Software Development & Testing Services

SpyroSoft Ltd assist organisations with specialist nearshore software development & testing services using our expert teams based in the UK and in mainland Europe. As a technology agnostic organisation, SpyroSoft enables our clients to make informed decisions on the selection of the right technologies to suit business and user needs.


  • Expert Software developer with full Agile development lifecycle capabilities
  • Expert Scrum Master and support resources with full Agile capabilities
  • Superb automated and manual testing and QA services
  • Legacy modernisation, support, maintenance and hosting services
  • Solution modelling, cleansing, migration and transformation services
  • Application integration, development, testing and related services
  • Solution architecture design for resilience, performance, scalability and security
  • Full development capabilities in Microsoft & Java stacks
  • Full mobile and CSS3 development capabilities incl iOS/Android and Angular/React
  • Seamless DevOps approach


  • Trusted supplier of world class development & testing services
  • Technology agnostic
  • Expertise across the whole software life-cycle
  • Expertise across the whole testing life-cycle
  • Flexible engagement models including fixed-price delivery
  • Agile, iterative, transparent delivery
  • Compatible with GDS Service Design Manual and guidelines
  • DevOps continuous engineering approach
  • UK operations to support EEA based engineering and data centres
  • UK and EEA centres support ICO data protection regulations


£192 to £700 a person

  • Free trial available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at publicsector@spyro-soft.com. Tell them what format you need. It will help if you say what assistive technology you use.


G-Cloud 12

Service ID

9 7 0 5 4 7 4 1 8 2 5 4 2 9 5


SPYROSOFT LTD Andrew Radcliffe
Telephone: 01202 862311
Email: publicsector@spyro-soft.com

Service scope

Software add-on or extension
Yes, but can also be used as a standalone service
What software services is the service an extension to
Spyrosoft Ltd will build stand-alone services or customised extensions and add-on's to other software services. We have experience in full Microsoft and Java stack development as well as mobile and embedded software. This is underpinned by excellent testing and QA services
Cloud deployment model
Hybrid cloud
Service constraints
Spyrosoft Ltd operate 24x7 operations but on occasion, may need short maintenance windows but these are always fully communicated and agreed with the Client
System requirements
  • Full Microsoft development software is supported
  • Full Java stack incl Java script is supported
  • IOS, Android & Xamarin software is supported
  • C#, Ionic, Angular & React are all supported
  • Amazon AWS, Microsoft Azure and Google Cloud Platform are supported
  • Testing services including Autosar and Labview are supported
  • Database services incl SQL Server, MySQL, PostgreSQL, MongoDB are supported

User support

Email or online ticketing support
Email or online ticketing
Support response times
Spyrosoft Ltd have a full integrated Jira ticketing model and provide Monday to Friday, 9am to 5pm as well as 24x7 service support
User can manage status and priority of support tickets
Online ticketing support accessibility
WCAG 2.1 AA or EN 301 549
Phone support
Phone support availability
24 hours, 7 days a week
Web chat support
Web chat
Web chat support availability
24 hours, 7 days a week
Web chat support accessibility standard
WCAG 2.1 AA or EN 301 549
Web chat accessibility testing
Spyrosoft Ltd offer web-chat support linked to our Jira ticketing system and 24/7 service model
Onsite support
Onsite support
Support levels
Spyrosoft Ltd offer multiple servcie level agreements to meet our Client needs from standard Monday to Friday, 9am to 5pm support through to full 27/7, follow the sun support. We provide UK Account Management alongside European Service Delivery Management & Engineering
Support available to third parties

Onboarding and offboarding

Getting started
During the initial phase of the project, our team will work with users who will be responsible for maintaining the solution going forward. That will give us time to evaluate the skill sets of the users, identifying gaps and the level to pitch the training material.
We will then carry out training for users and administrators who will be responsible for the day-to-day maintenance of the solution.

We encourage a 'train the trainer' approach to keep training costs low, and we'll typically train up to six members of a client team in the session. If larger groups are to be trained, we may split the training into several smaller groups to retain the ideal trainer-to-trainee ratio.
Service documentation
Documentation formats
  • HTML
  • ODF
  • PDF
End-of-contract data extraction
The Spyrosft Ltd model is all about "handing back" the service whenever the Clients wants to and it whatever format or service they wish. The contract end "hand back" would be scoped by the Client and Spyrosoft Ltd in partnership
End-of-contract process
The exit cost for the contract would be customised based on the Clients requirements

Using the service

Web browser interface
Application to install
Designed for use on mobile devices
Differences between the mobile and desktop service
All of our Developers have experience in both mobile and desktop development and, if the Client requires, we can build solutions in any flavour
Service interface
Customisation available
Description of customisation
SpyroSoft Ltd works collaboratively with the buyer throughout the Discovery planning and scoping process. This will first include understanding specific requirements, including the short and long-term project aims. We will agree account management requirements including billing and engagement model ensuring the solution is cost effective.


Independence of resources
We operate a fully Agile and continually monitored and improving solution and service and our policy is no single user incident will impact another user


Service usage metrics
Metrics types
The service metrics that Spyrosoft Ltd provide will be as per the Clients requirements


Supplier type
Not a reseller

Staff security

Staff security clearance
Other security clearance
Government security clearance
Up to Security Clearance (SC)

Asset protection

Knowledge of data storage and processing locations
Data storage and processing locations
European Economic Area (EEA)
User control over data storage and processing locations
Datacentre security standards
Supplier-defined controls
Penetration testing frequency
At least once a year
Penetration testing approach
Another external penetration testing organisation
Protecting data at rest
Physical access control, complying with SSAE-16 / ISAE 3402
Data sanitisation process
Data sanitisation type
Deleted data can’t be directly accessed
Equipment disposal approach
A third-party destruction service

Data importing and exporting

Data export approach
User data is exported as per the agreement between the Client and Spyrosoft Ltd. The planned approach is agreed by both parties to meet the requirements of the Client
Data export formats
  • CSV
  • ODF
Data import formats
  • CSV
  • ODF

Data-in-transit protection

Data protection between buyer and supplier networks
  • Private network or public sector network
  • IPsec or TLS VPN gateway
Data protection within supplier network
IPsec or TLS VPN gateway

Availability and resilience

Guaranteed availability
Each Spyrosoft Ltd service level provides a different level of availability dependant on each Clients requirements and budget
Approach to resilience
As partners with Microsoft, Amazon and Google, we use their services to provide resilience and uptime e.g Microsoft Azure offer 99.99% uptime on their Azure storage service
Outage reporting
We use email alerts or communication as agreed with the Client e.g SMS or phone call

Identity and authentication

User authentication needed
User authentication
  • 2-factor authentication
  • Username or password
Access restrictions in management interfaces and support channels
We use Supplier standard access control solutions to restrict access to management interfaces and support channels.
Access restriction testing frequency
At least once a year
Management access authentication
  • 2-factor authentication
  • Username or password

Audit information for users

Access to user activity audit information
Users receive audit information on a regular basis
How long user audit data is stored for
Access to supplier activity audit information
Users receive audit information on a regular basis
How long supplier audit data is stored for
How long system logs are stored for

Standards and certifications

ISO/IEC 27001 certification
Who accredited the ISO/IEC 27001
DAS Certification, 22b Church Street, NN10 9YT, UK
ISO/IEC 27001 accreditation date
What the ISO/IEC 27001 doesn’t cover
ISO 28000:2007 certification
CSA STAR certification
PCI certification
Other security certifications
Any other security certifications
Cyber Essential Plus

Security governance

Named board-level person responsible for service security
Security governance certified
Security governance standards
ISO/IEC 27001
Information security policies and processes
Spyrosoft Ltd have a named Information Security Officer and Data Protection Officer and follow all guidelines/polices to ensure we meet both our ISO 27001 and Cyber Essentials Plus certifications

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
As a specialist Software Development & Testing organisation, configuration and change management are at the heart at what we do so all changes are fully tested to ensure security impact and production uptime
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
Spyrosoft Ltd work with our internal specialist R&D solutions operation to ensure we are aware of potential future threats. We operate and follow standard patch testing and deployment policies and receive regular threat updates from our key partners e.g. Microsoft for Azure or Amazon for AWS
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
Spyrosoft Ltd operate a proactive approach to monitoring. We both regularly check possible future threats but also follow standard ITIL approaches to production monitoring for availability and capacity. We respond to any multi-user incident as soon as possible and will "lock down" any potential compromise to limit impact
Incident management type
Supplier-defined controls
Incident management approach
Spyrosoft Ltd follow ITIL guidelines and implement them to meet our own and Client requirements. Users can report incidents in multiple ways and we provide reports on multi-user incidents

Secure development

Approach to secure software development best practice
Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Connection to public sector networks


£192 to £700 a person
Discount for educational organisations
Free trial available
Description of free trial
Any free services are agreed with the Client during the scoping exercise

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at publicsector@spyro-soft.com. Tell them what format you need. It will help if you say what assistive technology you use.