Neotys

Performance & Load Testing

NeoLoad (load and stress testing) is an automated performance testing platform for enterprise organizations continuously testing APIs to applications. It provides testers and developers automatic test design and maintenance, the most realistic simulation of user behavior, fast root cause analysis and built-in integrations with the entire software development lifecycle toolchain.

Features

  • Supports broad range of web and mobile technologies (GWT,REST,SOAP,OTHERS)
  • Scriptless Design and Visual Programming
  • Powerful Extractors
  • Advanced Correlation
  • Check User Path
  • User Path Update
  • Web Security Ready
  • Push Technology Support
  • Shared Reusable Elements
  • Advanced Custom Actions / SDK

Benefits

  • Up to 90% of time can be saved with scripting
  • Share results in real time with Neoload Web Interface
  • Full Integration with other complemantary software giving great results
  • CI/CD pipeline integration with Jenkins, TeamCity, Bamboo, etc
  • Full functional integration with Selenium, Tosca, Ranorex, Worksoft etc..
  • Full integration with APMs, Dynatrace, AppDynamics, NewRelic. giving greater detail

Pricing

£2700 to £250000 per licence per year

Service documents

G-Cloud 11

170845859102712

Neotys

Mike Smith

07800644501

mike.smith@neotys.com

Service scope

Service scope
Software add-on or extension Yes, but can also be used as a standalone service
What software services is the service an extension to We can integrate with the following:

CI/CD: Jenkins, Bamboo, TeamCity, XebiaLabs XL Release
Functional Testing: Selenium, Tosca, Ranorex, Worksoft
Mobile Testing: Appium, Kobiton, Perfecto
APM: New Relic, AppDynamics, Dynatrace, Nudge APM, CA APM
Network: iTrinegy
Cloud deployment model
  • Public cloud
  • Private cloud
  • Hybrid cloud
Service constraints No restraints
System requirements
  • We support windows, linux and Mac OS (specific versions)
  • Supplied as a series of Docker containers
  • Should work on any operating system supporting Java 8
  • Also information here https://www.neotys.com/documents/doc/neoload/latest/en/html/#618.htm

User support

User support
Email or online ticketing support Email or online ticketing
Support response times We respond the same day to requests and mostly within a few hours, based on priority. We dont have an official support function at the weekend.

We have support in Europe and US to cover out of hours for the UK.
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Onsite support
Support levels All customers are looked after by a UK Technical and Commercial Account Management team. We offer full support either by conference call or on-site should that be required. Our support does not cost anything, it is part of the annual service.

There are two levels, your account team support for weekly contact and advice etc, then there is a wider Techincal support team, for specific technical support issues with the product.

There is an option to purchase a Perpetual license which has optional Gold Support annually.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started We have a full onboarding process and offer different levels of training to get you up to speed.

1. We offer a full free onboarding process, to explain the process for requesting support, how to use and navigate around the portal.
2. We offer a full online E-Learning centre, with tutorials and full datasheets explaining how to get the most from our software
3. We can offer a tailored 3 day training course with optional certification, for up to 12 people at a time. There is an additional cost for this but does save time getting staff up to speed
Service documentation Yes
Documentation formats
  • HTML
  • ODF
  • PDF
  • Other
Other documentation formats
  • E-learning platform
  • Embedded within the tool itself
  • The information is also available online
End-of-contract data extraction All data recorded is store locally on your own machines, so you control the data collected
End-of-contract process This is of course tailored to your requirements, but essentially at the end of the contract your access to run the license to perform performance testing ceases and all data is kept by you.

Using the service

Using the service
Web browser interface No
Application to install Yes
Compatible operating systems
  • Linux or Unix
  • MacOS
  • Windows
Designed for use on mobile devices No
Accessibility standards None or don’t know
Description of accessibility Our service is accessed by a locally installed client and has no provision or testing around accessibility. Having said that, with thousands of customers using our service with no issues, we are confident accessibility is not an issue
Accessibility testing None that I am aware of.
API Yes
What users can and can't do using the API Our API is for extracting data or integrating with other complemantary software. We can use our API, or other providers API, to enable intrgration and sharing of data to display on third party dashboards.

We have a design API, runtime API, results API and data exchange API
API documentation Yes
API documentation formats
  • Open API (also known as Swagger)
  • HTML
  • ODF
  • PDF
  • Other
API sandbox or test environment Yes
Customisation available No

Scaling

Scaling
Independence of resources Once installed on your machine, depending on what level you purchase it will either allow one person to run tests or multiple people to run tests and share the virtual users available. This is done automatically and is addressed by the license privileges you purchase.

Analytics

Analytics
Service usage metrics Yes
Metrics types We can calculate the hours spent testing and who has been testing for security
Reporting types
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

Resellers
Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Conforms to BS7858:2012
Government security clearance Up to Security Clearance (SC)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations Yes
Datacentre security standards Managed by a third party
Penetration testing frequency At least once a year
Penetration testing approach In-house
Protecting data at rest Other
Other data at rest protection approach All data is stored locally to you, so we dont have access to the data, unless you specifically want to use our Saas offering, which of course will be goverend by the security and data protection, of the appropriate vendor.
Data sanitisation process No
Equipment disposal approach In-house destruction process

Data importing and exporting

Data importing and exporting
Data export approach The data is all stored locally on your machines, so you have the usual options to extract data using the API, CSV etc.
Data export formats
  • CSV
  • ODF
  • Other
Other data export formats
  • API
  • NeoloadWeb, our web GUi, allows you to share results
Data import formats
  • CSV
  • ODF
  • Other
Other data import formats API

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks Private network or public sector network
Data protection within supplier network Other
Other protection within supplier network All of your data is kept within your network, so there is no data issue with Neotys. Unless you choose to utilise our SAAS offerings (Neoload web on Saas, cloud generation) But this is encrypted and very secure.

Availability and resilience

Availability and resilience
Guaranteed availability Our service is installed on premise, so you are responsible for the availability of your infrastructure. This works well with our other gov customers, Home office, HMRC, MI5 etc.
Approach to resilience Its a gui installed onto your local machines, so it will be as resilient as your platform is essentially. Our service, although can be ran from the cloud to generate the load, generally for government installations, you normally take control, for security, and we are happy to just asto as the gui and load generation tool.
Outage reporting Again, the service is installed on your local machines, so wont have outages as such, as that will be defined by your own internal network.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • Username or password
  • Other
Other user authentication The caveat is this is for project access only, you also need to mention Neoload Web being https with user/pass and authentication token, the NTS being https with user/pass, etc
Access restrictions in management interfaces and support channels For NLWeb, we have defined roles, guest, tester, admin. For NTS, the users can define the roles but they equate to read and read/write on a project by project basis. for SVN or GIT, this is out of scope and is down to the customer and also for the Neoload Team Server, roles define licence access permissions, VU number and lease duration
Access restriction testing frequency At least every 6 months
Management access authentication Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for Between 1 month and 6 months
Access to supplier activity audit information Users have access to real-time audit information
How long supplier audit data is stored for Between 1 month and 6 months
How long system logs are stored for Between 1 month and 6 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified No
Security governance approach Neotys performs intrusion and security assessment prior to each release to production (every 2 months).
The security team and the software architect analyze each intrusion tests results and create an action plan prior to the release. Immediate actions are taken for every major or critical reported problem.
Internal and external vulnerability scanners are run automatically and regularly.

All the servers operating systems and libraries are updated and always up to date on the production environment. When a patch is available, it is deployed on a test environment, tested and deployed in production.
Information security policies and processes We follow

ISO27001
industry standard AES-256 encryption
Neotys’s datacenters has an availability classified Tier III by Uptime Institute and has ISO 27001 and SSAE16 (SOC 1, SOC 2, SOC 3) certifications
The connections used by the NeoLoad Controller Agent to connect to NeoLoad Web SaaS are secured using TLS 1.2 with AES 128 bits encryption. Users are authenticated using an API token, each user can create and revoke his tokens using the application

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach During the industrialization process, the source code is analyzed to find vulnerabilities. its stopped if any major or critical issue is discovered. Antivirus scan is performed on each artifact produced during the build process. The antivirus software is updated automatically. The scan success is mandatory for a build release.

All the infrastructure is defined as code, all the modifications are tracked and versioned.
The only way to make a modification is to update and push the new infrastructure definition. This will update a pre-production environment, after tests, an accredited person approves the deployment. The update of the environment is fully-automated.
Vulnerability management type Supplier-defined controls
Vulnerability management approach Neotys performs intrusion and security assessment prior to each release to production (every 2 months).
The security team and the software architect analyze each intrusion tests results and create an action plan prior to the release. Immediate actions are taken for every major or critical reported problem.
Internal and external vulnerability scanners are run automatically and regularly.

All the servers operating systems and libraries are updated and always up to date on the production environment. When a patch is available, it is deployed on a test environment, tested and deployed in production.
Protective monitoring type Supplier-defined controls
Protective monitoring approach The production environment logs and application logs are automatically analyzed. All abnormal access is automatically notified, classified and actions are taken if necessary.

The production environment and application logs are audited every week, all suspect activity is deeply analyzed and reported if needed. All the production environments actions are logged. Those logs cannot be deleted.
Logs are kept 90 days.
Incident management type Supplier-defined controls
Incident management approach * Incident detection (can be automated through monitoring or customer/internal report)
* Incident is recorded and prioritized
* Investigation and analysis
* Resolution
* Incident closure

Secure development

Secure development
Approach to secure software development best practice Conforms to a recognised standard, but self-assessed

Public sector networks

Public sector networks
Connection to public sector networks No

Pricing

Pricing
Price £2700 to £250000 per licence per year
Discount for educational organisations Yes
Free trial available Yes
Description of free trial We offer a free license for upto 50 virtual users, there is no restriction, or time limit. These licenses can continue, when you have the commercial license, so that the dev team have their own license to use, create scripts, which are easily ran in the commercial version, saving time/money
Link to free trial https://www.neotys.com/download

Service documents

pdf document: Pricing document pdf document: Skills Framework for the Information Age rate card pdf document: Service definition document pdf document: Terms and conditions
Service documents
Return to top ↑