UKN Group Limited

UKN Group DaaS

Desktop as a Service


  • Cloud desktop based on Microsoft Windows (RDS)
  • Secure Desktop-on-Demand, anytime, from anywhere and on any device
  • Highly scalable to meet service demands and requirements
  • Delivered from leading edge UK-based data centres
  • Monitored 24x7x365 with servicing and support
  • Robust Backup & Disaster Recovery (DR) options available
  • Work securely from anywhere that has an RDP client
  • Fully managed OS and supported applications patch management
  • Microsoft Office 365 integration
  • Optional UK NHS N3/HSCN connectivity


  • Meets your organisation’s end-user computing (EUC) requirements
  • End to end solution, design to migration to support
  • Office365 integration to allow collaboration across multiple devices
  • Flexible per-month pricing
  • Increase user productivity - collaborate & access your applications on-demand
  • Rapid scalability (up and down)
  • BYOD compatible - access via PCs, laptops, tablets and smartphones
  • Highly secure and compliant platform, with optional HSCN/N3 connectivity
  • UK based service desk
  • Robust Business Continuity (BC) options


£15 to £30 per person per month

  • Education pricing available

Service documents

G-Cloud 10


UKN Group Limited

Chris Telfer

01256 846848

Service scope

Service scope
Service constraints Solution requires good quality internet connection ideally with resiliency of a second line.
System requirements None

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Email or online ticketing
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 24 hours, 7 days a week
Web chat support Web chat
Web chat support availability 24 hours, 7 days a week
Web chat support accessibility standard None or don’t know
How the web chat support is accessible Web Chat is available via the UKN Group web site at
Web chat accessibility testing Web Chat is checked every day and monitored 24/7/365
Onsite support Yes, at extra cost
Support levels UKN Group offer a 24/7/365 Managed Support Service. Client may makle use of the Shared Service Centre in Basingstoke and/or deploy Service Specialists on-site with the Service Centre providing additional back up support.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started UKN Group have a comprehensive On-boarding process that is governed by the specific requirement of each client. The cultural engagement is a critical element of the on boarding process and will form part of the Operating Level Agreement that defines the systems, processes, service levels, escalation processes and any training that users will require. The service is fully documented in the OLA and will be managed by the Service Delivery Manager.
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction The contractual agreement and the Operating Level Agreement will define in specific detail the exit processes including the extraction. UKN Group will conform the requirement of the Client in terms of the format and extraction process to be undertaken. Full back ups will be taken daily and available to the Client for future service delivery beyond the end of the contract.
End-of-contract process The Contractual Agreement and OLA will define in detail the exit process and any additional cost beyond Business as Usual for ending the service provision.

Using the service

Using the service
Web browser interface No
Command line interface No


Scaling available No
Independence of resources UKN Group can tailor the DaaS solution for which puts measures in place to ensure that no one user can oversubscribe on resource and therefore negatively affecting other users.

UKN Group also persistently monitor the infrastructure of their customers utilising state-of-the-art, robust monitoring tools therefore any overheads on the system instantly notifies the the UKN Service Operations Centre (SOC)
Usage notifications Yes
Usage reporting
  • Email
  • Other


Infrastructure or application metrics Yes
Metrics types
  • CPU
  • Disk
  • Memory
  • Network
Reporting types Regular reports


Supplier type Reseller providing extra support
Organisation whose services are being resold Microsoft

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations Yes
Datacentre security standards Managed by a third party
Penetration testing frequency At least once a year
Penetration testing approach ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
Data sanitisation process Yes
Data sanitisation type Explicit overwriting of storage before reallocation
Equipment disposal approach A third-party destruction service

Backup and recovery

Backup and recovery
Backup and recovery Yes
What’s backed up
  • Desktop (virtual machine)
  • Files
  • Databases
Backup controls N/A
Datacentre setup
  • Multiple datacentres with disaster recovery
  • Multiple datacentres
Scheduling backups Supplier controls the whole backup schedule
Backup recovery Users contact the support team

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks
  • Private network or public sector network
  • IPsec or TLS VPN gateway
Data protection within supplier network IPsec or TLS VPN gateway

Availability and resilience

Availability and resilience
Guaranteed availability SLA depends on resiliency service purchased and therefore differs, but generally the hosting providers SLA is 99.95%
Approach to resilience Available upon request
Outage reporting Email alerts
Any other method of communication, to be agreed upon customer request

Identity and authentication

Identity and authentication
User authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
Access restrictions in management interfaces and support channels This can be achieved via networking access rules, credentials and/or certificates
Access restriction testing frequency At least once a year
Management access authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
Devices users manage the service through
  • Dedicated device on a segregated network (providers own provision)
  • Dedicated device on a government network (for example PSN)
  • Dedicated device over multiple services or networks
  • Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)
  • Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users receive audit information on a regular basis
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 British Assessment Bureau
ISO/IEC 27001 accreditation date 1/5/2018
What the ISO/IEC 27001 doesn’t cover All Aspects of the Service are covered
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards ISO/IEC 27001
Information security policies and processes The UKN Group QMS and Security policies conform totally to ISO 27001 and fully conform the the GDPR regulations.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach ITIL v3 Processes used
Vulnerability management type Supplier-defined controls
Vulnerability management approach Third party supplied threat analytics and management will be used
Protective monitoring type Supplier-defined controls
Protective monitoring approach Third party supplied analytics software will be used
Incident management type Supplier-defined controls
Incident management approach UKN Group 24/7/365 Managed Service Desk with escalations to resolver groups on demand. Fully conforms to Service Desk Institute standards and ISO27001.

Secure development

Secure development
Approach to secure software development best practice Supplier-defined process

Separation between users

Separation between users
Virtualisation technology used to keep applications and users sharing the same infrastructure apart Yes
Who implements virtualisation Third-party
Third-party virtualisation provider Microsoft Azure. Private clouds & datacentres can also be provisioned
How shared infrastructure is kept separate This is achieved utilising advanced datacentre networking segregation technologies for which are highly secure

Energy efficiency

Energy efficiency
Energy-efficient datacentres Yes


Price £15 to £30 per person per month
Discount for educational organisations Yes
Free trial available No


Pricing document View uploaded document
Service definition document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑