GBM DIGITAL TECHNOLOGIES LIMITED

Jamf Apple Device Management and Security Solutions for Education

Jamf allows educational institutions to easily manage and secure their Apple ecosystem, enabling them to support equitable learning with iPad. Jamf provides a complete and comprehensive management and security solution for an Apple-first environment that is enterprise secure, consumer simple and protects personal privacy.

Features

• Device management
• Apple lifecycle management
• Inventory
• Mac and IOS end-point protection and security

Benefits

• Simplifies work by helping organizations manage Apple products
• Provides a complete management and security solution for Apple-first environments
• It is enterprise secure
• Simplifies user experience
• Protects personal privacy

£4.00 a licence

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@wearesync.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

978461596354795

Contact

Amelia Stevens
0161 605 3838
tenders@wearesync.co.uk

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Hybrid cloud
• Service constraints: Jamf will use commercially reasonable efforts to schedule maintenance during non-peak usage hours and provide advance notice.
• System requirements:
  • Recommended supported OS
  • Browsers required for enrolment: Safari, Chrome, Firefox, Microsoft Edge, InternetExplorer

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Standard Support is available Monday - Friday, 9:00 a.m. to 5:00 p.m.; Central European Time. Excluding: New Year's Day, Easter Monday, Christmas Day. 24/7 phone support is available on certain premium support packages.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: You can connect with the Jamf support team via the Live chat on the website or within the product, depending on the support package you choose.
• Web chat accessibility testing: N/A
• Onsite support: No
• Support levels: To help you enjoy the type of support that maximizes technology initiatives, moves organizations forward and gives users the best Apple device experience possible, we are offering different tiers of Premium Support to directly match your needs and budget. Jamf Premium Support is available to those that have Jamf Pro, Jamf Connect + Jamf Pro or Jamf Protect + Jamf Pro.; ; With three distinct levels of Premium Support:; ; -Premium Support: $10,000 annually; ; -Premium Support Plus: $18,000 annually; ; -Premium Support Enterprise: $50,000 annually
• Support available to third parties: No

Onboarding and offboarding

• Getting started: Jamf provides self-onboarding assisted by our Customer Success team for the first 90-days. Customers also have full access to our online training catalogue and documentation. Premium (paid for) Onboarding is also available.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: If you would like to request to access, correct, update, suppress, restrict, or delete your personal information, object to or opt out of the processing of your personal information, or receive a copy of your personal information for purposes of transmitting it to another company (to the extent these rights are provided to you by applicable law), you may contact us via privacy@jamf.com.
• End-of-contract process: Customers are contacted 120 days from the renewal day with a renewal quote, if they notify us that they do not wish to renew, their Jamf instance will be deleted, along with all user information in accordance with our privacy policy.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Service is still accessed via a browser as detailed above for non-mobile devices.
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: Currently Jamf Pro, Jamf School and Jamf Protect have their own APIs with their own authentication scheme. The Jamf API Ecosystem is intended as the platform for the future with a unified API for all Jamf products and third-party Jamf integrations.
• API documentation: No
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Jamf is immensely customisable and configurable, with the power to extend and integrate into other systems via the API

Scaling

• Independence of resources: Jamf Cloud uses application and database servers in multiple data centers to provide high availability and recovery in case of service outage.

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Other
• Other data at rest protection approach: Data is encrypted at rest with AES-256. Database backups are encrypted at rest as well.
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Jamf Pro supports data exports in .csv formats. Upon request or upon conclusion of contract, Jamf may provide a customer database backup in SQL-compatible format.
• Data export formats: CSV
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: Other
• Other protection within supplier network: We utilize a number of tools including AWS GuardDuty combined with proactive alerting and monitoring to a Security Operations team for our production cloud environment.

Availability and resilience

• Guaranteed availability: Using a subscription-based model, Jamf Cloud offers a built-in cloud distribution service for global package distribution and guarantees 99.9% server uptime.
• Approach to resilience: Available on request from Jamf support.
• Outage reporting: A public dashboard.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: Users can be very granular with permissions in Jamf Pro with read, write, edit, delete etc. for features. This can be scoped to either users individually or groups of users. Those groups can also be from an IDP like Azure so that specific users within Azure groups will automatically have permissions applied based on their roles.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Coalfire
• ISO/IEC 27001 accreditation date: From May 2nd 2023 to May 4th 2026
• What the ISO/IEC 27001 doesn’t cover: Jamf is ISO 27001 certified but we are not ISO 28000 certified. Our vendor partners undergo a thorough security and compliance assessment prior to working with us. Ongoing due diligence including a review of the vendor’s SOC1, SOC2, and/or ISO 27001 certifications are performed based on risk assessment results. In the event these reviews have material findings, we work closely with the vendor to track remediation efforts until the issue has been resolved.
• ISO 28000:2007 certification: No
• CSA STAR certification: Yes
• CSA STAR accreditation date: 06/05/2021
• CSA STAR certification level: Level 1: CSA STAR Self-Assessment
• What the CSA STAR doesn’t cover: Jamf's Products are not HIPAA certified, as we do not collect, store, maintain or use PHI. Jamf does not sign Business Associate Agreements, and our BAA Declination Letter is available upon request or can be downloaded.
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • Data Privacy Framework Progam
  • StateRAMP Ready status
  • Cloud Security Alliance
  • SOC 2

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: ISO 27000:2018 and the COSO framework plus several others which can be found on the Jamf website.
• Information security policies and processes: SOC 2, ISO27001, ISO 27701, Cloud Security Alliance, Data Privacy Framework Program, Cyber Essentials, StateRAMP Ready status and more can be found on the Jamf website.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: Change Management process includes the following steps: ; ; 1. Submit the Change Request Form ; 2. Review the Change Request Form ; 3. Risk Assessment; 4. Implementation Plan ; 5. Pre-Change; 6. Change ; 7. Post Implementation Review; 8. Process Exceptions and Emergency Changes
• Vulnerability management type: Undisclosed
• Vulnerability management approach: Jamf’s Vulnerability Management processes adhere to industry best practices. Our Information Security Program is ISO 27001 certified and is StateRAMP Ready. Once identified, vulnerabilities are reviewed by internal quality review groups and a dedicated product security team for internal scoring, classification, and triage. Once defined, the development and engineering teams will work with the product security teams to resolve, fix, or otherwise mitigate through technical controls.
• Protective monitoring type: Undisclosed
• Protective monitoring approach: Jamf’s monitoring processes adhere to industry best practices. Our Information Security Program is ISO 27001 certified and is StateRAMP Ready. We utilize a number of tools including AWS GuardDuty combined with proactive alerting and monitoring to our 24/7 Security Operations Team for our production cloud environment.
• Incident management type: Undisclosed
• Incident management approach: Jamf’s incident management processes adhere to industry best practices. Our Information Security Program is ISO 27001 certified and is StateRAMP Ready.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Equal opportunity

  Fighting climate change

  At Jamf, we recognize the environment as a vital; stakeholder in our operations. Jamf is committed; to lessening the burden of its operations on the; environment by:; •Tracking our environmental footprint across; the organization; •Reducing usage and consumption where possible; •Offsetting what we cannot reduce; •Creating awareness and educating our employees; •Openly communicating our progress; As with most initiatives at Jamf, our pursuit of; environmental sustainability is driven by the evolving; demands of our business and our desire to do the right; thing for all our stakeholders. Green at Jamf—a group; of Jamfs whose mission is to improve the planet by; measuring and reducing the harmful environmental; impacts of both our industrial and individual actions—; helps to raise awareness, share best practices, and drive; environmental stewardship throughout the organization.; Since 2021, Jamf has been on the path to carbon neutrality, searching for ways to reduce; and optimize consumption and voluntarily investing in carbon offsets. While our ongoing; pursuit of carbon neutrality is an important milestone in our sustainability journey, we are; taking strides to account for emissions as thoroughly and accurately as possible, establish; environmental policies, and set goals that drive our reduction strategy.; ; More information on our social value can be found on our website.

  Equal opportunity

  At Jamf, we are committed to creating and maintaining an environment of involvement,; mutual respect, and belonging for everyone within the workplace. We strive to foster; a culture where the intersection of diverse experiences, perspectives, and ideas are; recognized and celebrated; where all voices are included; and where all Jamfs feel; empowered to bring their whole selves to work each day.; Our Diversity, Equity, Inclusion, and Belonging (DEIB) mission is to foster a culture of; inclusion and belonging that reinforces the employee experience while unlockiing and; embracing teamwork, respect, and innovation to enhance business impact.; In 2022 we took some important steps in pursuit of this mission, including the development; of our formal DEIB strategy, and the creation of a new position—VP of Diversity, Talent, &; Engagement—who will help lead us forward on our journey.; ; Employee Resource Groups (ERGs); are an important component of our; DEIB efforts. ERGs provide Jamfs with; opportunities to strengthen bonds, build; community, and support a vibrant and; thriving Jamf culture; ; Maintaining a robust pipeline of diverse, high-performing talent across the complete; employee lifecycle—from recruitment, hiring, and onboarding to learning and career; development—is critical to our future success. A key focus for our Talent Acquisition; team is improving underrepresented communities’ access to career opportunities and; advancement at Jamf. We are also committed to removing any barriers and biases in our; global hiring practices to foster an equitable and inclusive hiring culture.

Pricing

• Price: £4.00 a licence
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: Full trials are available for 14 days.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@wearesync.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.