EntServ UK Ltd part of the DXC Technologies Group

DXC Technology Collaboration Services

DXC Technology Collaboration Services provides a virtual private cloud service based on Microsoft SharePoint 2016. Hybrid integration with Microsoft Office 365(O365) is also available for deparments with diverse needs where some users would benefit from a dedicated cloud environment hosted by DXC and others, a public cloud hosted by Microsoft.

Features

  • Enterprise-grade collaboration as a service, cloud based SharePoint
  • Stringent security, privacy, and compliance policy support and procedures
  • Control over how data is stored and managed
  • Control over how applications and the underlying infrastructure is secured
  • Implementation and management expertise for core reporting, configuration, integration, maintenance
  • High functionality and customization through DXC application development/integration expertise
  • Seamless technology refresh
  • High availability, performance, responsiveness, and uptime
  • Annual audit of your data and dedicated server environment
  • Suitable for handling information classified at OFFICIAL

Benefits

  • Reduces cost of supporting SharePoint services; no physical infrastructure investment
  • Highly scalable to meet changing business requirements
  • Highly available architecture with centralized 24x7 monitoring and management
  • Evergreen technology delivers latest software release with 18-month migration window
  • Stringent security, privacy and compliance policies protects clients intellectual capital
  • Ability to control data sovereignty and where client data resides
  • Risk reduction through proven, repeatable,documented process for standing up clients
  • 15 years expertise delivering enterprise collaboration solutions
  • Repeatable, efficient and low cost migration approach reduces implementation risk
  • Accredited environment for collaboration supported in DXC UK data centres

Pricing

£495 to £2200 per person per day

Service documents

Framework

G-Cloud 11

Service ID

1 8 6 1 6 1 6 8 4 5 4 7 3 8 1

Contact

EntServ UK Ltd part of the DXC Technologies Group

DXC Frameworks Team

+44 (0)560 303 4826

ukitenders@dxc.com

Service scope

Software add-on or extension
No
Cloud deployment model
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
Service constraints
No
System requirements
Depends on where service is hosted, strucutre of the agreement

User support

Email or online ticketing support
Email or online ticketing
Support response times
Response SLAs vary based on Contract and ticket Priority. Response is within 1 hour and resolution within 2 hours for premier support under a priority 1 issue.
User can manage status and priority of support tickets
User can manage status and priority of support tickets
Yes
Online ticketing support accessibility
None or don’t know
Phone support
No
Web chat support
No
Onsite support
Yes, at extra cost
Support levels
DXC Workplace Support Services delivers an enhanced desktop and mobile support experience for public sector organisations. Services are flexible and can be tailored to users and how they work. Options include service desk assistance, self-service, traditional on-site support, and for larger government departments walk-in support. By combining self-service, remote device takeover, face-to-face support and automation, DXC is able to reduce support costs. DXC also delivers data analytics to provide operational insight and continuous improvement to support services.
Support available to third parties
Yes

Onboarding and offboarding

Getting started
Before using DXC Technology Cloud Services, a sales representative or account manager will work with you to identify the service on the Digital Marketplace that best aligns to your digital transformation objectives.

DXC’s consultants can assist with the definition of G-Cloud Service architecture, and advise you on ensuring your transition runs smoothly and without disruption. The G Cloud assertions cover a set of options with very different connectivity and support models, so clients need to ensure that any they are particularly reliant on for business use are covered in the options selected and called out on the G Cloud Call Off Order form.

When you make an order or ask for a quote, our support desk will acknowledge your request and give you a reference number you can use to track its progress. For quotes, our sales support desk will keep you regularly updated on progress.

Once we have agreed the service design, our consultants and sales staff will work with you to develop the Call-Off Contract, during this process DXC will confirm the required order details.

Once we have processed your order, DXC will advise you of the service start date.
Service documentation
Yes
Documentation formats
  • HTML
  • PDF
  • Other
Other documentation formats
  • DOC
  • DOCx
End-of-contract data extraction
Beginning ninety (90) days before an order is scheduled to expire, the parties shall have the following responsibilities. DXC will: * Give periodic notice to the customer of pending expiration or termination of an order (as appropriate) and cessation of service * Upon request, if customer has obtained any of the optional backup services DXC will restore customer data to the customer designated server or storage device outside their VPC compartment at a DXC datacentre pursuant to the Managed VPC Backup, Recovery and Archival Service Description. Customer requests for data restore service must submitted prior to expiration or termination of the Order. * Over-write all storage media (including backups, if any) after (i) receiving the customer's notice that customer data and customer's software have been removed or, if no such notice is received (ii) seven (7) days after expiration of service or the effective date of termination. Thereafter, customer's software and customer data will be erased in accordance with procedures set forth in the Security Features Policy without further notice to the customer * Give the customer notice that all operating systems and storage media have been erased and that all access to the DXC network and services has ceased
End-of-contract process
Beginning ninety (90) days before an order is scheduled to expire, the parties shall have the following responsibilities. DXC will: * Give periodic notice to the customer of pending expiration or termination of an order (as appropriate) and cessation of service * Upon request, if customer has obtained any of the optional backup services DXC will restore customer data to the customer designated server or storage device outside their VPC compartment at a DXC datacentre pursuant to the Managed VPC Backup, Recovery and Archival Service Description. Customer requests for data restore service must submitted prior to expiration or termination of the Order. * Over-write all storage media (including backups, if any) after (i) receiving the customer's notice that customer data and customer's software have been removed or, if no such notice is received (ii) seven (7) days after expiration of service or the effective date of termination. Thereafter, customer's software and customer data will be erased in accordance with procedures set forth in the Security Features Policy without further notice to the customer * Give the customer notice that all operating systems and storage media have been erased and that all access to the DXC network and services has ceased

Using the service

Web browser interface
Yes
Supported browsers
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install
Yes
Compatible operating systems
  • Android
  • IOS
  • MacOS
  • Windows
Designed for use on mobile devices
Yes
Differences between the mobile and desktop service
Varies depending on site but in general re-formatted for smaller screen.
Service interface
No
API
Yes
What users can and can't do using the API
The Web API provides a development experience that can be used across a wide variety of programming languages, platforms, and devices. The Web API implements the OData (Open Data Protocol), version 4.0, an OASIS standard for building and consuming RESTful APIs over rich data sources.
API documentation
Yes
API documentation formats
HTML
API sandbox or test environment
Yes
Customisation available
Yes
Description of customisation
Customers can customise the service as allowed for on any other MS SharePoint site.

Scaling

Independence of resources
The service is delivered either from a dedicated infrastructure or as part of the customers existng environment.

Analytics

Service usage metrics
Yes
Metrics types
Service levels are measured and reported from the time services are made available for customer use. Service credits may be assessed for faults beginning within the first full calendar month thereafter. Service credits are not assessed for partial months, although service levels may be reported for partial months.

Service levels are measured and reported from the time the DXC services are made available for customer use. Service levels may be reported for partial months.
Reporting types
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Conforms to BS7858:2012
Government security clearance
Up to Developed Vetting (DV)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
  • EU-US Privacy Shield agreement locations
  • Other locations
User control over data storage and processing locations
Yes
Datacentre security standards
Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency
At least once a year
Penetration testing approach
‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
Protecting data at rest
  • Physical access control, complying with CSA CCM v3.0
  • Encryption of all physical media
Data sanitisation process
Yes
Data sanitisation type
Explicit overwriting of storage before reallocation
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data export approach
N/A - Data is not stored in DXC Datacentres
Data export formats
CSV
Data import formats
CSV

Data-in-transit protection

Data protection between buyer and supplier networks
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

Guaranteed availability
SLA's vary dependant on level of service selected but are better than 99.9%.
Approach to resilience
Reliable performance is an important element of any offering you purchase. We want to ensure high availability for applications that impact your critical business functions while providing the most cost-effective support.

* 24x7 service monitoring and management

* Configuration management through the ITIL based change management and move/add/change processes

* Service availability and recovery through automated failover capabilities

* Performance management for consistent and optimised availability

* Antivirus scanning at the server and application layers

* Monthly reporting on service availability and message delivery time — along with billing and accounting reports

* Data backup and restore
Outage reporting
When incidents are either detected by DXC or reported by the customer, DXC will:

* Classify incidents

* Investigate the causes; undertake appropriate remedial action to restore affected services as quickly as reasonably possible and in compliance with applicable service levels, and thereafter take appropriate action to prevent recurrence. Remedial action may include workarounds and later corrective action

* Inform you of the status of the incidents at the intervals specified above and otherwise at reasonable intervals in accordance with DXC’s standard practice

* Inform you of the resolution of the incidents (subject to reopening if the resolution is unsuccessful). Resolution may include determinations that incidents were caused by defects in the customer’s software or data, user errors, or other matters outside the scope of the services and DXC’s responsibility

Identity and authentication

User authentication needed
Yes
User authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
Access restrictions in management interfaces and support channels
The security management of PCs aligns with standard Workplace Services security policies to protect against viruses, malware, spyware, and intrusions.
Access restriction testing frequency
At least once a year
Management access authentication
2-factor authentication

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
Between 1 month and 6 months
Access to supplier activity audit information
Users have access to real-time audit information
How long supplier audit data is stored for
Between 1 month and 6 months
How long system logs are stored for
Between 1 month and 6 months

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
BSI
ISO/IEC 27001 accreditation date
23/09/2015
What the ISO/IEC 27001 doesn’t cover
N/A
ISO 28000:2007 certification
No
CSA STAR certification
Yes
CSA STAR accreditation date
29/11/2016
CSA STAR certification level
Level 3: CSA STAR Certification
What the CSA STAR doesn’t cover
N/A
PCI certification
No
Other security certifications
Yes
Any other security certifications
  • HMG Accreditation
  • PSN Accreditation

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
  • CSA CCM version 3.0
  • ISO/IEC 27001
Information security policies and processes
At the heart of our production processes are infrastructure, software and procedures to protect customer data from physical or electronic compromise. This service can meet the security requirements of UK Government in relation to information classified at OFFICIAL. * The service is certified for SOC1 and SOC2 and meets CSA STAR (self assessed) * All DXC Datacentres used to accommodate its G-Cloud customer services are covered under ISO 27001 certification

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Customers may request operational changes through the Operations Centre (such as changes to IP addresses, or server reboots).
Vulnerability management type
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Vulnerability management approach
At the heart of our production processes are infrastructure, software and procedures to protect customer data from physical or electronic compromise. This service meets the security requirements of UK Government in relation to information classified at OFFICIAL. All DXC Datacentres are covered under ISO 27001 certification.
Protective monitoring type
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach
At the heart of our production processes are infrastructure, software and procedures to protect customer data from physical or electronic compromise. This service meets the security requirements of UK Government in relation to information classified at OFFICIAL. All DXC Datacentres are covered under ISO 27001 certification.
Incident management type
Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach
At the heart of our production processes are infrastructure, software and procedures to protect customer data from physical or electronic compromise. This service meets the security requirements of UK Government in relation to information classified at OFFICIAL. All DXC Datacentres are covered under ISO 27001 certification.

Secure development

Approach to secure software development best practice
Supplier-defined process

Public sector networks

Connection to public sector networks
No

Pricing

Price
£495 to £2200 per person per day
Discount for educational organisations
No
Free trial available
No

Service documents

Return to top ↑