Greyfly Ltd.

Project Prediction

The Greyfly Project Prediction tool analyses client project data, to provide insights and predict the future success of projects, at any stage in the project life cycle. Predictive analytics/machine learning algorithms have been applied across historical project data, to build a model that highlights projects at risk.

Features

• Cloud Based Architecture, providing scalability and adaptability.
• Ingest of historical project data to predefined Greyfly Data Model.
• Data Model identifies required fields and their relationships.
• Descriptive Analytics used to identify trends, patterns or behaviours.
• Predictive Analytics/Machine Learning models built to predict project outcomes.
• Dashboard with drill down features.
• Reporting capability.

Benefits

• Improve project risk identification, to reduce the risk of failure.
• Potential cost savings, as a result of increased project success.
• Gain insight from historical project data.
• Prepare clients for an AI in PM journey.

£25,000 to £245,000 a unit

• Education pricing available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at lloyd.skinner@greyfly.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 12

Service ID

694622315333816

Contact

Lloyd Skinner
07931508640
lloyd.skinner@greyfly.co.uk

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Integrates with other portfolio (planning, finances and resource) management tools.
• Cloud deployment model: Public cloud
• Service constraints: No technical constraints envisaged. Microsoft Azure cloud platform is being used. ; ; Functionality for browsers, other than Microsoft Edge and Google Chrome, can be developed, as required.; ; Planned maintenance would be outside office hours.
• System requirements: Data format requirements to be aligned to Greyfly data model.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Response time within 24 hours.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Data cleansing and preparation based on day rates - see pricing table.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: Workshops and interviews will be held to gain an understanding of the client environment, project data sources, technical resources availability and the organisation's data strategy. Furthermore at on-boarding we will benchmark the organisations current project delivery maturity.; ; This will all be documented within a Data Audit and Plan.; ; At this stage no training is required but we will provide onsite training and user documentation at the point of service handover.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Data that is directly associated with the client will be retained for a set period of time, upon agreement with the client. ; ; Otherwise, data will be anonymised by Greyfly so that only project delivery data and general data such as sector and company size is retained. Greyfly will inform the client which data fields will be removed, such as the names of individual stakeholders. This will form the basis of the data extraction plan which will be shared with the client. Data will then be removed from the cloud at contract end and evidence provided of such.
• End-of-contract process: At the end of the first phase, there will be discussion as to whether to:; (i) continue with further development; (ii) revert to purely a regular reporting release; (iii) terminate contract completely; ; In the case of (i) and (ii), further contractual arrangements are required.; ; In the case of (iii), when all contractual obligations are completed, we will provide a data extraction plan and remove system access. The plan will set out what data we are keeping and which fields removing.; ; Plan to be confirmed within one month of termination date.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Chrome
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: Yes
• Description of service interface: Web client provided to access Project Prediction tool.
• Accessibility standards: None or don’t know
• Description of accessibility: Fully compliant with EN 301 549. User access aligned to Project Prediction tool functionality.
• Accessibility testing: None.
• API: No
• Customisation available: Yes
• Description of customisation: Bespoke development to interface to the client's portfolio management systems.

Scaling

• Independence of resources: Microsoft Azure cloud platform enables Greyfly to scale up and down as required depending on client usage.

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Physical access control, complying with SSAE-16 / ISAE 3402
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Clients access insights from their project data via a dashboard. Reports can be downloaded, but there is no need to export data.; ; Each client has view and query only access to their dedicated account on the cloud.
• Data export formats: Other
• Other data export formats: Data can not be exported
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: The application will be stored on and using Microsoft Azure Cloud offering with a SLA in place of 99.99% up time for the infrastructure.; ; In terms of application up time, our SLA is 95%.
• Approach to resilience: Microsoft Azure is certified under ISO-22301 Certification. Greyfly uses Zone-Redundant Storage (ZRS) to copy data synchronously across three Azure availability zones in the primary region. Each availability zone is a separate physical location with independent power, cooling, and networking. ; ; Backup of Azure Virtual Machines and SQL Server databases are also performed. These include full and incremental backups. Retention periods are as follows:; • Daily – Incremental retained 7 days; • Weekly – Full retained 4 weeks; • Monthly – Full retained 12 months; • Yearly – Full retained 7 years ; ; Greyfly maintains business continuity and disaster recovery plans to operate normally in the event of failures, incidents or attacks. In the event of an outage in the primary location, account failover can be performed to another availability zone within the region. Monthly and yearly backups are stored in a geographically separate region.
• Outage reporting: Email alerts

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Azure Active Directory is used to restrict access at all levels.; ; Multi-factor authentication has been implemented for Admin users.
• Access restriction testing frequency: At least every 6 months
• Management access authentication: 2-factor authentication

Audit information for users

• Access to user activity audit information: Users receive audit information on a regular basis
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users receive audit information on a regular basis
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: We comply with ISO/IEC 27001, however formal certification is not yet in place.; ; The MicroSoft Azure cloud platform is ISO/IEC 27001 certified.
• Information security policies and processes: A Cloud Application Security and Operations policy is in place, which describes roles and responsibilities for securing information. All employees and subcontractors are required to complete annual security awareness training and sign a declaration.; ; The person responsible for security is a board member and provides updates at monthly board meetings on security issues, mitigations and any plans for improvements.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Greyfly uses tracking & support software to record all incidents raised by clients or internally. These incidents are fully tracked until to closure, with full reporting available to clients upon request. The system is also used to record and track all future enhancements to their systems.; ; All enhancements/updates to the system are fully unit tested by the developers prior to being passed to Greyfly’s Test Team. ; ; Code scanning is performed to check for vulnerabilities.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Greyfly has implemented the integrated vulnerability scanner that comes Microsoft Azure Security Center, powered by Qualys. This system will monitor the Azure VMs and SQL servers to provide details on any vulnerabilities, together with recommendations.; ; Any patches will need to be fully tested prior to any deployment and form part of the normal cycle of deployments if declared a non-urgent patch. If the patch is determined to be urgent then the patch will be deployed within 24 hours of full testing.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Greyfly use Azure Security Center Standard for enhanced security management and threat protection in our cloud environment. ; ; Security Center automatically collects, analyses, and integrates log data from various sources. A list of prioritised security alerts is shown on the Security Center dashboard, which is monitored by our Security Admin. High and Medium severity security alerts are logged and tracked in our helpdesk system and escalated as appropriate.; ; As part of Azure Security Center, Greyfly has implemented the Azure App Service to provide management, monitoring, and operational insights for web applications and APIs.
• Incident management type: Supplier-defined controls
• Incident management approach: Greyfly has implemented a helpdesk system to log and track all incidents, raised by the client or internally. These incidents are fully tracked to closure, with full reporting available to clients upon request. The system is also used to record and track all future enhancements to their systems.; ; All incidents raised by clients must be sent to our support email, which will be supplied at contract signing. For urgent incidents the client can call the support team direct but will be required to follow up with an email. These emails are monitored by Greyfly’s support team during normal working hours.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Pricing

• Price: £25,000 to £245,000 a unit
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at lloyd.skinner@greyfly.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.