Application "White Box" Code Review
Short-term Goals are to generate an action plan mitigating vulnerabilities described in Vulnerabilities Matrix as well as remediating all injection vulnerabilities.
Long-term Goals are to provide a second analysis to confirm remediation and to look for possible vulnerabilities that may have been introduced by changes to the code.
Features
- Enhance Security of your custom web applications
- Enhance Security of custom coding associated with COTS software
Benefits
- Evaluate and document the outward facing infrastructure
- Harden and evolve your infrastructure
Pricing
£950 to £1,200 a person a day
Service documents
Request an accessible format
Framework
G-Cloud 10
Service ID
2 7 5 1 8 6 6 0 9 2 0 4 9 8 5
Contact
Sungard Availability Services (UK) Ltd (In Administration)
Sungard Availability Services
Telephone: 0800 143 413
Email: government@sungardas.com
Planning
- Planning service
- Yes
- How the planning service works
-
Sungard Availability Services Consulting offer a number of Digital Transformation modules. These offer a comprehensive approach catering for all transformation needs from initial strategy development through on-going implementation, migration and service improvement.
The approach provides flexibility in service consumption based on what clients wish to achieve. A key consideration is that modular doesn’t mean totally independent, some modules have dependencies on others, however, appropriate module sets can be defined to cater for individual needs. Modules build on each ensuring optimum value without duplication of effort.
Service modules are split into seven segments.
Strategy: Helps organisations define strategic intent and develop a hybrid platform strategy and road-map aligned to their digital strategy.
Map: Map Services clarifies dependencies and confirms target deployment models and migration methods.
Construct: Design platform and portfolio of Hybrid IT offerings based on business needs and best-fit architecture.
Move: Agile transformation approach to transport workloads on to Hybrid platforms.
Protect: Assist clients to meet security, compliance and governance requirements for audit.
Modern Mode of Operation: Enabling flexible operating models and delivering tighter collaboration between business and IT.
Driving Change: Program governance driving the change from strategy to delivery incorporating people, process and technology. - Planning service works with specific services
- No
Training
- Training service provided
- Yes
- How the training service works
- Perform analysis alongside your team to train in security considerations.
- Training is tied to specific services
- No
Setup and migration
- Setup or migration service available
- Yes
- How the setup or migration service works
-
Sungard Availability Services help customers with workload discovery and profiling to enable Cloud transformation. The service, known as “Map”, clarifies application dependencies and confirms target deployment, treatment and migration methods. Workloads with recommended remediation are put forward to the “Move” phase based on the priortised findings. This service has four areas:
Workload Discovery and Profiling Sprints
Selection and prioritised list of applications. Focused discovery sprint cycles to profile associated business processes and infrastructure.
Workload Dependency Mapping
Establish and develop application dependency tree maps. Classify application critical characteristics and associated life-cycle stages. Undertake multi source dependency analysis ensuring risk mitigation for workload migration.
Target Platform Selections
Takes an in depth workload view to ensure economic, technical and architectural fit with appropriate hybrid infrastructures and migration approaches. Ensure that workloads are put in the appropriate target platforms (private, public, hybrid) with appropriate deployment models (PaaS, IaaS, SaaS).
Transformation Treatments
Define how the application will move to selected platform and associated complexity details. Apply migration strategies based on risk and business benefits, identifying and enabling remedial actions for application cloud readiness.
Engagements vary from customers understanding where they feature on the cloud maturity road-map, to preparation for large scale hybrid cloud deployments. - Setup or migration service is for specific cloud services
- No
Quality assurance and performance testing
- Quality assurance and performance testing service
- No
Security testing
- Security services
- Yes
- Security services type
-
- Security strategy
- Security risk management
- Security design
- Cyber security consultancy
- Security testing
- Certified security testers
- Yes
- Security testing certifications
-
- CHECK
- CREST
Ongoing support
- Ongoing support service
- No
Service scope
- Service constraints
- None
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
- 2 -3 hours
- User can manage status and priority of support tickets
- No
- Phone support
- Yes
- Phone support availability
- 24 hours, 7 days a week
- Web chat support
- No
- Support levels
- Quality of Service agreement determines response time expectations.
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Conforms to BS7858:2012
- Government security clearance
- Up to Security Clearance (SC)
Pricing
- Price
- £950 to £1,200 a person a day
- Discount for educational organisations
- No