S8080 Limited

Cloud based open source websites and web applications

Open source means the CMS software is free. This frees up budget for user experience, engaging design and robust, secure functionality. Whatever features you need, chances are there's already a free extension for it. This, coupled with S8080’s agile development process, makes open source content management systems such good value.

Features

  • Fully customisable open source template design
  • Responsive mobile optimised open source websites and applications
  • Optimised performance and custom code development
  • Multi-lingual capabilities
  • Fully compliant and fully accessible
  • Cross-browser administrator access
  • Content versioning, audit and rollback
  • Complete control of your open source CMS web pages
  • Choice – Drupal or Umbraco are ideal for larger websites
  • Anti DDOS measures and PEN testing

Benefits

  • Extensive open source public sector knowledge and experience
  • Safe and secure – ISO/IEC 27001:2013 certified
  • Prototype testing - user centred design approach
  • Agile and moveable, you’re not tied to a web agency
  • Large (and fast moving) open source development community
  • Modular systems - thousands of 3rd party open source extensions
  • Robust, proven functionality – tried and tested by governments worldwide
  • UK based agency, development team and hosting provision. No freelancers
  • Free – no software licence costs with open source software
  • Rackspace, Microsoft Azure or Acquia cloud hosting options

Pricing

£600 per person per day

  • Minimum contract period: Day
  • Excluding VAT
  • Education pricing available
  • Trial option available

Service documents

G-Cloud 8

873603851020916

S8080 Limited

Christopher Cowell

01792 485566

chris@s8080.com

Support

Support
Support service type
  • Service desk
  • Email
  • Phone
  • Live chat
  • Onsite
Support accessible to any third-party suppliers Yes
Support availability 24/7 - 365 days a year.
Standard support response times Within 30 minutes.
Incident escalation process available Yes

Open standards

Open standards
Open standards supported and documented Yes

Onboarding and offboarding

Onboarding and offboarding
Service onboarding process included Yes
Service offboarding process included Yes

Analytics

Analytics
Real-time management information available Yes

Cloud features

Cloud features
Elastic cloud approach supported Yes
Guaranteed resources defined Yes
Persistent storage supported Yes

Provisioning

Provisioning
Self-service provisioning supported Yes
Service provisioning time Depending on scope, service can be up and running in one to two days.
Service deprovisioning time Immediate.

Open source

Open source
Open-source software used and supported Yes

Code libraries

Code libraries
Languages your code libraries are written in
  • ASP.Net (VB and C#)
  • MySQL
  • PHP
  • JavaScript
  • SASS
  • HTML 5 and CSS 2/3
  • Shell Scripting (BASH)
  • Symfony
  • Bootstrap
  • Microsoft SQL Server 2000 – 2012

API access

API access
API access available and supported Yes
API type RESTful and SOAP

Networks and connectivity

Networks and connectivity
Networks the service is directly connected to Internet

Access

Access
Supported web browsers
  • Internet Explorer 6
  • Internet Explorer 7
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10+
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
Offline working and syncing supported Yes
Supported devices
  • PC
  • Mac
  • Smartphone
  • Tablet

Certifications

Certifications
Vendor certification(s)
  • ISO/IEC 27001:2013 information security management
  • Cyber Essentials
  • ISO 9001:2008 quality management
  • ISO 14001:2004 environmental management
  • OHSAS 18001:2007 occupational health and safety management
  • Investors in People
  • Prince2 Practitioner and Certified Scrum Master
  • Drupal Association Partner
  • Acquia Partner
  • EPiServer Partner

Identity standards

Identity standards
Identity standards your service uses
  • Shibboleth
  • SAML
  • SOAP
  • REST
  • OAuth
  • OpenID
  • Active Directory
  • XML
  • Identity standards employed as required

Data storage

Data storage
Datacentres adhere to the EU code of conduct for energy-efficient datacentres Yes
User-defined data location Yes
Datacentre tier Uptime Institute Tier 3
Backup, disaster recovery and resilience plan in place Yes
Data extraction/removal plan in place Yes

Data-in-transit protection

Data-in-transit protection
Data protection between user device and service

Asset protection and resilience

Asset protection and resilience
Datacentre location
Data management location
Legal jurisdiction of service provider UK, assured by Independent validation of assertion
Datacentre protection Yes, assured by Independent validation of assertion
Data-at-rest protection
Secure data deletion Other secure erasure process, assured by Independent testing of implementation
Service availability 99.9991%, assured by Independent validation of assertion

Separation between consumers

Separation between consumers
Cloud deployment model Hybrid cloud, assured by Independent validation of assertion
Type of consumer No other consumer, assured by Independent validation of assertion
Services separation Yes, assured by Independent testing of implementation
Services management separation Yes, assured by Independent testing of implementation

Governance

Governance
Governance framework Yes, assured by Independent validation of assertion

Configuration and change management

Configuration and change management
Change impact assessment Yes, assured by Independent validation of assertion

Vulnerability management

Vulnerability management
Vulnerability assessment Yes, assured by Independent validation of assertion
Vulnerability monitoring Yes, assured by Independent validation of assertion
Vulnerability mitigation prioritisation Yes, assured by Independent validation of assertion
Vulnerability tracking Yes, assured by Independent validation of assertion
Vulnerability mitigation timescales Yes, assured by Independent validation of assertion

Event monitoring

Event monitoring
Event monitoring Yes, assured by Independent validation of assertion

Incident management

Incident management
Incident management processes Yes, assured by Independent validation of assertion
Consumer reporting of security incidents Yes, assured by Independent validation of assertion
Security incident definition published Yes, assured by Independent validation of assertion

Personnel security

Personnel security
Personnel security checks

Secure development

Secure development
Secure development Yes, assured by Independent validation of assertion
Secure design, coding, testing and deployment Yes, assured by Independent validation of assertion
Software configuration management Yes, assured by Independent validation of assertion

Supply-chain security

Supply-chain security
Visibility of data shared with third-party suppliers Yes, assured by Independent validation of assertion
Third-party supplier security requirements Yes, assured by Independent validation of assertion
Third-party supplier risk assessment Yes, assured by Independent validation of assertion
Third-party supplier compliance monitoring Yes, assured by Independent validation of assertion

Authentication of consumers

Authentication of consumers
User authentication and access management Yes, assured by Independent validation of assertion
User access control through support channels Yes, assured by Independent validation of assertion

Separation and access control within management interfaces

Separation and access control within management interfaces
User access control within management interfaces Yes, assured by Independent testing of implementation
Administrator permissions Yes, assured by Independent testing of implementation

Identity and authentication

Identity and authentication
Identity and authentication controls

Secure service administration

Secure service administration
Service management model

Audit information provision to consumers

Audit information provision to consumers
Audit information provided Data made available, assured by Independent validation of assertion

Secure use of the service by the customer

Secure use of the service by the customer
Device access method
Training Yes, assured by Independent validation of assertion
Return to top ↑