ServiceNow Implementation

Phased or big-bang implementation of the ServiceNow Enterprise Cloud Platform for new customers of ServiceNow. Design workshops. Requirement (story) capture under an Agile project framework. Process definition and documentation. Transformational best practice. Configuration of the route to live instances. Promotion of configuration into Production in line with customer's change process.


  • ServiceNow IT Service Management implementation
  • ServiceNow IT Operations Management implementation
  • ServiceNow HR Implementation
  • ServiceNow CSM Implementation
  • Agile project management methodology
  • ITIL v3 modelled ITSM process transformation


  • ServiceNow SaaS delivers enterprise level class leading ITSM/ITOM, HR, CSM
  • Leverage all the benefits of the ServiceNow enterprise cloud platform
  • A fully project managed implementation
  • Technical development expertise on the ServiceNow platform
  • ITILv3 Expert accredited ITSM process transformation
  • Agile product development methodology
  • Hybrid on site/remote working optimises costs
  • Accesses global technical talent pools, avoiding local ServiceNow resource shortages
  • Registered ServiceNow services partner with fully certified/accredited resources


£475 to £900 per person per day

  • Education pricing available

Service documents


G-Cloud 11

Service ID

4 7 6 5 6 6 4 2 2 3 8 7 6 5 1



Mike Heywood

07818 060766

Service scope

Service scope
Software add-on or extension Yes
What software services is the service an extension to This is an implementation service provided by Scarce IT Services for the implementation of ServiceNow.
Cloud deployment model Public cloud
Service constraints Customer must have purchased ServiceNow licences from ServiceNow or from a registered ServiceNow sales partner. Scarce can facilitate this if required
System requirements Client must own ServiceNow enterprise licences

User support

User support
Email or online ticketing support Email or online ticketing
Support response times P1 - Respond 1 business hour, resolve 4 business hours P2- Resolve 8 business hours P3 - Resolve 3 business days P4 - Resolve 5 business days P1 support can be purchased for weekends - same SLA applies.
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 24 hours, 7 days a week
Web chat support Yes, at an extra cost
Web chat support availability 24 hours, 7 days a week
Web chat support accessibility standard None or don’t know
How the web chat support is accessible Web chat would need to be installed and enabled on the client's ServiceNow instance. Scarce can implement this if desired.
Web chat accessibility testing The platform offers a web chat facility to all registered instance users. Scarce is an implementation and support services partner for ServiceNow so we wouldn't perform testing as such.
Onsite support No
Support levels 1. Service Desk.
a. Core Hours Service Desk, 9-5 M-F
b. Additional Support Hours @
c. 24x7 Phone On Call for P1 Incidents

2. Incident Packages.
a. PAYG per incident (no package)
b. 10 Incident package
c. 25 Incident package
d. 50 Incident package

3. Service Request Packages.
a. PAYG per request
b. 10 request package
c. 25 request package
d. 50 request package

4. Chargeable services.
b. 5 Day Package
c. 10 Day Package
d. Additional Days

**Please note FULL PRICING for all above is accessible through our rate card (supplied).**

5. Service Level Management. We provide a technical account manager who will work with your service owner/manager to deal with issues and to review service levels regularly.

** Our services are modular and are designed to offer maximum flexibility to augment your organisation's existing support/development capability **
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started This is a professional services engagement to implement third party software (ServiceNow). ServiceNow platform training and documentation is available and can be arranged in line with your requirements. As part of the implementation we will highlight and address all user (operator) learning requirements and complete full operational readiness to ensure your organisation is prepared for go-live.
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction N/A
End-of-contract process The implementation work order (contract) covers the configuration of tooling and processes to ensure your organisation can operate from day 1 of go-live. Once operationally accepted the work effectively ends. Customers are encouraged to consider our support service offering which provides a full managed service desk capability. In addition, future phases of development can be arranged under "Evolve" work orders (further contracts).

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service ServiceNow works fully on mobile and tablet and our services can be accessed via those versions.
Service interface No
Customisation available Yes
Description of customisation Best practice is not to "customise" the ServiceNow platform but to "configure" it to model your organisation's processes. Scarce will work with your organisation to understand your processes (and help improve where recommended) and identify all configuration to support the new processes. This configuration set will be delivered in line with your priorities via Agile as part of the overall project scope.


Independence of resources Implementation work orders will ring fence the technical, project and architect resources required to deliver the entire scope of work.


Service usage metrics Yes
Metrics types Scarce monitor all our service levels to ensure you are receiving the highest level of service from us. This is achieved through dashboards and reports that we define and share with you. Your account manager will arrange regular meeting with your service owner/manager to review and deal with any issues early.
Reporting types
  • Real-time dashboards
  • Regular reports
  • Reports on request


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Staff screening not performed
Government security clearance Up to Security Clearance (SC)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations Yes
Datacentre security standards Managed by a third party
Penetration testing frequency At least once a year
Penetration testing approach Another external penetration testing organisation
Protecting data at rest Other
Other data at rest protection approach ServiceNow offers two data at rest encryption options selectable by the buyer.
1. Full disk encryption: (self-encrypting hard drives using AES256 bit encryption). ServiceNow can facilitate this at additional cost, protects against data exposure through theft/loss of hard disks storing customer data; OR
2. Column encryption (data encryption using AES128/256 or 3DES symmetric key encryption). Restricts searching and reporting of data stored in these columns.
Data sanitisation process Yes
Data sanitisation type Explicit overwriting of storage before reallocation
Equipment disposal approach A third-party destruction service

Data importing and exporting

Data importing and exporting
Data export approach The ServiceNow platform is versatile in enabling users to extract data in dashboards, reports or in files of varying types including CSV and Excel formats. Training can be provided to teach users this simple practice if required.
Data export formats CSV
Data import formats Other
Other data import formats Excel

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks Other
Other protection between networks Our service is provided through the buyer's ServiceNow instance inside their network so nothing is in transit outside of the platform.
Data protection within supplier network Other
Other protection within supplier network Our service is provided through the buyer's ServiceNow instance inside their network so nothing is in transit outside of the platform.

Availability and resilience

Availability and resilience
Guaranteed availability ServiceNow commits to 99.8% monthly availability for customer live environments but typically achieves over 99.99% . Their High Availability design covers the whole ServiceNow platform and application layers.
Approach to resilience Both the ServiceNow data centres and their SaaS infrastructure operate as high availability. The buyer's live environment data is held across paired data centre instances which are aligned via asynchronous database replication techniques. This is an Active/Active set up. Continuous asynchronous replication is maintained from the primary (read-write) to the secondary (read-only).
Outage reporting Incident tickets, requests and queries can be raised to ServiceNow via their HI portal. However there are no SLA resolution commitments only response commitments.

Scarce offers a Service Desk service enabling incidents, requests, off-catalogue chargeable services and other requirements to be requested and managed under full and competitive SLAs.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • 2-factor authentication
  • Username or password
Access restrictions in management interfaces and support channels Users are restricted by ACLs, roles and groups. Each user is assigned a group and a role, each of which is granted a set of access rights. When a user attempts to access a function, access shall be denied if their role/group does not contain the relevant permissions.
Access restriction testing frequency At least every 6 months
Management access authentication Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for At least 12 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 ServiceNow
ISO/IEC 27001 accreditation date 2012
What the ISO/IEC 27001 doesn’t cover Details can be found here:
ISO 28000:2007 certification No
CSA STAR certification Yes
CSA STAR accreditation date 2015
CSA STAR certification level Level 1: CSA STAR Self-Assessment
What the CSA STAR doesn’t cover Details here:
PCI certification No
Other security certifications Yes
Any other security certifications
  • ISO/IEC 27018
  • SSAE SOC 1 Type 2 and SOC 2 Type
  • FedRAMP moderate

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards ISO/IEC 27001
Information security policies and processes ServiceNow complies with the following (this may not be exhaustive):
SSAE 16 SOC 1 Type 1 &2
SSAE 16 SOC 2 Type 1
SO 27001

Operational security

Operational security
Configuration and change management standard Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach ServiceNow operates an ITILv3 aligned Change Management process through the ITSM application that sits on its platform. All our work (incident resolution, implementation etc) shall follow your CM process as modelled in ServiceNow. Changes are encapsulated in "update sets".
Should you appoint us as custodians of your ServiceNow instance we shall act as reviewers and approvers.
Vulnerability management type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Vulnerability management approach This is fully managed by ServiceNow for all its customers. ServiceNow follows the Change Management process to pull in the affected assets and to apply any required patches to address a threat. The buyer's instance is protected using the the High Availability architecture which cuts over to the secondary data centre during patching to mitigate any degradation or availability.
Protective monitoring type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach ServiceNow use Splunk for log collection on all customer instance supporting infrastructure. In addition, Sourcefire is used for IDS to monitor inbound DMZ traffic. Both systems are monitored via proactive alerting (24hr response target).
Incident management type Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach ServiceNow manages the buyer's incidents via ITILv3 aligned best practice using automated workflow inherent to the platform. Their end to end IM encompasses the detection, triage, assignment, notification, resolution and PIR stages. However ServiceNow do not commit to resolution SLAs.

Scarce provides assurance to buyers by becoming an SME intermediary and resolving the vast majority of incidents quickly without the need for ServiceNow involvement. This is incorporated seamlessly into your implementation and follows the same ITILv3 best practice approach as modelled in your instance.

Secure development

Secure development
Approach to secure software development best practice Conforms to a recognised standard, but self-assessed

Public sector networks

Public sector networks
Connection to public sector networks No


Price £475 to £900 per person per day
Discount for educational organisations Yes
Free trial available No

Service documents

Return to top ↑