Software as a Service
Software as a Service (SaaS) is a software licensing model where the agency subscribes to an ARMS system hosted in a vendor-managed cloud infrastructure; meaning the management of all servers, data backup/recovery, cybersecurity, etc. are the responsibility of the vendor. SaaS model licensing does not mean the agency relinquishes the responsibility for managing who has access to the ARMS system. SaaS does not mean the vendor controls user permissions; management of user privileges is still an agency responsibility. This is known as a shared responsibility model, where both the vendor and the agency share the responsibilities of data security; Microsoft secures the physical datacenter, the ARMS team secures the cloud infrastructure, and the agency secures the users that can access the ARMS application.
ARMS SaaS Model
What is it?
- Subscription-based: no RFP, no capital purchase
- Cloud-based system: the pinnacle of security, redundancy, and uptime
- Vendor-managed: the vendor manages all updates, cybersecurity, backup, recovery, and failover
- FBI CJIS Compliant: trustworthy datacenters – the Microsoft Azure Government cloud
Why the Cloud?
- Budgeting: eliminates budgeting for new servers every few years
- Cybersecurity: the utmost in network, application, and information security
- Disaster Recovery: multi-datacenter, multi-state backup and failover solutions
- Modern Solutions: the latest in technology and features for ARMS
What to Know about the ARMS SaaS Model?
- Single-tenant solution: system and data are isolated; dedicated to your agency
- Unlimited storage: never fret over running out of data storage space
- Data Security: CJIS compliant encryption of data-at-rest and data-in-transit
- Application Security: thoroughly vetted against industry-leading 3rd party security scanners
- MFA, SSO: supports Single Sign-On, Two-Factor Authentication/Multi-Factor Authentication
- Microsoft Azure Government cloud: agency data stays in the USA
- All-inclusive: subscription covers software licensing, hosting, management, and support
- ARMS upgrades: scheduled in advance with the agency; no surprise upgrades
Frequently Asked Questions (FAQ)
- Encryption
- Data-at-Rest is encrypted, Data-in-Transit is encrypted
- Encryption algorithm is AES-256, Encryption algorithm is FIPS compliant
- HTTPS/TLS 1.2 is enforced for web-based access
- Network
- Isolated, dedicated agency virtual network behind layers of security
- Continuously monitored Intrusion Detection and Prevention System (IDPS)
- Managed by experienced cloud professionals with CJIS Security clearance
- Access
- Single Sign-On (SSO) support for Azure AD, Oka, Duo, OneLogin, Shibboleth, etc.
- Two-Factor Auth (2FA)/Multifactor Auth (MFA)
- CJIS compliant user login requirements, login auditing
- Multiple datacenters across the USA providing incredible uptime
- Frequent backups of datasets and vital resources
- Very low Recovery Point Objective (RPO)/Recovery Time Objective (RTO)
- All system updates are scheduled with the agency for an agreed upon date/time
- Updates take less than one hour to implement
- All system updates can be previewed prior to scheduling production updates
- Dispatch positions should have a mainstream supported Windows workstation
- Patrol, Records, Property/Evidence, Administration only need a modern web browser
- Mobile devices only need a modern web browser; no app installation required