dxw

GovPress

GovPress is a secure, managed WordPress platform for the public sector. GovPress allows you to host WordPress-based sites in the cloud without worrying about security, backups, plugin updates, infrastructure management, monitoring or performance. It's secure, flexible and cost-effective - and ISO27001-certified.

Features

  • Secure, ISO-27001 service suitable for OFFICIAL-SENSITIVE information
  • Fully managed service: we deal with maintenance, updates and monitoring
  • Easy access to WordPress experts when you need help
  • EU-based hosting in the cloud, fully DPA compliant
  • Flexible, on-demand scaling according to your need
  • Cost-effective pay-as-you-use pricing
  • Easy access for your developers via git, if needed

Benefits

  • Reduced information risk: never miss an update
  • Easy access to expert help when you need it
  • Reduced costs compared to physical hosting and in-house staff
  • Wordpress's intuitive publishing experience requires minimal user training
  • Huge variety of additional functionality available via community plugins
  • Wordpress is a flexible CMS, supported by large supplier community
  • Flexible pricing: only pay for the security and capacity needed

Pricing

£350 to £3500 per unit per month

  • Minimum contract period: Month
  • Excluding VAT

Service documents

G-Cloud 8

419694345170978

dxw

Harry Metcalfe

0345 257 7520

sales@dxw.com

Support

Support
Support service type
  • Service desk
  • Phone
  • Onsite
Support accessible to any third-party suppliers Yes
Support availability 1000-1800 for routine issues, 24/7 for emergencies
Standard support response times Varies from minutes to days, depending on severity
Incident escalation process available Yes

Open standards

Open standards
Open standards supported and documented Yes

Onboarding and offboarding

Onboarding and offboarding
Service onboarding process included Yes
Service offboarding process included Yes

Analytics

Analytics
Real-time management information available Yes

Cloud features

Cloud features
Elastic cloud approach supported No
Guaranteed resources defined Yes
Persistent storage supported Yes

Provisioning

Provisioning
Self-service provisioning supported No
Service provisioning time From a couple of hours to a couple of days, depending on complexity
Service deprovisioning time From a couple of hours to a couple of days, depending on complexity

Open source

Open source
Open-source software used and supported Yes

API access

API access
API access available and supported Yes
API type XMLRPC, REST

Networks and connectivity

Networks and connectivity
Networks the service is directly connected to Internet

Access

Access
Supported web browsers
  • Internet Explorer 7
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10+
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
Offline working and syncing supported No
Supported devices
  • PC
  • Mac
  • Smartphone
  • Tablet

Certifications

Certifications
Vendor certification(s) ISO27001:2015

Data storage

Data storage
Datacentres adhere to the EU code of conduct for energy-efficient datacentres Yes
User-defined data location No
Datacentre tier TIA-942 Tier 4
Backup, disaster recovery and resilience plan in place Yes
Data extraction/removal plan in place Yes

Data-in-transit protection

Data-in-transit protection
Data protection between user device and service
Data protection within service
Data protection between services

Asset protection and resilience

Asset protection and resilience
Datacentre location
Data management location
Legal jurisdiction of service provider UK, assured by Service provider assertion
Datacentre protection Yes, assured by Service provider assertion
Data-at-rest protection
Secure data deletion Other erasure process, assured by Independent testing of implementation
Storage media disposal Other destruction/erasure process, assured by Independent validation of assertion
Secure equipment disposal Yes, assured by Independent validation of assertion
Redundant equipment accounts revoked Yes, assured by Independent validation of assertion
Service availability 99.99%, assured by Service provider assertion

Separation between consumers

Separation between consumers
Cloud deployment model Public cloud, assured by Independent validation of assertion
Type of consumer Only government consumers, assured by Independent validation of assertion
Services separation Yes, assured by Independent testing of implementation
Services management separation No, assured by Independent testing of implementation

Governance

Governance
Governance framework Yes, assured by Independent validation of assertion

Configuration and change management

Configuration and change management
Configuration and change management tracking Yes, assured by Independent validation of assertion
Change impact assessment Yes, assured by Independent validation of assertion

Vulnerability management

Vulnerability management
Vulnerability assessment Yes, assured by Independent validation of assertion
Vulnerability monitoring Yes, assured by Independent validation of assertion
Vulnerability mitigation prioritisation Yes, assured by Independent validation of assertion
Vulnerability tracking Yes, assured by Independent validation of assertion
Vulnerability mitigation timescales Yes, assured by Independent validation of assertion

Event monitoring

Event monitoring
Event monitoring Yes, assured by Independent validation of assertion

Incident management

Incident management
Incident management processes Yes, assured by Independent validation of assertion
Consumer reporting of security incidents Yes, assured by Independent validation of assertion
Security incident definition published Yes, assured by Independent validation of assertion

Personnel security

Personnel security
Personnel security checks

Secure development

Secure development
Secure development Yes, assured by Independent validation of assertion
Secure design, coding, testing and deployment Yes, assured by Independent validation of assertion
Software configuration management Yes, assured by Independent validation of assertion

Supply-chain security

Supply-chain security
Visibility of data shared with third-party suppliers Yes, assured by Independent validation of assertion
Third-party supplier security requirements Yes, assured by Independent validation of assertion
Third-party supplier risk assessment Yes, assured by Independent validation of assertion
Third-party supplier compliance monitoring No, assured by Independent validation of assertion
Hardware and software verification Yes, assured by Independent validation of assertion

Authentication of consumers

Authentication of consumers
User authentication and access management Yes, assured by Independent testing of implementation
User access control through support channels Yes, assured by Independent testing of implementation

Separation and access control within management interfaces

Separation and access control within management interfaces
User access control within management interfaces Yes, assured by Independent testing of implementation
Administrator permissions Yes, assured by Independent testing of implementation
Management interface protection Yes, assured by Independent testing of implementation

Identity and authentication

Identity and authentication
Identity and authentication controls

External interface protection

External interface protection
Onboarding guidance provided Yes, assured by Independent validation of assertion
Interconnection method provided

Secure service administration

Secure service administration
Service management model

Audit information provision to consumers

Audit information provision to consumers
Audit information provided Data made available by negotiation, assured by Independent validation of assertion

Secure use of the service by the customer

Secure use of the service by the customer
Device access method
Service configuration guidance Yes, assured by Independent testing of implementation
Training Yes, assured by Independent validation of assertion
Return to top ↑