S8080 Limited

Umbraco CMS website

Secure, compliant Umbraco content management system website design and build from S8080. Umbraco CMS software is free, freeing up budget for stakeholder requirements gathering, user experience and service design, engaging creative and robust Microsoft .NET development. Solving complex Umbraco integration, single sign-on, CRM, configuration and workflow problems cleanly and efficiently.

Features

  • Fully customisable Umbraco template design
  • Responsive mobile friendly design
  • Optimised Umbraco performance and custom .NET code development
  • Fully accessible
  • Fully compliant
  • Multi-lingual capabilities
  • Cross-browser administrator access
  • Content versioning
  • Umbraco workflow – simple and complex user matrices
  • User access privileges

Benefits

  • Extensive Microsoft .NET public sector knowledge and experience
  • Free – no software licence costs with Umbraco
  • Rackspace or Microsoft Azure Umbraco cloud hosting
  • User centred design approach
  • Safe and secure – ISO/IEC 27001:2013 certified
  • Agile and moveable, you’re not tied to a web agency
  • Large (and fast moving) Umbraco development community
  • Modular systems - 3rd party Umbraco extensions
  • Robust, proven functionality – hundreds of thousands of installs worldwide
  • UK based agency, Umbraco team and hosting provision. No freelancers

Pricing

£600 to £750 per person per day

  • Minimum contract period: Day
  • Excluding VAT

Service documents

7856124605557831

S8080 Limited

Christopher Cowell

01792 485566

chris@s8080.com

Support

Support
Name Content
Support service type
  • Service desk
  • Email
  • Phone
  • Onsite
Support accessible to any third-party suppliers Yes
Support availability Monday to Friday, 9.00am until 5.30pm. 24/7/365 support is also available to our clients if required.
Standard support response times We will respond to your query within 2 hours, but in reality it's usually a lot quicker.
Incident escalation process available Yes

Open standards

Open standards
Name Content
Open standards supported and documented Yes

Onboarding and offboarding

Onboarding and offboarding
Name Content
Service onboarding process included Yes
Service offboarding process included Yes

Analytics

Analytics
Name Content
Real-time management information available Yes

Cloud features

Cloud features
Name Content
Elastic cloud approach supported Yes
Guaranteed resources defined Yes
Persistent storage supported Yes

Provisioning

Provisioning
Name Content
Self-service provisioning supported No
Service provisioning time Depending on scope, a CMS can be commissioned in a matter of days.
Service deprovisioning time Immediate.

Open source

Open source
Name Content
Open-source software used and supported Yes

Code libraries

Code libraries
Name Content
Languages your code libraries are written in
  • C# (ASP.Net)
  • MVC / WebForms
  • Javascript
  • HTML/HTML5
  • CSS2/3
  • Bootstrap
  • SASS

API access

API access
Name Content
API access available and supported Yes
API type RESTful and SOAP API's can be provided.

Networks and connectivity

Networks and connectivity
Name Content
Networks the service is directly connected to Internet

Access

Access
Name Content
Supported web browsers
  • Internet Explorer 6
  • Internet Explorer 7
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10+
  • Firefox
  • Chrome
  • Safari
  • Opera
Offline working and syncing supported No
Supported devices
  • PC
  • Mac
  • Smartphone
  • Tablet

Certifications

Certifications
Name Content
Vendor certification(s)
  • ISO/IEC 27001:2013 information security management
  • BS EN ISO 9001:2008 quality management
  • ISO 14001:2004 environmental management
  • OHSAS 18001:2007 occupational health and safety management
  • Investors in People
  • Prince2 Practitioner
  • Certified Scrum Master

Identity standards

Identity standards
Name Content
Identity standards your service uses
  • Employed as required
  • SOAP
  • REST
  • XML

Data storage

Data storage
Name Content
Datacentres adhere to the EU code of conduct for energy-efficient datacentres Yes
User-defined data location Yes
Datacentre tier Uptime Institute Tier 3
Backup, disaster recovery and resilience plan in place Yes
Data extraction/removal plan in place Yes

Data-in-transit protection

Data-in-transit protection
Name Content
Data protection between user device and service No encryption, assured by independent testing of implementation

Asset protection and resilience

Asset protection and resilience
Name Content
Datacentre location UK, assured by contractual commitment
Data management location UK, assured by contractual commitment
Legal jurisdiction of service provider UK, assured by contractual commitment
Datacentre protection Yes, assured by contractual commitment
Data-at-rest protection
  • CPA Foundation-grade assured components
  • FIPS-assured encryption
  • Other encryption
  • Physical access control
Assured by independent validation of assertion
Secure data deletion Other erasure process, assured by independent validation of assertion
Service availability 99.99, assured by independent validation of assertion

Separation between consumers

Separation between consumers
Name Content
Cloud deployment model Public cloud, assured by independent validation of assertion
Type of consumer No other consumer, assured by independent validation of assertion
Services separation Yes, assured by assurance of service design
Services management separation Yes, assured by assurance of service design

Governance

Governance
Name Content
Governance framework Yes, assured by independent validation of assertion

Configuration and change management

Configuration and change management
Name Content
Change impact assessment Yes, assured by independent validation of assertion

Vulnerability management

Vulnerability management
Name Content
Vulnerability assessment Yes, assured by independent validation of assertion
Vulnerability monitoring Yes, assured by independent validation of assertion
Vulnerability mitigation prioritisation Yes, assured by independent validation of assertion
Vulnerability tracking Yes, assured by independent validation of assertion
Vulnerability mitigation timescales Yes, assured by independent validation of assertion

Event monitoring

Event monitoring
Name Content
Event monitoring Yes, assured by independent validation of assertion

Incident management

Incident management
Name Content
Incident management processes Yes, assured by independent validation of assertion
Consumer reporting of security incidents Yes, assured by independent validation of assertion
Security incident definition published Yes, assured by independent validation of assertion

Personnel security

Personnel security
Name Content
Personnel security checks
  • Security clearance national vetting (SC)
  • Baseline personnel security standard (BPSS)
  • Employment checks
Assured by independent validation of assertion

Secure development

Secure development
Name Content
Secure development Yes, assured by independent validation of assertion
Secure design, coding, testing and deployment Yes, assured by independent validation of assertion
Software configuration management Yes, assured by independent validation of assertion

Supply-chain security

Supply-chain security
Name Content
Visibility of data shared with third-party suppliers Yes, assured by independent validation of assertion
Third-party supplier security requirements Yes, assured by independent validation of assertion
Third-party supplier risk assessment Yes, assured by independent validation of assertion
Third-party supplier compliance monitoring Yes, assured by independent validation of assertion

Authentication of consumers

Authentication of consumers
Name Content
User authentication and access management Yes, assured by independent validation of assertion
User access control through support channels Yes, assured by independent validation of assertion

Separation and access control within management interfaces

Separation and access control within management interfaces
Name Content
User access control within management interfaces Yes, assured by independent validation of assertion
Administrator permissions Yes, assured by independent validation of assertion

Identity and authentication

Identity and authentication
Name Content
Identity and authentication controls
  • Username and two-factor authentication
  • Username and TLS client certificate
  • Authentication federation
  • Limited access over dedicated link, enterprise or community network
  • Username and password
  • Username and strong password/passphrase enforcement

Secure service administration

Secure service administration
Name Content
Service management model Direct service management, assured by independent validation of assertion

Audit information provision to consumers

Audit information provision to consumers
Name Content
Audit information provided Data made available, assured by independent validation of assertion

Secure use of the service by the customer

Secure use of the service by the customer
Name Content
Device access method
  • Corporate/enterprise devices
  • Partner devices
  • Unknown devices
Assured by independent validation of assertion
Training Yes, assured by independent validation of assertion
Return to top ↑