MASTEK SYSTEMS COMPANY LTD

Evo Workforce Scheduler

Evo Workforce Scheduler provides deep functionality for time and workforce tracking, advanced scheduling, analytics and complex absence management. It provides effective ways of managing shifts based on staff requirements and business needs for Local Government, Central Government, Higher Education, Health and Police & Emergency Services

Features

• Create shift schedules in just one click
• Time & attendance integration
• Effective work schedules
• Empowerment of employees with self-service
• Integration with Oracle Cloud HCM
• Payroll integration

Benefits

• Automated roster creation
• Quick roster to enable to support unforeseen circumstances
• Full integration with Oracle HCM
• Oracle HCM look and feel giving a single user experience
• Graphical representation of staffing and exceptions

£1.50 a person a month

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at kelvin.worley@mastek.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

956097012481339

Contact

Kelvin Worley
07714521628
kelvin.worley@mastek.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Evo Workforce Scheduler is equipped with the in-built integrations for Oracle HCM, Oracle Payroll and Oracle Projects facilitating easy data transfer to Evo Workforce Scheduler without any human intervention. Approved overtime and regular hours can be transferred to Oracle Payroll once timesheets are approved.
• Cloud deployment model:
  • Public cloud
  • Private cloud
• Service constraints: Evo Workforce Scheduler is built on Oracle PaaS and any applicable upgrades etc will be scheduled in accordance with the Oracle Software as a Service updates
• System requirements: Oracle Platform as a Service (PaaS)

User support

• Email or online ticketing support: Yes, at extra cost
• Support response times: Severity 1 - Showstopper, not able to continue business. No work-around or manual process available. ; Response Time: 1 Business Hour. ; ; Severity 2 – Technical defect/bug. Error impacting business, but business can continue with minimal work around ; Response Time: 4 Business Hours; ; Severity3 – Medium - Technical defect/bug. Error not impacting business, as work around is available for the same ; Response Time: 16 Business Hours; ; Severity 4 - Cosmetic/Component Failure Malfunction causing virtually no impact on Client’s ability to operate significant business processes or production.; Response Time: 24 Business Hours
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Software support levels are in accordance with support times outlined above with the solution upgrades being governed by the Oracle PaaS updates.; On-site support in respect of consultancy and training can be provided based on the standard daily rates on a time & material basis or on a fixed price/fixed scope basis
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: We start training users from Day 1 of the implementation so by the end of the implementation users will become self sufficient should any issues arise. All training documentation is made available for the users. As per the users requirements we will be happy to provide the training onsite or offshore
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: The data will be stored on Oracle servers and the data extraction and removal criteria will be the standard policy followed by Oracle globally. Oracle provides numerous tools and techniques to retrieve data.
• End-of-contract process: The data will be stored on Oracle servers and the data extraction and removal criteria will be the standard policy followed by Oracle globally. Oracle provides numerous tools and techniques to retrieve data.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: None or don’t know
• API: No
• Customisation available: Yes
• Description of customisation: We provide customisations to EWS where they are needed in order to support business requirements. This could be in the form of enhancements to the existing process or the addition of a sub-process to an existing process.

Scaling

• Independence of resources: As data is stored on the Oracle Cloud, Oracle policies ensure users are not affected by the demand other users are placing on your service.

Analytics

• Service usage metrics: Yes
• Metrics types: The data will be stored on Oracle servers and the data extraction and removal criteria will be the standard policy followed by Oracle globally. Oracle provides numerous tools and techniques to retrieve data.
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: Never
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: The data will be stored on Oracle servers and the data extraction and removal criteria will be the standard policy followed by Oracle globally. Oracle provides numerous tools and techniques to retrieve data.
• Data export formats: CSV
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

• Guaranteed availability: See Oracle standard hosting procedures document
• Approach to resilience: See Oracle standard hosting procedures document
• Outage reporting: See Oracle standard hosting procedures document

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
• Access restrictions in management interfaces and support channels: Access to Oracle Cloud systems is controlled by restricting access to only authorized personnel. Oracle enforces strong password policies on infrastructure components and cloud management systems used to operate the Oracle Cloud environment. This includes requiring a minimum password length, password complexity, and regular password changes. Strong passwords or multi-factor authentication are used throughout the infrastructure to reduce the risk of intruders gaining access through exploitation of user accounts.; System access controls include system authentication, authorization, access approval, provisioning, and revocation for employees and any other Oracle-defined 'users'. Customer is responsible for all End User administration within the program.
• Access restriction testing frequency: At least every 6 months
• Management access authentication: 2-factor authentication

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: WRG Certification Organization India
• ISO/IEC 27001 accreditation date: 13/01/2017
• What the ISO/IEC 27001 doesn’t cover: Design, Developement and Implementation of software, Consulting services and solution of IT is covered under ISO/IEC 27001 certification
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Evosys is certified with ISO 9001-2008 and ISO 27001-2013 As Evosys is platinum partner of Oracle. Oracle is certified with following external Quality Assurance & Accreditation Oracle Corporation UK Ltd is certified with ISO/IEC 27001-2005 Oracle Corporation UK Ltd is certified with ES BN ISO 9001-2008

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: Evosys has considerable experience in supporting clients during the change journey. We are confident that we can deliver a successful technical implementation, but without a correctly executed business change strategy the project outcome could be below expectations. In the absence of a structured business change strategy, supported by an appropriate communication strategy, it is possible that an excellent technical implementation will be judge a failure by the client’s staff who use the new system on a daily basis.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: Implementing a vulnerability management process is all about managing risk. Vulnerability management is the process in which vulnerabilities in IT are identified and the risks of these vulnerabilities are evaluated. This evaluation lead correcting the vulnerabilities and removing the risk or a formal risk acceptance by the management of an organization (e.g. in case the impact of an attack would be low or the cost of correction does not outweigh possible damages to the organization)
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: Evosys may monitor equipment, systems and network traffic at any time, as per Evosys’ Audit Policy. Evosys may monitor messages without prior notice. Evosys is not obliged to monitor email messages
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: This Incident management policy mandates that any individual who suspects that a theft, breach or exposure of protected data or sensitive data has occurred must immediately provide a description of what occurred via e-mail to support@evosysglobal.com, by calling or through the use of the help desk reporting page at “http://evosyserp.evosysglobal.com:8009/faces/login.xhtml” This address and web application are monitored by the Evosys’ Information Security Administrator. This team will investigate all reported thefts, data breaches and exposures to confirm if a theft has occurred. If a theft, breach or exposure has occurred, the Information Security Administrator will follow the appropriate procedure in place.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Fighting climate change:

  Fighting climate change

  For every opportunity we bid in G-Cloud, we will identify and deliver opportunities to deliver environmental benefits (MAC4.1), and influence environmental protection and improvement, e.g. staff, suppliers, customers and communities (MAC4.2). Evosys (as part of the Mastek Group) understands the importance of being an environmentally sustainable business entity. We have a board-approved Carbon Reduction Plan for Net-Zero emissions, an ongoing programme of reduction activities that will ripple down through all our contracts. A summary of our journey so far: We have set targets to reduce our carbon footprint by May 2022 through positive actions following our Baseline Emission Footprint. We have engaged with a leading independent environmental organisation, Carbon Footprint, to advise us on offsetting climate-damaging carbon emissions; communicated internally and externally to encourage more environmentally sustainable working practices, and demonstrate compliance through ESOS and ISO 14001 certification. Following a further appraisal, we will prioritise which carbon reduction initiatives to implement for maximum benefit. Our Carbon Reduction Plan, reinforced by 10 active KPIs: • Engagement with customers, supply chain partners • Influence environmental performance of supply chain • Reduce employees’ travel emissions by 20% • Reduce energy consumption or use only green energy • Increase the sustainability performance of our offices and data centres (CO2 Emissions/ Water usage/ recycling) • Transition to 100% renewable energy by 2040 • Effective recycling of technology equipment • Deploy a waste hierarchy • Changing Behaviours Campaign for all staff to raise awareness and improve personal carbon emissions • Communities’ engagement plan. We align to the UN Sustainable Goals, and UK Environment Agency’s green action plans to: mitigate and adapt to climate change, improve clean air and water, minimise waste, utilise natural resources, sustainability and efficiency, enhance biosecurity, enhance the natural environment, support thriving plants and wildlife and manage exposure to chemicals.
• Covid-19 recovery:

  Covid-19 recovery

  Evosys (as part of the Mastek group) understands the impact of poor mental and physical health on society, the economy, and internally. We support our staff's physical, emotional and mental health and work to create a positive and supportive workplace culture and cascade our commitments to influence our supply chain partners. Our approach is aligned/benchmarked against the Mental Health at Work six standards of commitment and Mind’s Thriving at Work recommendations. For each project within the G-Cloud framework, we will: • Design and communicate our Physical and Mental Health at Work action plan to all involved with each project, including engagement with wider stakeholders • Prioritise well-being/assess risks of work-related stress (Recent WFH surveys/juggling work/parenting). With Silver Oak Health, we offer Employee Well-being/Assistance Program options, including 24/7 access to a dedicated helpline/online/face-to-face counselling • Ensure inclusive and accessible recruitment practices, development practices and retention-focussed activities • Ensure all our delivery partners can demonstrate commitment to the policy outcome and have signed the Mental Health at Work Commitment. We will monitor and report on progress. • Create a programme of events to raise awareness of wellbeing and mental health issues – such as male cancers and Movember – fundraising and educating all involved in the project. These events will be timetabled and communicated through a web portal, and all encouraged to take part • Offer one fully paid volunteering day annually per employee to support local charities – these can be built into mental health awareness or fundraising. • We will provide training for mental health first aiders across the scope of the projects and host time to talk events and webinars (open to the entire ecosystem) on health and wellbeing
• Tackling economic inequality:

  Tackling economic inequality

  Evosys (as part of the Mastek Group) will implement Mastek’s 12-Month Digital Skills Programme Academy, our primary solution to Tackling Economic Inequality and creating employment and training opportunities. Modules, customised with buyers, bespoke to project needs. The benefits include cost-effective resources and a pool of trained project staff. Social and economic benefits by targeting applicants from underrepresented groups who would not usually access careers within digital technology, such as ex-offenders, women returners (we have launched a Women Return to work, ReShine campaign; the focus; on supporting an easy transition into the second innings of careers) over 50 and under 30 without a degree. It provides strategic alignment to reduce the digital skills gap across the UK. Course content: Core specialised technical skill clusters, baseline and digital literacy skills, soft transferable skills, project management and business administration. It addresses the barriers to accessing roles and training within the industry, contributes to social mobility, and encourages participation from under-represented groups promoting equal opportunity (LGBTQ+, Learning difficulties/disabled people, BAME etc.). The methodology is blended learning, combining online virtual sessions and on-job experiences, coaching and mentoring. Our L&D team, technical specialists and innovation teams provide programme design and support. The call for applications will be publicised widely by engaging with LEPS. VCSEs, Jobcentre Plus, schools, colleges (Our STEM engagements), Armed Services, Career Transition Partnership (Supported since July-2020). In addition, we provide level 7 Apprenticeships and Graduate programmes, delivering project capabilities. We ensure schemes exceed 5% of the workforce our 5% Club Charter commitment.
• Equal opportunity:

  Equal opportunity

  Evosys (as part of the Mastek Group) is an equal opportunity employer and positively targets diversity and inequality in employment, skills and pay as a core component of our growth plan. To achieve this, we have: Integrated our Social Value and CSR policies with diversity and equal opportunities as a central tenant; benchmarked by external experts. We conduct quarterly audits of our Supply Chain to minimise the likelihood of inequality occurring in our partner’s business. We have a DEI council with global targets, actively addressing inequality, measuring progress and reporting at board level. We have inclusive and accessible recruitment; have expanded recruitment channels providing parity of opportunities for disadvantaged, BAME, LGBTQ, Women in Tech, Code First Girls, and Disabilities. We ensure staff are disability aware by running workshops with The Disability People to raise understanding and create an inclusive environment. We monitor the diversity spread of job applicants across roles by introducing a recruitment monitoring control form and database. Pay structure (wage bands) framework ensures fairness/lawfulness (addresses the gender pay gap). We benchmarked pay and rewards against the market, consulting with Willis Tower Watson. Our campaigns for applicants for Apprenticeships and our Digital Skills Programme create career paths and jobs, specifically targets hard to reach/disadvantaged socio-economic groups. We challenge the issues perpetuating the imbalance of women in Tech. We are STEM ambassadors, have an Internal Leadership Development Programme for Women, promote International Women's Day with a month of roundtable events, we have accessed job advertisements to make them more attractive to women (Flexible working, compressed hours, what works for them with family commitments), women panellist are available for promotion interviews. Mastek has published its modern slavery statement and designed mandatory training for all staff and suppliers. We will also be using Alturna to carry out supply chain audits.
• Wellbeing:

  Wellbeing

  Evosys (as part of the Mastek group) understands the impact of poor mental and physical health on society, the economy, and internally. We support our staff's physical, emotional and mental health and work to create a positive and supportive workplace culture and cascade our commitments to influence our supply chain partners. Our approach is aligned/benchmarked against the Mental Health at Work six standards of commitment and Mind’s Thriving at Work recommendations. For each project within the G-Cloud framework, we will: • Design and communicate our Physical and Mental Health at Work action plan to all involved with each project, including engagement with wider stakeholders • Prioritise well-being/assess risks of work-related stress (Recent WFH surveys/juggling work/parenting). With Silver Oak Health, we offer Employee Well-being/Assistance Program options, including 24/7 access to a dedicated helpline/online/face-to-face counselling • Ensure inclusive and accessible recruitment practices, development practices and retention-focussed activities • Ensure all our delivery partners can demonstrate commitment to the policy outcome and have signed the Mental Health at Work Commitment. We will monitor and report on progress. • Create a programme of events to raise awareness of wellbeing and mental health issues – such as male cancers and Movember – fundraising and educating all involved in the project. These events will be timetabled and communicated through a web portal, and all encouraged to take part • Offer one fully paid volunteering day annually per employee to support local charities – these can be built into mental health awareness or fundraising. • We will provide training for mental health first aiders across the scope of the projects and host time to talk events and webinars (open to the entire ecosystem) on health and wellbeing.

Pricing

• Price: £1.50 a person a month
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at kelvin.worley@mastek.com. Tell them what format you need. It will help if you say what assistive technology you use.