Open Sky Data Systems

Gov360 OpenSky : Azure Application Hosting/Migration (VM's/Microservices)

OpenSky deliver more than 100 services through Microsoft Azure with end-to-end tools allowing organisations to develop and deploy the right solutions. We provide analysis, development, QA, training, support and consultation.

Features

• Business Process Automation leveraging Azure Services
• Systems Integration leveraging Azure Services
• Container Support with Azure
• Platform as a Service (PaaS) with Microsoft Azure
• Build on using your preferred tools, applications & framework
• Global network of data centres
• Build, deploy and manage applications
• GDPR and data compliance

Benefits

• Speed of deployment, operation & scalability
• Monthly licensing subscription provides flexibility over usage and cost
• Secure, cloud-based service with robust access management controls
• Fully integrated delivery pipeline
• Digital transformation with Microsoft Gold accredited partner
• Secure integration with other SaaS apps and services
• Multilingual and versatile framework
• Quick analytics and actionable insights

£600 to £1,250 a unit a day

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at wflanagan@openskydata.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

957168695099467

Contact

William Flanagan
+44 203 051 2392
wflanagan@openskydata.com

Service scope

• Service constraints: No
• System requirements:
  • Mozilla Firefox, Google Chrome, Internet Explorer or Apple Safari
  • Office Integration requires Office 365, 2016, 2013 or 2010

User support

• Email or online ticketing support: Yes, at extra cost
• Support response times: OpenSky provide excellent, flexible support services for Dynamics solutions, from standalone applications to complex systems. Our standard package provides remote support services by dedicated support experts from 08:00 to 18:00 Monday to Friday, with 24/7 access to the service desk portal. We provide aggressive SLAs with response times from 30 minutes for Severity 1 tickets, to 4 working hours for Severity 4 tickets, and guaranteed resolution times from 4 working hours for Severity 1 tickets to 40 working hours for Severity 4 tickets. Non-standard packages (onsite, out of hours or on-call support services) can be tailored to your needs
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Yes, at an extra cost
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: N/A
• Web chat accessibility testing: N/A
• Onsite support: Yes, at extra cost
• Support levels: OpenSky provide excellent, flexible customer and technical support services for Dynamics solutions, from standalone applications to complex systems. Our ITIL aligned Service Desk combines expert technical personnel with expert customer service to bring the highest standard support solutions. Our standard package provides: - Level 2 and Level 3 Remote Support Services - Dedicated support service desk and cloud support experts from 08:00 to 18:00 Monday to Friday - 24/7 access to the service desk portal - Self-service Knowledge Base and FAQs facility on web portal - System Monitoring - Suite of Daily System Checks performed by start of business each day - Aggressive and guaranteed Response and Resolution times - Support Lead dedicated to your account - Face to face or video-conference meetings - Monthly Service Reports including performance against SLAs and KPIs - Facility for change requests, enhancements - Onsite Quarterly Service Review meetings Non-standard packages can be tailored to your needs, including: - Level 1 Remote Support Services - Onsite Level 1, Level 2 and Level 3 personnel - Out of hours or on-call support services
• Support available to third parties: No

Onboarding and offboarding

• Getting started: Launching a new system implies a change – so training covers not only ‘How does the new system work?’ but also ‘Why do we need a new system in the first place?’ For an end-user, the second question is key to achieving buy-in. Successful solution rollout and integration means focusing on driving adoption and ensuring everyone understands the benefits of working in a new way. Training channels include via: • Classroom: hands-on training • Webinar: useful for ongoing/refresh training • Self-service: all materials provided via support portal, including training guides, quick start tutorials, etc. • eLearning: through partners such as Microsoft Training groups typically include: • Core Group Training: often people involved in the project team, the select panel co-create or test systems, becoming super-users and internal trainers, following system deployment • Systems Administrators: tailored training delivered to a number of specialised staff, who will support colleagues, often through helpdesk services. Training may include system configuration and user management. • Wider Group Training: rollout can be achieved through dedicated training days onsite with small groups with the ‘how’ and ‘why’ being explained and reinforced. This can also be done through shorter, more numerous, webinars. Training focuses on a role basis.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: All data remains the IP of our clients. If clients do not wish to extend our contract to manage their data, we will work with the incoming, to ensure data is mapped to a new platform. Alternatively, for Microsoft platforms, an incoming provider will assume control of the existing data, as part of our handover project.
• End-of-contract process: OpenSky work closely with clients during the wind-down stages of a project to understand and map the next stage of their overall strategy. Whether a project is being handed back to our client, or to an incoming provider, we ensure the appropriate knowledge transfer takes place through several tasks, including: • staff debrief • status report indicating outstanding issues, risks and incomplete tasks • ensuring all task and QA documentation is complete • providing formal feedback to the client on project performance • provide measure of project achieved and impact • lessons learnt report • map of any outstanding tasks for completion by incoming/client team • financial close of the task • statement of completion These tasks will act as a Hand Over to Service (HOTS) package to the client. The final part of our standardised approach will be to ensure that each project we support is closed-down and handed over to the client and/or support team (provided our support services cover the end of each project). Pricing will be agreed with client at the scoping stage of each project. Typically, additional days are mapped out for changes to the project, outside the scope of the initial agreement.

Using the service

• Web browser interface: Yes
• Using the web interface: Microsoft Edge; Firefox; Chrome; Safari 9+; Opera
• Web interface accessibility standard: WCAG 2.1 AA or EN 301 549
• Web interface accessibility testing: OpenSky conducts thorough interface testing to ensure accessibility for users of assistive technology. Our internal QA department employs a range of tools, including:; • Intent Based – Accessibility Checker; • AChecker – Accessibility Checker; • Cynthia Says; These tools help identify and resolve any accessibility issues in our service interface. By simulating the experience of users with various disabilities, we can validate that the interface is fully compatible with screen readers, keyboard navigation, and other assistive technologies. Regular testing and continuous improvement based on user feedback demonstrate our commitment to providing an inclusive and accessible service for all customers.
• API: No
• Command line interface: Yes
• Command line interface compatibility:
  • Linux or Unix
  • Windows
• Using the command line interface: All aspects of the Azure service can be managed using the CLI.

Scaling

• Scaling available: No
• Independence of resources: If a .NET bespoke development, extensive user testing during UAT phase is completed. Performance metrics are agreed and continuously tested for future scaling. On a Dynamics platform base, scalability and performance are both backed up by Microsoft’s underlying infrastructure in Azure. The investment in infrastructure and operations alone, required by an organization to match the scalability and performance benchmark that Dynamics 365 Online offers out of the box (either on-premises or IaaS) most likely, will be much higher than the entire OpenSky's Gov360 Cloud Based Platform
• Usage notifications: Yes
• Usage reporting:
  • API
  • Email

Analytics

• Infrastructure or application metrics: No

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Microsoft

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: In-house
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: In-house destruction process

Backup and recovery

• Backup and recovery: Yes
• What’s backed up:
  • VM storage
  • Databases
• Backup controls: Backup schedules are agreed during customer onboarding.
• Datacentre setup: Multiple datacentres with disaster recovery
• Scheduling backups: Users contact the support team to schedule backups
• Backup recovery: Users contact the support team

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

• Guaranteed availability: See Microsoft's Online Service Terms at http://www.microsoftvolumelicensing.com/Downloader.aspx?DocumentId=11745
• Approach to resilience: Please see https://www.microsoft.com/en-us/cloud-platform/global-datacenters and https://www.microsoft.com/en-us/TrustCenter/
• Outage reporting: Service Health is visible and can be monitored from the Service Health section of the Admin Dashboard in Office 365. Email Alerts can be configured to notify administrators of outages. The Office 365 Admin mobile application can also be used for push notifications on mobile.

Identity and authentication

• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google apps)
  • Dedicated link (for example VPN)
  • Username or password
• Access restrictions in management interfaces and support channels: VPN access. 2-factor authentication. Username and Password
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Dedicated link (for example VPN)
  • Username or password
• Devices users manage the service through: Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

• Access to user activity audit information: You control when users can access audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: You control when users can access audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: CDL Group
• ISO/IEC 27001 accreditation date: 12/12/2021
• What the ISO/IEC 27001 doesn’t cover: There is nothing out of scope for ISO 27001:2013. OpenSky Data Systems have been independently assessed and accredited to ISO 27001:2013 Information Security Management Systems, Standards and guidelines.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: We have an internal ISO-27001 compliant, Information Security Policy which is available on request. Also, see https://www.microsoft.com/en-us/TrustCenter/Compliance/ISO-IEC-27001 and The Microsoft Cloud Security Policy is available via the Service Trust Platform aka.ms/stp"

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: OpenSky adheres to Prince2 Methodology Change Management Process. For further information please see http://prince2.wiki/Change
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Microsoft Trust Centre provides details on management processes and testing
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Please see the following website for details https://docs.microsoft.com/en-us/office365/securitycompliance/
• Incident management type: Supplier-defined controls
• Incident management approach: Internally we use ITIL framework for Incident management. Microsoft provides robust processes incidents. • Identification – System and security alerts may be harvested, correlated, and analyzed. • Containment – The escalation team evaluates the scope and impact of an incident. • Eradication – The escalation team eradicates any damage caused by the security breach, identifies root cause for why the security issue occurred. • Recovery – During recovery, software or configuration updates are applied to the system and services are returned to a full working capacity. • Lessons Learned – Each security incident is analyzed to protect against future re-occurrence.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: Yes
• Who implements virtualisation: Third-party
• Third-party virtualisation provider: Microsoft Azure Insights
• How shared infrastructure is kept separate: The Azure hypervisor enforces memory and process separation between virtual machines.

Energy efficiency

• Energy-efficient datacentres: Yes
• Description of energy efficient datacentres: Please see Microsoft website here https://blogs.microsoft.com/on-the-issues/2018/05/17/microsoft-cloud-delivers-when-it-comes-to-energy-efficiency-and-carbon-emission-reductions-study-finds/

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  OpenSky’s Azure Application Hosting/Migration services not only enhance technological capabilities but also significantly contribute to the social value themes, demonstrating our commitment to using technology for societal improvement and sustainable development.; Our services facilitate a significant reduction in environmental impact by migrating physical servers to the cloud, which optimizes energy use and reduces the carbon footprint associated with traditional data centers. Azure’s infrastructure is designed to maximize energy efficiency and use renewable energy sources wherever possible, aligning with global efforts to mitigate climate change.

  Covid-19 recovery

  The scalability and flexibility provided by Azure hosting have been essential in supporting organisations through the Covid-19 pandemic. By enabling rapid deployment and scaling of applications, our services ensured that businesses could continue to operate efficiently, despite fluctuating demands and the shift to remote working, thus aiding in economic recovery and resilience.

  Tackling economic inequality

  By leveraging Azure’s global infrastructure, our hosting/migration services allow organisations of all sizes to access enterprise-level hosting solutions at a fraction of the cost of traditional setups. This democratization of technology helps smaller businesses and those in developing regions to compete on a more level playing field, promoting economic growth and reducing inequality.

  Equal opportunity

  OpenSky ensures that our Azure application hosting and migration services are accessible and beneficial for all clients, regardless of their size or industry. We provide tailored support and training to ensure that all users can fully leverage the benefits of cloud technology, promoting equal opportunities in technology adoption.

  Wellbeing

  The reliability and performance improvements from Azure hosting contribute to better user experiences and reduced stress for IT teams. Automating maintenance and scalability reduces the workload on IT staff, allowing them to focus on more strategic initiatives that enhance their professional development and job satisfaction.

Pricing

• Price: £600 to £1,250 a unit a day
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at wflanagan@openskydata.com. Tell them what format you need. It will help if you say what assistive technology you use.