T: +44 (0) 1675 468968 E: enquiries@certes.co.uk
Digital Transformation Through Agile Delivery
IT Agility AbilityTM
Digital Transformation Through Agile Delivery
IT Agility AbilityTM
SearchOpportunities Here
Search IT Jobs Join Certes Pro Become a Partner

Case Study

Delivering Architecture-as-a-Service and Information Security Services for MHRA

Introduction

The MHRA’s Strategy & Architecture team within the Technology, Digital, Data & Delivery division sought Architecture-as-a-Service and Information Security services to support their portfolio of change initiatives. The services aimed to provide high-level deliverables, including architectural and technical roadmaps, data architecture support, solution options papers, impact and benefits analysis and overhaul of the existing enterprise architecture repository. Seamless application integrations, collaboration with stakeholders and vendors and delivering Information Security services were also key objectives.

Integration Methodology and Onboarding

To ensure successful integration, our Enterprise, Data and Security Architects prioritised building strong relationships with the existing architecture team. They familiarised themselves with Agency tools, approaches and broader objectives of the MHRA.

Key Improvements to the Architecture Service & Knowledge Transfer Objectives

The existing architecture service underwent significant improvements, including:

  • Streamlined governance processes by aligning templates with industry best practices.
  • Revision and update of key templates, artefacts and RACI matrices.
  • Enhanced clarity and accountability by refining RACI matrices.
  • Creation and update of architectural assets.
  • Developed comprehensive risk, dependency and issue registers.
  • Updated principles and guidance for architectural decision-making and solution design.
  • Creation of knowledge transfer and handover documentation.
  • Scheduled sessions with identified Agency resources for effective knowledge sharing.
  • Check-in of all objects into the Agency’s EA tool (iServer 365 repository).
  • Identification and flagging of outstanding design actions.
  • Updating and reallocation of Technical Support Group (TSG) tickets.

Contribution to Specific Projects

Contribution to Specific Projects

iServer 365 Repository Development

Key responsibilities and contributions included:
• Design the iServer365 architecture repository to enable out-of-the-box reports to run.
• Configure iServer365 to move non-standard fields to standard fields to enable reporting.
• Gap analysis of reports vs data to enable targeted content population.
• Work with teams and individuals across TD3 to populate the content required to drive the reports.
• Structure repository objects to reflect required metamodel and reports:

  • Standard operational reports
  • Data gap analysis report and field requirements
  • iServer configuration process
  • Data update process
Finance Transformation Phase 2 (FTP2) Project

Key responsibilities and contributions included:
• Maintaining high-level application solution designs:

  • Created and maintained high-level application solution designs that formed the basis for transition state architectures.
  • Ensured the proposed solutions were aligned with the organisation’s architectural standards and integration requirements.

• Managing integration options and technology proposals:

  • Identified and evaluated integration options and technology proposals for seamless integration of systems and data.
  • Assessed key design decisions and managed architectural risks associated with the implementation.

• Support throughout the project lifecycle:

  • Provided ongoing architectural support throughout different stages of the project lifecycle.
  • Updated and amended designs as needed and produced relevant documentation required for a smooth transition into live service.

• Provided assurance over supplier low-level designs and solution artefacts:

  • Conducted assurance activities to validate and ensure the quality of supplier low-level designs.
  • Assessed solution design artefacts for adherence to architectural standards and requirements.
Next Generation Sequencing Project

Key responsibilities and contributions included:
• Maintaining high-level application solution designs:

  • Developed and maintained high-level application solution designs to establish transition state architectures.
  • Ensured alignment between proposed solutions and the architectural standards and requirements of the MHRA.

• Managing integration options and technology proposals:

  • Assessed integration options and technology proposals for seamless integration of systems and data.
  • Effectively managed key design decisions and architectural risks associated with the project.

• Support throughout the project lifecycle:

  • Provided consistent support throughout different stages of the project lifecycle.
  • Updated and amended designs as necessary and generated essential documentation required for a smooth transition into live service.

• Assuring supplier low-level designs and solution artefacts:

  • Conducted thorough assessments to provide assurance over supplier low-level designs.
  • Validated solution design artefacts, ensuring compliance with architectural standards and requirements.
NIBSC Website Remediation Project

Key responsibilities and contributions included:
• Impact assessment and targeted designs:

  • Assessed the impact of proposed remediation actions and created pragmatic and targeted designs for the new component elements.
  • Ensured that the designs addressed the specific needs of the project while considering architectural standards and best practices.

• High-Level Design/Low-Level Design for Azure B2B user sign-on authentication:

  • Developed comprehensive designs for Azure B2B user sign-on authentication, encompassing both high-level and low-level aspects.
  • Ensured a secure and streamlined user authentication experience within the Azure environment.

• Support for other domains, including security:

  • Collaborated with other domains, especially security, to evaluate and ensure the maintenance of security standards through sound design practices.
  • Worked towards creating a robust and secure architecture for the NIBSC website.

• Design decision management and architectural risk management:

  • Managed key design decisions, evaluating their impact on the project’s success and alignment with architectural goals.
  • Mitigated architectural risks by identifying and addressing potential challenges early in the design process.

• Support throughout the project lifecycle:

  • Provided ongoing support throughout different stages of the project lifecycle.
  • Kept designs up to date, making necessary updates and amendments as required.
  • Produced documentation essential for a smooth transition into the live service phase.

• Assurance over supplier low-level designs and solution design artefacts:

  • Conducted assurance activities to ensure the quality and compliance of supplier low-level designs.
  • Provided oversight and validation of solution design artefacts.
Key Technologies Overview:
  • Oracle Fusion Suite: Oracle Fusion Finance, Oracle Fusion Procurement, Oracle Fusion Timesheets.
  • Integration Technologies and Middleware: Batch Integration including File Transfer, Integration Middleware: SolWeb, Oracle, MuleSoft.
  • ERP Solutions: Ingenica 360, Microsoft Dynamics NAV ERP, Datarails.
  • Data Management and Business Intelligence: Power BI, Azure Data Services, Data Factory, Data Lake, SQL).
  • Cloud Computing and Connectivity: Google Compute Platform (GCP), Microsoft Azure (security, AD), Network Connectivity, Mac Connectivity, MacBook Connectivity to Google Cloud.
  • Authentication and Content Management: Microsoft Azure Authentication Services (B2B, ADFS), Bespoke Content Management System (CMS)
  • Integration and Collaboration: Solweb Integration, Microsoft M365 (SharePoint)
  • Application Development and Data Processing: Microsoft Azure SQL, Appian, React, – Node.js, Batch extracts and file processing, Mulesoft, MariaDB

Data Architecture-As-A-Service Overview

Our Data Architects were tasked with delivering a comprehensive solution to support the development of the agency’s enterprise data architecture.
Key responsibilities and contributions included:
• Support to build an enterprise logical data model which defined data standards to underpin the governance of solution design.
• Identify and document agency enterprise multi domain logical data.
• Produce an enterprise model document in Sparx EA.
• Support to build and implement an agency wide data governance roadmap and framework.
• Aid in conducting a maturity assessment of the agency’s data management.
• Assist in developing standards which underpin the data governance including master data management, data quality and data interoperability using open standards.
• Data Architecture artefacts and knowledge transfer as appropriate to TD3 staff:

  • Logical domain model
  • Enterprise Model document
  • Data Governance roadmap
  • Data Management maturity assessment

Information Security-As-A-Service Overview

Our Security Architects we also tasked with delivering a comprehensive solution to address the MHRAs organisation’s security governance requirements across both Business-As-Usual (BAU) operations and projects.
Key responsibilities and contributions included:
• Architecture Product Review:

  • Ensure Security and Privacy by Design principles are incorporated into MHRA architecture products.
  • Active participation in Solution Design Board meetings, to provide key business stakeholders valuable security insights for decision making.

• DevOps Security Advice:

  • Provide expert security advice during the implementation of the DevOps toolset.
  • Ensure that security best practices are embedded throughout the DevOps lifecycle.

• Security Operations Centre (SOC) Recommendations:

  • Produce recommendations for the implementation of a Security Operations Centre.
  • Develop a tailored approach to monitor, detect and respond to security incidents effectively.

• Privileged Account Management:

  • Create and publish a standard operating procedure for managing privileged accounts.
  • Activate Privilege Identity Management on Active Directory to enhance security and control over privileged accounts.

• Multi-Factor Authentication (MFA) Enforcement:

  • Enforce MFA on all accounts with elevated privileges, adding an extra layer of security to protect against unauthorised access.

• Data Loss Prevention Policy:

  • Developed and implemented a comprehensive Data Loss Prevention Policy to safeguard sensitive information from unauthorised disclosure or leakage.

• Obsolescence Management:

  • Established and maintained a repository of end-of-life and end-of-support software.
  • Provide regular review and approval recommendations based on solution designs.

Conclusion

The Architecture-as-a-Service, Data Architecture and Information Security services provided contributed significantly to the MHRA’s portfolio of change. With streamlined processes, improved architecture artefacts, defined data modelling and architecture, successful knowledge transfer and robust Information Security measures, the MHRA enhanced its service delivery, decision-making, risk management and alignment with strategic objectives. The services delivered substantial value by supporting projects, strengthening security posture and ensuring compliance with regulatory standards.

IT Agility Ability™

IT Agility Ability is the future of deploying resources to fulfil your IT projects.
It is a service designed by Certes to offer a flexible service for IT project delivery that assigns, controls and manages your project resources (time, money, and people).

  • IR35 compliant
  • Attributable as nonheadcount resource
  • Scalable and flexible service
  • Deployable within just a few weeks
  • Outputbased deliverables
  • Real time programme and project data captured using the Certes agility ability Portal

Click here to learn more about Agility Ability

Who We Work With