bulk export or even automated using SSIS packages. Which option is most appropriate depends on the purpose of the export.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • MS Excel
  • PDF
• Data import formats:
  • CSV
  • Other
• Other data import formats: MS Excel

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • Other
• Other protection between networks: HTTPS
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • Other
• Other protection within supplier network: Logging of service, user, file integrity monitoring, and network intrusion detection are logged and correlated to detect suspicious network behavior. We provide, and Azure provides, tools to protect against data leaks. IT tools such as CrowdStrike are used to detect suspicious activity and protect against data leaks.

Availability and resilience

• Guaranteed availability: 99.9%, assured by contractual commitment. Service credits when service availability drops below SLA level in a month.
• Approach to resilience: All services are deployed in a fully redundant configuration within fully redundant data centres meaning that any failure of equipment, service provider or software service will result in zero, or minimal, impact to the overall service.
• Outage reporting: Planned and unplanned outage notification emails are sent to registered users for affected systems.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
  • Other
• Other user authentication: Our IMS authenticates through the users Identity Provider. If MFA is enabled by the user then by default it is utilised in the authentication process. We currently support federated identity via the OIDC, SAML2 protocol, so MFA is supported via your identity provider.
• Access restrictions in management interfaces and support channels: We follow a role based access (RBAC) process to approve and review all access to infrastructure and data. We have controls in place to restrict access, provide separation of duties, enforce role-based access and has a least privilege access principle. Segregation of duties is split by tasks upon the individual responsible group.
• Access restriction testing frequency: At least once a year
• Management access authentication: Other
• Description of management access authentication: We follow a role based access (RBAC) process to approve and review all access to infrastructure and data. We have controls in place to restrict access, provide separation of duties, enforce role-based access and has a least privilege access principle. Segregation of duties is split by tasks upon the individual responsible group. In order for an internal administrator to access a system using this account they must be on our network. Non-colleague network access (via RDP) has Two Factor Authentication in place.

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: A-Lign
• ISO/IEC 27001 accreditation date: 20/10/2021
• What the ISO/IEC 27001 doesn’t cover: The Statement of Applicability and certified scope is available at https://trustportal.bentley.com
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • ISO 27001:2013 certification for Bentley Managed Services platform
  • ISO 27001:2013 is not applicable to the platform hosting AssetWise-ALIM
  • Company-wide ISO27001 certification in progress - expected completion Q1 2025

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Information Security policies are designed utilising the ISO 27001:2013 framework. Policies are reviewed and audited by a third party on an annual basis. All colleagues are required to review and acknowledge our Information Security Policy upon hire and thereafter annually. The policies themselves are emailed out at least annually and reside permanently on our intranet site for quick retrieval.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: Configuration and Change Management follow the ITIL framework and policies and procedures are documented with various security standards. All SaaS offerings go through a cloud approval process and are scanned for vulnerabilities prior to production.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Vulnerability management is conducted through various technologies internal and external to our network. Threats are identified using industry standard listings and patches/updates are applied at least monthly or as needed based on criticality.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: IDS/IPS is active on the network perimeter and on selected systems under the scope for SOC2 and ISO27001:2013 certifications. We have an Incident Management Service Plan that includes cybersecurity events. We can quarantine any system on demand and will do so based on its incident response process. In the event of an incident, Our incident response plan is compliant with GDPR requirements. Information security events will be assessed and a decision will be made if the event should be considered a security incident. Reporting requirements shall align with the corporate Incident Response Plan.
• Incident management type: Supplier-defined controls
• Incident management approach: The Incident Management process covers all aspects of a potential incident from start to finish with defined procedures and colleague involvement. Common events are handled depending on severity, users have multiple methods of reporting and reports are provided as part of the incident management procedure.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Bentley is more than a software company — we are engaged members of the global community dedicated to advancing the world’s infrastructure. Our success is determined by the skills, dedication, and involvement of extraordinary Bentley colleagues and users around the world. Advancing infrastructure is key to addressing climate change and other environmental challenges and is essential to sustaining economies and improving quality of life. We are proud to support this essential work of our users through our products and expertise in infrastructure engineering software. Bentley has been focused on sustaining and advancing infrastructure since our founding. Building on our 40-year history of positive impact, we are embedding Environmental, Social, and Governance (ESG) priorities across our business. Bentley embraces our responsibility for minimizing our environmental impact. We seek to reduce our footprint even as we work to increase the size of our handprint. Through many measures, we are working to reduce carbon emissions across our operations, advance a strong climate strategy, and fortify the culture of sustainability within our global teams. Bentley’s Environmental Policy (https://www.bentley.com/legal/environmental-policy/) governs our enterprise environmental management practices and details our commitment to environmental responsibility, including the ways in which we expect our colleagues, visitors, vendors, and suppliers to help drive progress towards our environmental goals and priorities. We aim to be a model for best practices in environmental stewardship and in 2023 took addition steps to reduce the environmental impacts in our business. In 2023, Bentley: • Received SBTi approval for near-term (2030) decarbonization targets. • Developed and launched two Bentley-specific educational pathways courses on sustainability for colleagues. • Expanded our environmental management team and monitoring solutions. • Implemented a new travel platform to monitor related emissions in real time and inform our Travel with Purpose Policy.

  Covid-19 recovery

  Our colleagues are essential in driving Bentley’s continued success. Our talent strategy focuses on creating an environment where our colleagues can develop their careers in an inclusive and engaging workplace – one where they feel energized to realize their full potential and talents while making a positive impact by advancing the world’s infrastructure. Our Social strategy focuses on supporting our colleagues, who foster our innovative and welcoming culture, support our communities, and inspire future infrastructure professionals. In 2023, Bentley: • Entered a first-of-its-kind partnership with Engineers Without Borders (EWB) International that includes five years of core funding and executive insights. • Launch of iTwin4Good and Your Voice, Your Action competitions, encouraging the next generation of infrastructure engineers. • Prioritized colleague wellness through two first-time events: OCTO Wellness Challenge and Mental Health Week. • USD 500,000 in STEM-related giving in the Bentley headquarters community The Infrastructure Empowered Workforce Plan (IEWP) is our global strategy enabling managers and colleagues to make responsible and effective choices on the right balance between working from the office and remotely. The IEWP strategy is built on these key principles: • A solid foundation of trust and accountability • A focus on support and flexibility • The belief that meaningful collaboration creates success for all of us In 2023, we formalized the IEWP strategy to ensure all colleagues had the flexibility to succeed whether working from home, in a Bentley office, or in a hybrid environment. Part of the process included launching a hardware update program where colleagues were equipped with state-of-the-art technology, regardless of where they were working from. Colleague feedback also led to plans for increased collaboration and meaningful connections both in person and virtually in 2024.

  Tackling economic inequality

  At Bentley, our colleagues come from many cultures and backgrounds. They are based in 45 countries around the world and speak 66 languages. All these colleagues contribute their own unique and valued perspectives that drive our success as an organization. We empower colleagues to be highly productive and own their work and careers by supporting an environment where all colleagues feel heard, valued, represented, and welcomed. We continue to expand and deepen our commitment to Diversity, Equity, and Inclusion (DEI) through programming, offerings, and partnerships that allow us to grow a more diverse, more inclusive, and more innovative workforce that is helping to shape the world’s infrastructure. While our priorities did not change in 2023, we focused more on supporting colleagues to take the lead in their own growth, leadership, and community-building efforts. We announced an increased budget for colleague resource groups and compensation for group leaders to show our appreciation for their incredible work in supporting a workplace that values belonging. Our renewed focus on philanthropy and impact encourages colleagues to look internally and extends their support for communities. Bentley’s Inclusion, Diversity, and Equity Alliance (IDEA) Program includes resource groups that allow colleagues to join peers from across the business and the globe to build community and foster diversity and inclusion. Since 2020, these colleague-led groups have provided a safe space for Bentley colleagues to have courageous conversations, propose changes to our culture, and create a sense of community. In 2023, IDEA programming continued to be a critical resource for support and education. Members of Bentley’s executive management have been key partners for providing access to resources and our leadership team. IDEA includes six colleague resource groups: OpenAbilities, OpenPride, People of Color in the U.S. (POCUS), Women at Bentley, Veterans at Bentley, and IDEA India.

  Equal opportunity

  Bentley is an equal opportunity employer and considers all qualified applicants for employment without regard to race, color, sex, sexual orientation, gender identity, disability, protected veteran status, religion, national origin, age, or any other protected characteristic. This commitment extends to all aspects of employment, including, but not limited to, hiring, placement, promotion, compensation, and training. EEO is the Law (https://www.eeoc.gov/sites/default/files/migrated_files/employers/poster_screen_reader_optimized.pdf) and EEO is the Law Supplement (https://www.dol.gov/sites/dolgov/files/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf) documents provide additional information about your rights as an applicant under the law. Bentley Policy on EEO, Affirmative Action and Pay Transparency Non-Discrimination - https://www.bentley.com/wp-content/uploads/Bentley-EEOAA-Statement-of-Policy.pdf Bentley participates in e-Verify / Bentley participate in e-Verify / Right to Work Notice - https://www.bentley.com/wp-content/uploads/E-Verify-Poster.pdf

  Wellbeing

  Core to Bentley’s health and wellness programs is My Wellbeing, promoting health-related initiatives where the outcomes strengthen engagement so that colleagues around the world can share resources and ideas to inspire healthy living. In 2023, Bentley’s wellness programs focused on supporting the mental health of colleagues and ensuring a healthy work-life balance. We prioritized colleague wellness by reminding colleagues regularly to take time off to rest and unwind outside of work, facilitating our inaugural Bentley Mental Health Week, and continuing a focus on the Mental Health First Aid Program (https://mhfainternational.org/). Bentley Mental Health week encouraged self-reflection, highlighting real stories of mental health in the workplace, promoting internal and external resources, and encouraging team and individual activities focused on mental health. To further engage our colleagues, we encouraged colleagues to complete a Mental Health Awareness quiz and donated USD 500 to a qualified nonprofit mental health charity, chosen by a participating colleague. One popular wellness initiative posed the question: could 300 Bentley colleagues collectively walk, run, and cycle around the globe in a month? The goal of the first OCTO (Office of the Chief Technology Officer) Wellness Challenge was to get colleagues moving outdoors with the bonus that if they together travelled approximately 40,000 kilometers around the globe, Bentley would donate USD 5,000 to Water for People. Seventy-seven teams of colleagues participated, collaborating on a fitness app to share photos of inspirational locales, examples of #wellnessatwork, and engage in friendly competition. Colleagues met the initial 40,000-kilometer goal within 10 days. By the close of the month, participants had run the equivalent of 221 marathons, walked the length of the Great Wall of China six times over, and cycled the distance of the Tour de France nine times. The challenge embodied the #OneBentley spirit and raised USD 12,500 for Water for People.

Pricing

• Price: £59,870 an instance a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at matt.blackwell@cohesivegroup.com. Tell them what format you need. It will help if you say what assistive technology you use.