Roc Technologies Limited

Business Process Management Service

Business Process Management, increase efficiency and productivity through streamlined operations. Enhance customer focus, improve understanding and communication. Enable digital transformation through automation by process mining, collaborative mapping and modelling – develop a foundation for continuous improvement. Providing Elements, TIBCO and Engage Process software, implementation and ongoing consultancy to ensure success.

Features

• Best in class process software to meet your specific need
• Process consultancy services to implement, enable and sustain your initiative
• Process architecture development to provide a solid foundation for success
• Process mapping in collaborative workshops, at the speed of conversation
• Supporting the development of your own process Centre of Excellence
• Enable and empower people through knowledge communicated effectively
• Create a corporate process asset single version of the truth
• Easiest process methodology to adopt Universal Process Notation (UPN)
• Process analysis using process mining and business intelligence tools
• Enable process digitisation and hyperautomation based transformation

Benefits

• Better business results
• Improve communication from top-to-bottom and end-to-end
• Increased consistency of performance based on common understanding
• Improve employee engagement through empowerment
• Reduce cost of operations by removing error and misunderstanding
• Improved customer experience through optimised customer journey
• Enable effective adoption of change whether system or manual
• Create a foundation for, and culture of, continuous improvement
• A platform for digital transformation and automation
• Advisory from highly skilled and internationally experienced consultants

£700.00 to £1,500.00 a unit a day

• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at publicsector@roctechnologies.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

945192046721582

Contact

Tim Elton
01635 581188
publicsector@roctechnologies.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Hybrid cloud
• Service constraints: None
• System requirements: Modern browser

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: All email and online support requests will receive an immediate automated response. The SLA associated with the specific contract will determine the actual response and resolution timescales, including any variation for weekends and bank holidays. This will typically range from 30 minutes to 2 hours.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Roc offer a range of support services with service level agreements (SLA's) specific to the clients needs. The Support Service from Roc is managed by a Service Delivery Manager (SDM) and Client Manager (CM).
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: All new customers are assigned an Account Manager that will provide proactive support. This also includes the assistance from consultants to ensure the right solution is provisioned and optimised for the use case.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Customers can request a backup database at the end of the contract
• End-of-contract process: Once we have received written notice of termination of the service, it will be scheduled for closure at the agreed date. We will work with you to ensure your data is extracted in the format you require. Extra services may be required to extract data, based on the SFIA rate card.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
  • MacOS
  • Windows
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Re-sizing of windows
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: A SOAP API allows some capability for reading and writing process content.
• Accessibility standards: None or don’t know
• Description of accessibility: Please contact Roc for more information.
• Accessibility testing: Please contact Roc for more information.
• API: Yes
• What users can and can't do using the API: There is a SOAP API that provides some capability more details are available on request
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Roc's Business Process Management Service includes Cloud-based platforms including TIBCO, Q9 Elements and Engage Process. These platforms enable extremely flexible functions to model business processes.

Scaling

• Independence of resources: Customer instances run on dedicated virtual instances using AWS, Azure, Google Compute or RocStac IaaS cloud hosting providers. Where co-location or on-premise hosting has been requested a resilient architecture with duel data centres will typically be implemented.

Analytics

• Service usage metrics: Yes
• Metrics types: A range of metrics are available including Number of active instances Pages per minute User logins Records created per minute etc.
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: TIBCO, Q9 Elements, Engage Process

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: European Economic Area (EEA)
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: Never
• Protecting data at rest: Other
• Other data at rest protection approach: Managed by TIBCO - details available on request.
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Users can export their data in a range of formats/methods such as CSV, API or ODBC connection.
• Data export formats:
  • CSV
  • Other
• Other data export formats: SQL
• Data import formats:
  • CSV
  • Other
• Other data import formats: SQL

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Process-as-a-Service has an agreed Service Availability of up to 99.9%, 24/7
• Approach to resilience: For hosted environments, disaster recovery is built in via a secondary failover environment. For on-premise, you would be responsible for providing the failover environment
• Outage reporting: Email alerts

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
  • Other
• Other user authentication: For online systems (e.g. Customer Portal & API interfaces), all users are required to have a unique username, password and memorable word combination. Customers may also use 2FA authentication tokens
• Access restrictions in management interfaces and support channels: Customers have the option to raise a support request via telephone or email. Roc will always authenticate the identity of the user by validating known phone numbers and asking them for specific characters within their pre-agreed memorable word.
• Access restriction testing frequency: At least every 6 months
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: Between 1 month and 6 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: Between 1 month and 6 months
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Citation ISO Certification Limited
• ISO/IEC 27001 accreditation date: 26/4/2018
• What the ISO/IEC 27001 doesn’t cover: Individual cloud service providers and datacenters. We require them to hold their own accreditations.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • ISO/IEC 27001
  • Other
• Other security governance standards: ISO9001, ISO14001, SafeContractor
• Information security policies and processes: • Information Security Policy. • Clear Desk Policy. • Access Control Policy. • Information Classification Policy. • Data Protection Policy. • Network Access Control Policy. • Information Exchange Policy. • Password Policy. • Cryptographic Policy. • Acceptable Use Policy. • CCTV Policy. • Physical Security Policy.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Where there are minor or major releases to the platform, each application or instance contains a versioning audit trail and an ability to update to the latest versions. Release notes are included to allow impact analysis of updates. Major revisions to the platform are pen tested by independent testers and evidence and results can be provided on request.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: As part of the Business Continuity Plan (BCP), a Business Impact Analysis (BIA) is completed along with a Risk Analysis. This establishes the threats and provides a route to mitigate against those threats. Once a notice has been received by our technical team of a patch release, which could arrive from multiple sources, it’s prioritised and the patch(es) made during a period of in-activity, out of hours.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: Following best practice from the National Cyber Security Centre, UKCloud protects both its Assured and Elevated platforms with enhanced protective monitoring services (SIEM), at the hypervisor level and below. Our approach to protective monitoring continues to align with the Protective Monitoring Controls (PMC 1-12) outlined in CESG document GPG13 (Protective Monitoring for HMG ICT Systems). It includes checks on time sources, cross-boundary traffic, suspicious activities at a boundary, network connections and the status of backups, amongst many others. All alerts are immediately notified to the UKCloud NOC for prompt investigation.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: We have a documented incident management policy and process, which have been implemented, maintained and assessed in accordance with the guidance from ITIL v.3 and the current ISO20000 and ISO27001 standards. This activity is responsible for the progression of alerts generated by automated monitoring systems, issues identified by Roc/Supplier personnel, and incidents identified and reported to Roc/Suppliers by its customers and partners. All incidents are promptly reported into a central ticketing system, which ensures that each is promptly assigned to an appropriate resource, and its progress tracked (and escalated, as required) to resolution.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Roc is accredited to ISO14001, has a Carbon Reduction Plan and is committed to achieving Net Zero in Scope 1&2 by 2035 and Scope 3 by 2050. We have a comprehensive understanding of how to influence stakeholders to support environmental protection and improvement. Our approach involves engaging all relevant parties, raising awareness of environmental opportunities and encouraging participation in sustainable practices. ; To reconnect people with the environment and increase awareness of ways to protect and enhance it, we undertake these activities:; • Engagement: engaging with stakeholders to raise awareness of the benefits of environmental opportunities identified. Through workshops, seminars, and outreach programs, we highlight the importance of environmental conservation and encourage active participation in related initiatives.; • Co-design/creation: working collaboratively with stakeholders to devise and deliver solutions that support environmental objectives. Involving stakeholders in the design and implementation process ensures that initiatives are tailored to meet their needs and priorities while maximising environmental benefits.; • Training and education: providing training and education to influence behaviour and promote sustainable practices among staff, suppliers, Partners and other stakeholders. This may include workshops on waste reduction, energy efficiency, and sustainable resource management. Empowering individuals to make informed decisions that minimise their environmental footprint.; • Partnering/collaborating: partnering with community organisations and other stakeholders to engage the community in environmental initiatives related to contracts. Experienced in collaborating with local groups, we leverage expertise/eesources to support environmental objectives and foster community involvement in sustainability efforts.; • Volunteering opportunities: offering volunteering opportunities for contract workforce, enabling them to undertake activities that encourage direct positive impact on the environment. This may include tree planting, litter clean-up campaigns, or habitat restoration projects, providing hands-on opportunities for individuals to contribute to environmental improvement efforts.; Through this, we actively engage stakeholders in supporting environmental protection/improvement and fostering a collective sustainability commitment.

  Covid-19 recovery

  Roc is a people-based business and we have worked closely with our teams to co-create Covid recovery plans. Roc had significant revenue streams from the hospitality and aviation sector resulting in exposure and revenue reduction during the Pandemic. Following the Covid 19 Pandemic Roc created a Post Pandemic Recovery Programme. This programme is led by our employee forum with representatives from across the business. Initiative include:; ; Organisation-wide impact assessment re-baselining our business plan/strategy and to inform recovery plans; Strategy to minimise the impact whilst maximising the opportunities created by the Pandemic; A review of our financial structure and funding solutions; Moving legacy systems to SAS based Cloud solutions; Creating a business plan to mitigate the impact of a future Pandemic's; Investing in staff training and awareness to identify opportunities where Roc could support organisations with their post-Covid recovery plans ; Providing on-line desk booking solutions to encourage our staff to return safely to the office; Creating an apprenticeship programme across the business bringing on new talent; Building partnerships with local suppliers to support the local economy; Working with our investment partner BGF to identify opportunities for growth and investment, especially in STEM ; Partnering with Higher Education to improve student safety and student experience, encouraging students to return to Campus; Implementing space utilisation solutions to provide employees with real time visibility of office utilisation and space availability; Creating sustainability solutions that help clients with providing more environmentally friendly workplaces and working practices to support the post pandemic recovery; Investment in capabilities including our Network and Cyber Practices, aligning to high-growth areas underpinning our economic recovery.; ; Our planning means Roc is confident that it has a solid business foundation to mitigate the impact of any future Pandemics whilst taking advantage of Post Covid-19, focussing on relevant solutions/services for employees, partners and clients.

  Tackling economic inequality

  One of Roc’s key mantras is ‘to make a difference in the community of which we serve’. We are committed to tackling inequality at the root by creating new business and employment opportunities and by offering enhanced education and training.; Where possible Roc always partner with local suppliers as required in the delivery of our projects which creates employment and apprenticeship opportunities. Alongside this Roc promote prompt payment principles and we mirror this expectation across our supplier chain.; Roc is dedicated to enhancing the lives of disadvantaged children and young people across Roc and our customers local communities, this has been demonstrated through existing youth club sponsorships, and regular charitable donations.; Community investment – Greenham Common Trust ; Roc have recently moved into a new headquarters, leased by the Greenham Common Trust. The Trust’s sole aim is to promote charitable purposes for the benefit of the inhabitants of Newbury, where Roc is located, and its environs. ; Whilst mostly promoting social inclusion and community projects, the Trust also donate and contribute toward the local environment, such as restoration to the local Common, environmental improvements to local areas and construction of local wildlife ponds. ; By leasing our headquarters from such an organisation, this ensures Roc are ensuring that costs for this lease are being used to directly benefit the local environment. ; Roc have defined cultural values, one of which is to, “Make a Difference,” which underpins our support and involvement in community initiatives and charitable work. We do this in the form of sponsorship, donations to national and local charities, which may also be suggested by our staff, and the funding of community projects. Every suggestion is given consideration throughout Good Cause grant scheme, whereby our employees apply for funds to support local charities and initiatives which are important to them.

  Equal opportunity

  Roc is committed to promoting equal opportunity within our organisation and our supply chain through focus on Equality, Diversity and Inclusion.; Aiming to eliminate unlawful discrimination, harassment, and victimisation through:; • Educating all staff about the Act's provisions, emphasising the prohibition of discriminatory behaviour. ; • Regularly assessing policies, procedures, and decision-making processes, identifying/rectifying any discriminatory elements. ; • Establishing clear channels for reporting ensuring prompt investigation and appropriate action to ensure compliance.; We advance Equal Opportunity by: ; • Gathering data on protected characteristics to understand disparities. ; • Conducting equality impact assessments for new policies, services, and projects. Consider how they affect different groups, adjust accordingly. ; • Ensuring that reasonable adjustments are made to accommodate individuals with disabilities or other protected characteristics. ; Fostering good relations by promoting inclusion, engaging with the community, and celebrating diversity. ; We regularly share information demonstrating compliance with the Equality Duty and set measurable equality objectives. Roc is an equal opportunities employer, providing a service free from unfair and unlawful discrimination. ; Our commitment - We value people as individuals with diverse opinions, cultures, lifestyles, and circumstances. All employees are covered by our Equality, Inclusion & Diversity Policy individual differences are recognised/valued, and every employee is entitled to a dignified and respectful working environment. We offer training, development, and progression opportunities to all employees and review all our employment practices to ensure fairness. Over 50% of our leadership is female.; Our commitment as a Service Provider - We aim to fulfil roles from within the local regions and form partnerships with local organisations in service delivery. We aim to provide services to all clients regardless of their characteristics. We believe that equality in the workplace is good management practice and makes sound business sense. We seek to encourage applicants from diverse and underrepresented supported by flexible working policies.

  Wellbeing

  Roc is committed to provide a safe working environment that prioritises the physical and mental wellbeing of our staff. Roc has trained counsellors who are available to discuss any wellbeing concerns with colleagues. Our ESG forum is responsible for identifying and tackling any wellbeing related working issues.; Our family leave offering is to be improved for FY25, offering enhanced maternity, paternity, adoption and shared parental pay provisions. We will review the impact of this in our employee survey and continue to review our offering to ensure that we continually addressing the needs of working parents. ; We offer genuine flexibility over place of work for every role that isn’t subject to the conditions of a client contract (i.e. some roles are required by the client to be present at a particular location or for particular hours). All our roles are offered as either hybrid (with free choice of office days) or remote with flexible working hours considered where possible. Implementation of tax efficient nursery schemes to support working parents (salary sacrifice) – currently under consideration. Implementation of Roc Academy, utilising our apprenticeship levy. Targeting at least 40% spend at levels 2-4. Ensuring that a portion of our training budget is targeted at digital skills and levels 2-4. ; Our employees are our business, therefore Roc devotes a lot of resource to their wellbeing. These include access to a wide range of support materials on a multitude of topics ranging from mental health, to working from home to good nutrition, reducing stress and general good health; a 24hr mental and physical health hotline; Mental health first aiders; and Support groups – e.g. related to the menopause.; Roc provide an employee benefits scheme to all employees which also provides access to wellbeing advise with qualified counselling sessions if required.

Pricing

• Price: £700.00 to £1,500.00 a unit a day
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: Trial versions of some software either as blank instances with support or with accelerator content already included.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at publicsector@roctechnologies.com. Tell them what format you need. It will help if you say what assistive technology you use.