PL Projects Ltd.

PLP Portfolio Software Services

PLP Portfolio Software Services will provide Microsoft Project Server and Portfolio Dashboards for project management and planning purposes.


  • Online full team access
  • Data visbility linked to role
  • Tailored functionality to suit maturity
  • Project scheduling, tracking and reporting
  • Time-sheets
  • Portfolio analysis
  • Resource management
  • Risk logs and document management
  • Project cost tracking
  • Portfolio BI reporting


  • Full team access to latest and live information
  • Information security
  • Software is relevant and uncluttered
  • Better organised activities in projects
  • Timesheets integrated with project activities
  • Projects objectively prioritisable
  • Forecast future resource requirements
  • Integrated risk management tools
  • Integrated project cost management
  • Ability to learn from archive project data


£0.01 per unit

  • Education pricing available
  • Free trial available

Service documents

G-Cloud 10


PL Projects Ltd.

Marina Dooney

020 3137 7111

Service scope

Service scope
Software add-on or extension No
Cloud deployment model Private cloud
Service constraints None
System requirements
  • Internet explore 11
  • Latest verison of chrome

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Under an 1 hour standard business hours; 8 hours outside of business time.
User can manage status and priority of support tickets Yes
Online ticketing support accessibility WCAG 2.0 A
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support Web chat
Web chat support availability 9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard None or don’t know
How the web chat support is accessible Currently WCAG is apart of our web development. We link up with GoToMeeting, which allows us to adjust the microphone, adjust speaker volumes, activate video communication (web cams), recording, and online text chat facility.
Web chat accessibility testing None as yet.
Onsite support No
Support levels First and second tier support would be provided. The cost of the support levels would not differ, but the support levels would be tailored to individual client requirements.

NB. Where required onsite training is available for the users of Microsoft Project Server.
Support available to third parties No

Onboarding and offboarding

Onboarding and offboarding
Getting started We would utilise a questionnaire to make a initial assessment of client capabilities in terms of accessing this service. Documentation will be provided regarding accessing the service.

NB. There will be onsite site training for the Microsoft Project Server software but not for the hosting service per se
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction This would be highly tailored and scalable to the client. At its simplest, data downloaded and supplied to the client with encryption; for more complex needs, backed up SQL databases will be posted out to clients on USB hard drives. Migration opportunities available within the Microsoft Business Productivity Suite.
End-of-contract process We would extract and supply data to clients as noted above and data held on our systems would be deleted. Any final reviews of the project would incur an additional charge.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 11
  • Chrome
Application to install No
Designed for use on mobile devices No
Accessibility standards WCAG 2.0 A
Accessibility testing Currently WCAG is apart of our web development. We link up with GoToMeeting, which allows us to adjust the microphone, adjust speaker volumes, activate video communication (web cams), recording, and online text chat facility.
Customisation available Yes
Description of customisation Levels of functionality in our services can be customised through users activating features such as Timesheets and Portfolio Analysis. Only users with delegated permission can customise our services.


Independence of resources We use IIS load balancing as a tool, which allows us to balance load between different services we offer, which is built into the service provided. We deploy Microsoft HA (high availability) technology which incorporates redundancy and failover along with load balancing on the firewalls to manage network traffic.


Service usage metrics No


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance Up to Developed Vetting (DV)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations Yes
Datacentre security standards Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency At least every 6 months
Penetration testing approach In-house
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
Data sanitisation process No
Equipment disposal approach In-house destruction process

Data importing and exporting

Data importing and exporting
Data export approach We would export clients' data tailored to their requests. We would enforce a password authentication and enforce 256 data encryption (security protocol) the tailoring of said service.
Data export formats CSV
Data import formats CSV

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks IPsec or TLS VPN gateway
Data protection within supplier network IPsec or TLS VPN gateway

Availability and resilience

Availability and resilience
Guaranteed availability Our standard SLAs dictate that the software will be available 24 hours (excluding scheduled maintenance).

In the event of any down-time due to any supplier issues (outside of scheduled maintenance) remedies will be implemented within 2 hours and any failure to meet this will result in a 10% refund of the affected month's payment.
Approach to resilience We currently have emergency redundancy failure in place across multiple geographical sites across the UK. Our datacentres have fully owned infrastructure along with 24-hour staff available and are ISO 27001 and 9001 accredited.
Outage reporting RMM system is in place with a 24/7 NOC network operations centre, which monitors the entire infrastructure and services.

Public dashboards and email alerts are in place and we have API availability for software inclusion.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
  • Other
Other user authentication Active Directory Authentication by TLS VPN.
Access restrictions in management interfaces and support channels Active Directory Group membership determines the access levels.
Access restriction testing frequency At least every 6 months
Management access authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
  • Other

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified No
Security governance approach We currently work within the CoBIT framework and are currently looking into aligning to the ISO standard.
Information security policies and processes We currently work within the ITSM standard for our documentation and management framework. Security process are monitored by Active Directory, firewall policy and the helpdesk team.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach Any requests for change (RFC) would go via the helpdesk. RMM (remote managing and monitoring) services have an alert system which would notify the helpdesk. RFCs would receive an impact assessment utilizing a virtualised 'sandbox' if appropriate to assess functionality and security. A CMDB will be managed under ITIL guidelines.
Vulnerability management type Undisclosed
Vulnerability management approach We have monitoring services within the RMM and firewall services. When notified by the RMM, critical and security patches are deployed immediately whilst OS updates and update roll-ups are deployed on a three monthly basis during maintenance cycles.
Protective monitoring type Undisclosed
Protective monitoring approach Our protective monitoring processes are monitored and controlled through the firewall services and security suite deployed across the whole estate. We have Zero-day updates on all security services.
Incident management type Undisclosed
Incident management approach All incidents are processed through the help desk and common events reported to management. Common events resolution are subsequently be automated where possible, removing them from day to any help desk operations.

Incident reports are available and significant incidents are reported to the board.

Secure development

Secure development
Approach to secure software development best practice Conforms to a recognised standard, but self-assessed

Public sector networks

Public sector networks
Connection to public sector networks No


Price £0.01 per unit
Discount for educational organisations Yes
Free trial available Yes
Description of free trial A PWA instance for a 30 day trial period (non-purchase will result in data loss).


Pricing document View uploaded document
Service definition document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑