Greyfly Ltd.

Project Prediction

The Greyfly Project Prediction tool analyses client project data, to provide insights and predict the future success of projects, at any stage in the project life cycle. Predictive analytics/machine learning algorithms have been applied across historical project data, to build a model that highlights projects at risk.

Features

  • Cloud Based Architecture, providing scalability and adaptability.
  • Ingest of historical project data to predefined Greyfly Data Model.
  • Data Model identifies required fields and their relationships.
  • Descriptive Analytics used to identify trends, patterns or behaviours.
  • Predictive Analytics/Machine Learning models built to predict project outcomes.
  • Dashboard with drill down features.
  • Reporting capability.

Benefits

  • Improve project risk identification, to reduce the risk of failure.
  • Potential cost savings, as a result of increased project success.
  • Gain insight from historical project data.
  • Prepare clients for an AI in PM journey.

Pricing

£214,375 to £245,000 a unit

  • Education pricing available

Service documents

Framework

G-Cloud 12

Service ID

6 9 4 6 2 2 3 1 5 3 3 3 8 1 6

Contact

Greyfly Ltd. Lloyd Skinner
Telephone: 07931508640
Email: lloyd.skinner@greyfly.co.uk

Service scope

Software add-on or extension
Yes, but can also be used as a standalone service
What software services is the service an extension to
Integrates with other portfolio (planning, finances and resource) management tools.
Cloud deployment model
Public cloud
Service constraints
No technical constraints envisaged. Microsoft Azure cloud platform is being used.

Functionality for browsers, other than Microsoft Edge and Google Chrome, can be developed, as required.

Planned maintenance would be outside office hours.
System requirements
Data format requirements to be aligned to Greyfly data model.

User support

Email or online ticketing support
Email or online ticketing
Support response times
Response time within 24 hours.
User can manage status and priority of support tickets
No
Phone support
Yes
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
No
Onsite support
Yes, at extra cost
Support levels
Data cleansing and preparation based on day rates - see pricing table.
Support available to third parties
No

Onboarding and offboarding

Getting started
Workshops and interviews will be held to gain an understanding of the client environment, project data sources, technical resources availability and the organisation's data strategy. Furthermore at on-boarding we will benchmark the organisations current project delivery maturity.

This will all be documented within a Data Audit and Plan.

At this stage no training is required but we will provide onsite training and user documentation at the point of service handover.
Service documentation
Yes
Documentation formats
PDF
End-of-contract data extraction
Data that is directly associated with the client will be retained for a set period of time, upon agreement with the client.

Otherwise, data will be anonymised by Greyfly so that only project delivery data and general data such as sector and company size is retained. Greyfly will inform the client which data fields will be removed, such as the names of individual stakeholders. This will form the basis of the data extraction plan which will be shared with the client. Data will then be removed from the cloud at contract end and evidence provided of such.
End-of-contract process
At the end of the first phase, there will be discussion as to whether to:
(i) continue with further development
(ii) revert to purely a regular reporting release
(iii) terminate contract completely

In the case of (i) and (ii), further contractual arrangements are required.

In the case of (iii), when all contractual obligations are completed, we will provide a data extraction plan and remove system access. The plan will set out what data we are keeping and which fields removing.

Plan to be confirmed within one month of termination date.

Using the service

Web browser interface
Yes
Supported browsers
  • Microsoft Edge
  • Chrome
Application to install
No
Designed for use on mobile devices
No
Service interface
Yes
Description of service interface
Web client provided to access Project Prediction tool.
Accessibility standards
None or don’t know
Description of accessibility
Fully compliant with EN 301 549. User access aligned to Project Prediction tool functionality.
Accessibility testing
None.
API
No
Customisation available
Yes
Description of customisation
Bespoke development to interface to the client's portfolio management systems.

Scaling

Independence of resources
Microsoft Azure cloud platform enables Greyfly to scale up and down as required depending on client usage.

Analytics

Service usage metrics
No

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Other security clearance
Government security clearance
Up to Security Clearance (SC)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations
No
Datacentre security standards
Managed by a third party
Penetration testing frequency
At least once a year
Penetration testing approach
Another external penetration testing organisation
Protecting data at rest
Physical access control, complying with SSAE-16 / ISAE 3402
Data sanitisation process
Yes
Data sanitisation type
Deleted data can’t be directly accessed
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data export approach
Clients access insights from their project data via a dashboard. Reports can be downloaded, but there is no need to export data.

Each client has view and query only access to their dedicated account on the cloud.
Data export formats
Other
Other data export formats
Data can not be exported
Data import formats
CSV

Data-in-transit protection

Data protection between buyer and supplier networks
TLS (version 1.2 or above)
Data protection within supplier network
TLS (version 1.2 or above)

Availability and resilience

Guaranteed availability
The application will be stored on and using Microsoft Azure Cloud offering with a SLA in place of 99.99% up time for the infrastructure.

In terms of application up time, our SLA is 95%.
Approach to resilience
Microsoft Azure is certified under ISO-22301 Certification. Greyfly uses Zone-Redundant Storage (ZRS) to copy data synchronously across three Azure availability zones in the primary region. Each availability zone is a separate physical location with independent power, cooling, and networking.

Backup of Azure Virtual Machines and SQL Server databases are also performed. These include full and incremental backups. Retention periods are as follows:
• Daily – Incremental retained 7 days
• Weekly – Full retained 4 weeks
• Monthly – Full retained 12 months
• Yearly – Full retained 7 years

Greyfly maintains business continuity and disaster recovery plans to operate normally in the event of failures, incidents or attacks. In the event of an outage in the primary location, account failover can be performed to another availability zone within the region. Monthly and yearly backups are stored in a geographically separate region.
Outage reporting
Email alerts

Identity and authentication

User authentication needed
Yes
User authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
Access restrictions in management interfaces and support channels
Azure Active Directory is used to restrict access at all levels.

Multi-factor authentication has been implemented for Admin users.
Access restriction testing frequency
At least every 6 months
Management access authentication
2-factor authentication

Audit information for users

Access to user activity audit information
Users receive audit information on a regular basis
How long user audit data is stored for
At least 12 months
Access to supplier activity audit information
Users receive audit information on a regular basis
How long supplier audit data is stored for
At least 12 months
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
No
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Other security certifications
No

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
No
Security governance approach
We comply with ISO/IEC 27001, however formal certification is not yet in place.

The MicroSoft Azure cloud platform is ISO/IEC 27001 certified.
Information security policies and processes
A Cloud Application Security and Operations policy is in place, which describes roles and responsibilities for securing information. All employees and subcontractors are required to complete annual security awareness training and sign a declaration.

The person responsible for security is a board member and provides updates at monthly board meetings on security issues, mitigations and any plans for improvements.

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Greyfly uses tracking & support software to record all incidents raised by clients or internally. These incidents are fully tracked until to closure, with full reporting available to clients upon request. The system is also used to record and track all future enhancements to their systems.

All enhancements/updates to the system are fully unit tested by the developers prior to being passed to Greyfly’s Test Team.

Code scanning is performed to check for vulnerabilities.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
Greyfly has implemented the integrated vulnerability scanner that comes Microsoft Azure Security Center, powered by Qualys. This system will monitor the Azure VMs and SQL servers to provide details on any vulnerabilities, together with recommendations.

Any patches will need to be fully tested prior to any deployment and form part of the normal cycle of deployments if declared a non-urgent patch. If the patch is determined to be urgent then the patch will be deployed within 24 hours of full testing.
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
Greyfly use Azure Security Center Standard for enhanced security management and threat protection in our cloud environment.

Security Center automatically collects, analyses, and integrates log data from various sources. A list of prioritised security alerts is shown on the Security Center dashboard, which is monitored by our Security Admin. High and Medium severity security alerts are logged and tracked in our helpdesk system and escalated as appropriate.

As part of Azure Security Center, Greyfly has implemented the Azure App Service to provide management, monitoring, and operational insights for web applications and APIs.
Incident management type
Supplier-defined controls
Incident management approach
Greyfly has implemented a helpdesk system to log and track all incidents, raised by the client or internally. These incidents are fully tracked to closure, with full reporting available to clients upon request. The system is also used to record and track all future enhancements to their systems.

All incidents raised by clients must be sent to our support email, which will be supplied at contract signing. For urgent incidents the client can call the support team direct but will be required to follow up with an email. These emails are monitored by Greyfly’s support team during normal working hours.

Secure development

Approach to secure software development best practice
Supplier-defined process

Public sector networks

Connection to public sector networks
No

Pricing

Price
£214,375 to £245,000 a unit
Discount for educational organisations
Yes
Free trial available
No

Service documents