Uploaded byJonnyhyde
PDF, PPTX834 views

Ncc Group Escrow Overview 2010

NCC Group is a leading independent IT assurance provider with over 30 years of experience providing escrow services. They protect over 5,000 software suppliers and have over 2,000 multi-licensee escrow agreements in place. Escrow provides a simple and effective way to minimize the risk of depending on third parties for business critical software and services by holding important materials like source code in escrow to ensure continued access and support. NCC Group offers various escrow and verification solutions tailored to different software licensing models and business needs.

Embed presentation

Download as PDF, PPTX
NCC Group Escrow A Brief Overview Jonny Hyde Escrow Account Manager Telephone: +44 (0) 161 209 5424 e-mail: jonny.hyde@nccgroup.com NCC Group Plc, Manchester Technology Centre, Oxford Road, Manchester M1 7EF www.nccgroup.com
Agenda About NCC Group About NCC Group Escrow Escrow – a simple explanation Benefits of Escrow Escrow – types of solutions Verification Services – a simple explanation Verification Services – types of solutions Risk Assessment Guide & Escrow Policy Document
About NCC Group The world’s leading independent IT Assurance provider: - Largest provider of escrow - Largest team of Ethical Security Testers - Multinational customer base with15,000 customers including 94 out of the FTSE 100 The Group has two complementary division - Group Escrow & Assurance Testing 10 offices in the UK, North America, the Netherlands, Switzerland & Germany Formed June 1999, a secure, stable, well respected plc listed on the London Stock Exchange with a group revenue of £46m (2008:2009) Independence from hardware & software providers ensures that unbiased & impartial advice is always offered
About NCC Group Escrow 30+ years experience of providing high quality escrow services Most comprehensive escrow services available protecting customers worldwide Strong relationships with over 5,000 software suppliers Over 2,000 multi-licensee agreements in place Over 200 escrow employees in 5 countries - Expert in house legal & technical team - Experienced, high quality, security cleared, in-house testing team with 15 engineers Highest levels of quality assurance - ISO 9001 accredited: formal quality assurance - ISO/IEC 27001accredited: information security standard
Escrow – a simple explanation Most organisations are dependent on third party supplied software applications /business processes to run their day to day operations However, depending on third parties to always be around to support and maintain business critical software applications and services brings about a high element of risk Escrow is a simple and effective arrangement designed to minimise this risk and protect the interests of all parties involved The terms of the arrangement are defined in a straight forward legal agreement between supplier, licensee & escrow provider NCC Group as the escrow provider holds a copy of the assets on which an organisation depends but does not own NCC Group ensures source code & other business critical materials are protected & accessible ‘Trigger Events’ defined in the agreement where business critical material is released to licensee include; liquidation, ceasing to trade, failure to meet maintenance obligations & IPR assignment (if new owner provides no escrow protection)
Benefits of Escrow Licensee - ‘Insurance policy’ against the unpredictable IT market - Allows continuing maintenance of critical applications in event of release of code - Provides protection during investment in IT development - Essential part of business continuity and disaster recovery planning - Provides leverage e.g. where supplier defaults on contractual obligations or IPR’s assigned to a new supplier Supplier/distributor - Demonstrates commitment to clients & stability of company - Illustrates that the relationship is viewed as long term - Confirms active support of best practice & proactive stance to risk management - Provides competitive edge - particularly for niche suppliers - Helps protect IPR - Helps protects distributors’ business
Escrow – types of solutions Software Escrow - Protects software application source code – including web site applications - Available where a software application has been specifically written or amended (single licensee) and for standard ‘off-the-shelf’ applications where same software used by several licensees (multi licensee) - NCC Group maintains template escrow agreements to cover different licensing arrangements e.g. to include outsourcers or distributors Software-as-a-Service Escrow - Enables organisation to balance risk & protect its investment in SaaS - Ensures required executable application, infrastructure architecture, subscriber data and source code material can be accessed & released - Staged release process Information Escrow - Protects product design, manufacturing processes, marketing material & industrial formulae - Often as business critical as software applications
Verification Services – a simple explanation Verification of source code is a key element of mitigating risk for critical business applications NCC Group verification service provides confirmation that material held is correct and complete Verification ensures the material held includes the information & components required to re-create systems from raw source code NCC Group’s verification & escrow services are designed to complement each other – assisting companies dependent on crucial assets Customers include end-users & suppliers - End users – in the event that they need to take over maintenance of source code it can be re-constructed - Software suppliers – use to reassure customers of their best practice commitment
Verification Services – types of solutions Full Verification - Provides assurance that the deposited source code under an Escrow agreement is correct & complete and can be rebuilt - NCC Group observes complete application build at supplier’s site - Build is fully documented & a report is produced describing every step Build Assured Verification - Recommended where source code maintenance is to be undertaken by third party of behalf of end user in event of a release - Provides benefits of Full Verifications with additional assurance that build completed at independent secure location (NCC Group test laboratory) User Assured Verification - Recommended when source code maintenance is transferred to end user - All benefits of Full Verification, with additional assurance of build repeated at end user - Collect source code, build at supplier’s site - fully documenting build, then using the documentation build & install at end user’s site
Risk Assessment Guide & Escrow Policy Document NCC Group’s Risk Assessment Guide has been developed to assist in identifying the applications that are at most risk and in planning your escrow requirements for each application You can find out what level of protection you need based on how business critical your applications are We advise that an Escrow Risk Assessment should take place: - At initial procurement of application - After any major upgrade - Every 12 months Following the Risk Assessment, our Escrow Policy Document will act as a useful tool for all business users, outlining how your escrow protection will be managed moving forward including responsibilities, contact details and key timelines

More Related Content

PPT
Escrow Presentation
byejervis
 
PPT
Escrow Presentation Final
byTony_Clarke
 
PPT
Escrow Presentation
bylucydavidson
 
PPT
Source Code Escrow Agreements 2010.02.12
byRichard Austin
 
PDF
___2360_SP_VMAN---Screen
byManuel Sanchez Lopez
 
PDF
Private sector cyber resilience and the role of data diodes
byOllie Whitehouse
 
PDF
Microsoft Word Morningstar Rfp Security Assessment 2008 V2 1
byTodd Petty
 
PPT
NCC Group Software Escrow Services
byphilomole
 
Escrow Presentation
byejervis
 
Escrow Presentation Final
byTony_Clarke
 
Escrow Presentation
bylucydavidson
 
Source Code Escrow Agreements 2010.02.12
byRichard Austin
 
___2360_SP_VMAN---Screen
byManuel Sanchez Lopez
 
Private sector cyber resilience and the role of data diodes
byOllie Whitehouse
 
Microsoft Word Morningstar Rfp Security Assessment 2008 V2 1
byTodd Petty
 
NCC Group Software Escrow Services
byphilomole
 

What's hot

PPTX
CompTIA CASP+ | Everything you need to know about the new exam
byInfosec
 
DOCX
Resume
bymanean.kvs manean.kvs
 
PDF
IT SECURITY ASSESSMENT PROPOSAL
byCYBER SENSE
 
PDF
Sample network vulnerability analysis proposal
byDavid Sweigert
 
PDF
Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...
byAlan Yau Ti Dun
 
PDF
What's Next : A Trillion Event Logs, A Million Security Threat
byAlan Yau Ti Dun
 
PPTX
How to Create Plan-of-Action to Secure Critical Information
byKoenig Solutions Ltd.
 
PDF
Security Proposal for High Profile/Government Individual
byDayo Olujekun
 
PDF
Cybersecurity Assurance at CloudSec 2015 Kuala Lumpur
byAlan Yau Ti Dun
 
PPTX
Isaca career paths - the highest paying certifications in the industry
byInfosec
 
PPTX
CMMC rollout: How CMMC will impact your organization
byInfosec
 
PDF
Infinit security card-mark capwell
byMark Capwell
 
DOCX
CV of Mohan M
byMohan M
 
DOCX
PCI DSS | PCI DSS Training | PCI DSS IMPLEMENTATION
byhimalya sharma
 
PDF
Infosec 2014 - Considerations when choosing an MSSP
byHuntsman Security
 
PDF
Comp tia security sy0 601 domain 3 implementation
byShivamSharma909
 
PPSX
Decypher Technologies
byrajeshsapkal
 
PDF
CompTIA cysa+ certification changes: Everything you need to know
byInfosec
 
PPTX
Company Profile
by3SC World
 
PDF
Ooredoo%20Security%20Managed%20Services
byMuhammad Mudassar
 
CompTIA CASP+ | Everything you need to know about the new exam
byInfosec
 
Resume
bymanean.kvs manean.kvs
 
IT SECURITY ASSESSMENT PROPOSAL
byCYBER SENSE
 
Sample network vulnerability analysis proposal
byDavid Sweigert
 
Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...
byAlan Yau Ti Dun
 
What's Next : A Trillion Event Logs, A Million Security Threat
byAlan Yau Ti Dun
 
How to Create Plan-of-Action to Secure Critical Information
byKoenig Solutions Ltd.
 
Security Proposal for High Profile/Government Individual
byDayo Olujekun
 
Cybersecurity Assurance at CloudSec 2015 Kuala Lumpur
byAlan Yau Ti Dun
 
Isaca career paths - the highest paying certifications in the industry
byInfosec
 
CMMC rollout: How CMMC will impact your organization
byInfosec
 
Infinit security card-mark capwell
byMark Capwell
 
CV of Mohan M
byMohan M
 
PCI DSS | PCI DSS Training | PCI DSS IMPLEMENTATION
byhimalya sharma
 
Infosec 2014 - Considerations when choosing an MSSP
byHuntsman Security
 
Comp tia security sy0 601 domain 3 implementation
byShivamSharma909
 
Decypher Technologies
byrajeshsapkal
 
CompTIA cysa+ certification changes: Everything you need to know
byInfosec
 
Company Profile
by3SC World
 
Ooredoo%20Security%20Managed%20Services
byMuhammad Mudassar
 

Viewers also liked

PPTX
Ncc group overview presentation august 2012 final
byTony_Clarke
 
PPTX
NCC Group Presentation
byNCC AB
 
PDF
A (not-so-quick) Primer on iOS Encryption David Schuetz - NCC Group
byEC-Council
 
PPTX
Exploiting appliances presentation v1.1-vids-removed
byNCC Group
 
PDF
NCC Group 44Con Workshop: How to assess and secure ios apps
byNCC Group
 
PDF
How Spotify Helps Their Engineers Grow - Chris Angove
byHakka Labs
 
PPTX
Cloud CMS: The Best Marketing Investment You Can Make this Year
byMarqui CMS
 
PPTX
Webinaire: Zurich en 24h, inspirations pour vos seminaires
bySuisse Convention Bureau
 
PPTX
Especificações UX/UI CMA Tablet
byDan Vitoriano
 
PDF
Las tres caras de la moneda
byEmyth_Mexico
 
PDF
Estudio de grupos_empresariales_2007
byfelipecortesc
 
DOCX
Epilepsia, depresión y crisis convulsivas febriles
byEduardo Mendoza Abarca
 
PDF
Pedro Espino recomineda :Couriers como plataforma logistica para exportar
byDr. Pedro Espino Vargas
 
PPT
las wikis en el mundo empresarial
byNicolás Dominguez
 
PDF
Cuadernos ing-6
byGraduados UCASAL
 
PDF
SESI Solar August issue 2012
byPasu Kumar
 
PDF
XX Congreso Nacional de SEMG
byComsal Salamanca
 
PPT
Gastronomía asturiana
byvicpercast
 
PDF
Trinitas | Hoja informativa, mayo 2015
byCofradía Cautivo-Trinidad
 
PPTX
Gato terapia
byIsabella Angarita
 
Ncc group overview presentation august 2012 final
byTony_Clarke
 
NCC Group Presentation
byNCC AB
 
A (not-so-quick) Primer on iOS Encryption David Schuetz - NCC Group
byEC-Council
 
Exploiting appliances presentation v1.1-vids-removed
byNCC Group
 
NCC Group 44Con Workshop: How to assess and secure ios apps
byNCC Group
 
How Spotify Helps Their Engineers Grow - Chris Angove
byHakka Labs
 
Cloud CMS: The Best Marketing Investment You Can Make this Year
byMarqui CMS
 
Webinaire: Zurich en 24h, inspirations pour vos seminaires
bySuisse Convention Bureau
 
Especificações UX/UI CMA Tablet
byDan Vitoriano
 
Las tres caras de la moneda
byEmyth_Mexico
 
Estudio de grupos_empresariales_2007
byfelipecortesc
 
Epilepsia, depresión y crisis convulsivas febriles
byEduardo Mendoza Abarca
 
Pedro Espino recomineda :Couriers como plataforma logistica para exportar
byDr. Pedro Espino Vargas
 
las wikis en el mundo empresarial
byNicolás Dominguez
 
Cuadernos ing-6
byGraduados UCASAL
 
SESI Solar August issue 2012
byPasu Kumar
 
XX Congreso Nacional de SEMG
byComsal Salamanca
 
Gastronomía asturiana
byvicpercast
 
Trinitas | Hoja informativa, mayo 2015
byCofradía Cautivo-Trinidad
 
Gato terapia
byIsabella Angarita
 

Similar to Ncc Group Escrow Overview 2010

PPT
Escrow Presentation2010
bysimongreaves
 
PDF
Cloud Security, Standards and Applications
byDr. Sunil Kr. Pandey
 
PDF
NCHICA - Contracts with Healthcare Cloud Computing Vendors
byWhitmeyerTuffin
 
PDF
The Challenge of Integrating Security Solutions with CI.pdf
bySavinder Puri
 
PPT
Contrast cbt cloud computing - v.2
bycontrastcbt
 
PDF
Source code escrow and continuity in the cloud
byErnst-Jan Louwers
 
PDF
Cloud Computing for Lawyers: Practical and Ethical Uses of the Cloud
byRobert Ambrogi
 
PPT
The Cloud as Opportunity: Invitation to Entrepreneurs
byPeter Coffee
 
PPT
Cloud Computing - Security Benefits and Risks
byWilliam McBorrough
 
PPTX
Cloud presentation NELA
byEdward Iglesias
 
PDF
The Complexities of Cloud Computing - The Rules are New, But is the Game
byJanine Anthony Bowen, Esq.
 
KEY
Cloud Escrow van Escrow Alliance
byEscrowDirect.eu
 
PDF
How Cloud Providers' Business Needs Drive Enterprise Identity & Security
byNovell
 
PDF
Secure Cloud Computing
byAlasdair Kilgour
 
PPT
Radu crahmaliuc 23feb2012
byAgora Group
 
PDF
Business value of cloud computing for insurance
byIBM India Smarter Computing
 
PDF
Paper id 27201433
byIJRAT
 
PPT
Peter Coffee 20100923 AITP Cloud Computing Con SD
byPeter Coffee
 
PPT
Cloud computing
byperfectican
 
PPTX
Ethics and Security of Cloud Computing for Lawyers
byRobert Ambrogi
 
Escrow Presentation2010
bysimongreaves
 
Cloud Security, Standards and Applications
byDr. Sunil Kr. Pandey
 
NCHICA - Contracts with Healthcare Cloud Computing Vendors
byWhitmeyerTuffin
 
The Challenge of Integrating Security Solutions with CI.pdf
bySavinder Puri
 
Contrast cbt cloud computing - v.2
bycontrastcbt
 
Source code escrow and continuity in the cloud
byErnst-Jan Louwers
 
Cloud Computing for Lawyers: Practical and Ethical Uses of the Cloud
byRobert Ambrogi
 
The Cloud as Opportunity: Invitation to Entrepreneurs
byPeter Coffee
 
Cloud Computing - Security Benefits and Risks
byWilliam McBorrough
 
Cloud presentation NELA
byEdward Iglesias
 
The Complexities of Cloud Computing - The Rules are New, But is the Game
byJanine Anthony Bowen, Esq.
 
Cloud Escrow van Escrow Alliance
byEscrowDirect.eu
 
How Cloud Providers' Business Needs Drive Enterprise Identity & Security
byNovell
 
Secure Cloud Computing
byAlasdair Kilgour
 
Radu crahmaliuc 23feb2012
byAgora Group
 
Business value of cloud computing for insurance
byIBM India Smarter Computing
 
Paper id 27201433
byIJRAT
 
Peter Coffee 20100923 AITP Cloud Computing Con SD
byPeter Coffee
 
Cloud computing
byperfectican
 
Ethics and Security of Cloud Computing for Lawyers
byRobert Ambrogi
 

Recently uploaded

PDF
apidays Paris 2025 | Zero Trust By Design
byapidays
 
PPTX
Real-Time KPI Dashboard Playbook: What to Track Live and What Not To
byvictorworkvebo
 
PDF
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
PPTX
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
PDF
Spec-Driven Development with Kiro: Elevating Software Quality, Traceability, ...
byHaim Michael
 
PDF
Towards a Vibrant AI Hardware Accelerator Ecosystem, invited talk at the 4th ...
byMichiaki Tatsubori
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
PDF
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
PDF
Agent Factory -AIOUG Multicloud - Feb 2026
bySandesh Rao
 
PDF
final.pdf
byomarbishtawi04
 
PDF
Reality Drift: Why Systems Keep Working After Meaning Drops Out
byReality Drift Archive | A. Jacobs
 
PDF
Logical Optimal Actions – Towards Knowledge-based Reinforcement Learning with...
byMichiaki Tatsubori
 
PDF
apidays New York 2025 | AI in Application Security
byapidays
 
PDF
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
PDF
Oracle Cloud Infrastructure 2025 Architect Professional (1Z0-1127-25) Master ...
byExamCert App
 
PDF
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
PPTX
Workflow and decision Automation with Flowable
bychakib ch
 
PDF
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
PDF
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
PDF
Founder & Tech Lead | Web Development & Digital Growth Consultant | Helping B...
byShyamal Das
 
apidays Paris 2025 | Zero Trust By Design
byapidays
 
Real-Time KPI Dashboard Playbook: What to Track Live and What Not To
byvictorworkvebo
 
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
Spec-Driven Development with Kiro: Elevating Software Quality, Traceability, ...
byHaim Michael
 
Towards a Vibrant AI Hardware Accelerator Ecosystem, invited talk at the 4th ...
byMichiaki Tatsubori
 
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
Agent Factory -AIOUG Multicloud - Feb 2026
bySandesh Rao
 
final.pdf
byomarbishtawi04
 
Reality Drift: Why Systems Keep Working After Meaning Drops Out
byReality Drift Archive | A. Jacobs
 
Logical Optimal Actions – Towards Knowledge-based Reinforcement Learning with...
byMichiaki Tatsubori
 
apidays New York 2025 | AI in Application Security
byapidays
 
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
Oracle Cloud Infrastructure 2025 Architect Professional (1Z0-1127-25) Master ...
byExamCert App
 
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
Workflow and decision Automation with Flowable
bychakib ch
 
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
Founder & Tech Lead | Web Development & Digital Growth Consultant | Helping B...
byShyamal Das
 

Ncc Group Escrow Overview 2010

  • 1.
    NCC Group Escrow ABrief Overview Jonny Hyde Escrow Account Manager Telephone: +44 (0) 161 209 5424 e-mail: jonny.hyde@nccgroup.com NCC Group Plc, Manchester Technology Centre, Oxford Road, Manchester M1 7EF www.nccgroup.com
  • 2.
    Agenda About NCCGroup About NCC Group Escrow Escrow – a simple explanation Benefits of Escrow Escrow – types of solutions Verification Services – a simple explanation Verification Services – types of solutions Risk Assessment Guide & Escrow Policy Document
  • 3.
    About NCC Group The world’s leading independent IT Assurance provider: - Largest provider of escrow - Largest team of Ethical Security Testers - Multinational customer base with15,000 customers including 94 out of the FTSE 100 The Group has two complementary division - Group Escrow & Assurance Testing 10 offices in the UK, North America, the Netherlands, Switzerland & Germany Formed June 1999, a secure, stable, well respected plc listed on the London Stock Exchange with a group revenue of £46m (2008:2009) Independence from hardware & software providers ensures that unbiased & impartial advice is always offered
  • 4.
    About NCC GroupEscrow 30+ years experience of providing high quality escrow services Most comprehensive escrow services available protecting customers worldwide Strong relationships with over 5,000 software suppliers Over 2,000 multi-licensee agreements in place Over 200 escrow employees in 5 countries - Expert in house legal & technical team - Experienced, high quality, security cleared, in-house testing team with 15 engineers Highest levels of quality assurance - ISO 9001 accredited: formal quality assurance - ISO/IEC 27001accredited: information security standard
  • 5.
    Escrow – asimple explanation Most organisations are dependent on third party supplied software applications /business processes to run their day to day operations However, depending on third parties to always be around to support and maintain business critical software applications and services brings about a high element of risk Escrow is a simple and effective arrangement designed to minimise this risk and protect the interests of all parties involved The terms of the arrangement are defined in a straight forward legal agreement between supplier, licensee & escrow provider NCC Group as the escrow provider holds a copy of the assets on which an organisation depends but does not own NCC Group ensures source code & other business critical materials are protected & accessible ‘Trigger Events’ defined in the agreement where business critical material is released to licensee include; liquidation, ceasing to trade, failure to meet maintenance obligations & IPR assignment (if new owner provides no escrow protection)
  • 6.
    Benefits of Escrow Licensee - ‘Insurance policy’ against the unpredictable IT market - Allows continuing maintenance of critical applications in event of release of code - Provides protection during investment in IT development - Essential part of business continuity and disaster recovery planning - Provides leverage e.g. where supplier defaults on contractual obligations or IPR’s assigned to a new supplier Supplier/distributor - Demonstrates commitment to clients & stability of company - Illustrates that the relationship is viewed as long term - Confirms active support of best practice & proactive stance to risk management - Provides competitive edge - particularly for niche suppliers - Helps protect IPR - Helps protects distributors’ business
  • 7.
    Escrow – typesof solutions Software Escrow - Protects software application source code – including web site applications - Available where a software application has been specifically written or amended (single licensee) and for standard ‘off-the-shelf’ applications where same software used by several licensees (multi licensee) - NCC Group maintains template escrow agreements to cover different licensing arrangements e.g. to include outsourcers or distributors Software-as-a-Service Escrow - Enables organisation to balance risk & protect its investment in SaaS - Ensures required executable application, infrastructure architecture, subscriber data and source code material can be accessed & released - Staged release process Information Escrow - Protects product design, manufacturing processes, marketing material & industrial formulae - Often as business critical as software applications
  • 8.
    Verification Services –a simple explanation Verification of source code is a key element of mitigating risk for critical business applications NCC Group verification service provides confirmation that material held is correct and complete Verification ensures the material held includes the information & components required to re-create systems from raw source code NCC Group’s verification & escrow services are designed to complement each other – assisting companies dependent on crucial assets Customers include end-users & suppliers - End users – in the event that they need to take over maintenance of source code it can be re-constructed - Software suppliers – use to reassure customers of their best practice commitment
  • 9.
    Verification Services –types of solutions Full Verification - Provides assurance that the deposited source code under an Escrow agreement is correct & complete and can be rebuilt - NCC Group observes complete application build at supplier’s site - Build is fully documented & a report is produced describing every step Build Assured Verification - Recommended where source code maintenance is to be undertaken by third party of behalf of end user in event of a release - Provides benefits of Full Verifications with additional assurance that build completed at independent secure location (NCC Group test laboratory) User Assured Verification - Recommended when source code maintenance is transferred to end user - All benefits of Full Verification, with additional assurance of build repeated at end user - Collect source code, build at supplier’s site - fully documenting build, then using the documentation build & install at end user’s site
  • 10.
    Risk Assessment Guide& Escrow Policy Document NCC Group’s Risk Assessment Guide has been developed to assist in identifying the applications that are at most risk and in planning your escrow requirements for each application You can find out what level of protection you need based on how business critical your applications are We advise that an Escrow Risk Assessment should take place: - At initial procurement of application - After any major upgrade - Every 12 months Following the Risk Assessment, our Escrow Policy Document will act as a useful tool for all business users, outlining how your escrow protection will be managed moving forward including responsibilities, contact details and key timelines