UpbeatData

Amazon AWS Hosting Solutions

UpbeatData, a Amazon AWS Partner, has a managed DevSecOps service that enables Amazon AWS for our customers in a secure, flexible and cost-efficient manner.

UpbeatData is also able to support our customers with multiple clouds (AWS, Azure or GCP) strategies and migration from legacy environments or other clouds.

Features

  • Fully Supports DevOps & Agile Product Development
  • Legacy & Cloud Native Support
  • Multiple Support Operating Models (Fully, Self or Hybrid management)
  • Full AWS Catalogue or Individual Items
  • Single Cloud or Multi Cloud (AWS, Azure or GCP)
  • AWS Migrate for detailed assessments prior to migration
  • NIST & CIS Security Alignment

Benefits

  • Enterprise Architecture Integrated with DevSecOps
  • IaaS & PaaS pay as you go convenience and pricing
  • CI/CD automation & Integration
  • Quick to deploy Framework for Azure, Google & AWS
  • Support for Common Toolchains (Terraform, GitHub, Azure DevOps)
  • Data Operations
  • Management of Machine Learning Models
  • Azure Sentinel Integration

Pricing

£0.01 a unit a second

  • Education pricing available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Sales@upbeatdata.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 12

Service ID

3 5 7 5 7 5 8 0 1 0 8 7 6 2 5

Contact

UpbeatData Sales
Telephone: 0800 048 8858
Email: Sales@upbeatdata.com

Service scope

Service constraints
None
System requirements
None

User support

Email or online ticketing support
Yes, at extra cost
Support response times
For a P1 our standard response is 2 hours. For a P2 our standard response is 4 hours. For a P3 our standard response is 8 hours. For a P4 our standard response is 1 day. Our standard business support hours are 0800-1800 Monday-Friday (excluding UK bank holidays). 24 x 5 or 24 x 7 phone support is available at additional cost.
User can manage status and priority of support tickets
Yes
Online ticketing support accessibility
WCAG 2.1 A
Phone support
Yes
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
Yes, at an extra cost
Web chat support availability
9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard
WCAG 2.1 A
Web chat accessibility testing
No testing done to date but would be open to testing.
Onsite support
Yes, at extra cost
Support levels
Our standard UK Support is available to all customers Monday to Friday 0800 - 1800 UK time, excluding UK Bank holidays. 24x5x365 and 24x7x365 support are available as chargeable extras outside of the standard support hours. Customers have access to the UpbeatData self-service portal 24x7x365. Each customer is provided with a technical account manager who is available during normal business hours.
Support available to third parties
Yes

Onboarding and offboarding

Getting started
UpbeatData utilises the following migration approach. 1. Define Strategy; Create Business Case & Financial model. 2. Plan; Run Discovery & Create Migration Plan. 3. Prepare; Create Skills & Support Plan. Build Landing Zone(s). 4. Govern; Identify Risks & Governance Gaps. 5. Manage; Classify business criticality and business value.
Service documentation
Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction
Usually the environment is build using customers AWS Accounts and the customer retains them at contract end. Any data that is not in a customer AWS Accounts is exported via CSV or files.
End-of-contract process
Following notification of cancellation we will engage with the customer to confirm the termination date and agree timeframes for supplying the customers information to them. If additional/bespoke reporting requirements are requested this would be costed on a POA basis and provided as required.

Using the service

Web browser interface
Yes
Using the web interface
https://aws.amazon.com/console/
Web interface accessibility standard
WCAG 2.1 A
Web interface accessibility testing
None at this time.
API
Yes
What users can and can't do using the API
https://docs.aws.amazon.com/general/latest/gr/aws-apis.html
API automation tools
  • Ansible
  • Chef
  • OpenStack
  • SaltStack
  • Terraform
  • Puppet
API documentation
Yes
API documentation formats
HTML
Command line interface
Yes
Command line interface compatibility
  • Linux or Unix
  • Windows
  • MacOS
Using the command line interface
https://aws.amazon.com/cli/

Scaling

Scaling available
Yes
Scaling type
  • Automatic
  • Manual
Independence of resources
The hosting environment automatically scales to accommodate usage and extensive capacity planning is performed.
Usage notifications
Yes
Usage reporting
  • API
  • Email
  • SMS

Analytics

Infrastructure or application metrics
Yes
Metrics types
  • CPU
  • Disk
  • HTTP request and response status
  • Memory
  • Network
  • Number of active instances
  • Other
Other metrics
  • AWS Cloud​Formation
  • AWS CloudTrail
  • PowerBI reports
Reporting types
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

Supplier type
Reseller providing extra features and support
Organisation whose services are being resold
Amazon AWS, Microsoft Azure & Google GCP

Staff security

Staff security clearance
Conforms to BS7858:2012
Government security clearance
Up to Developed Vetting (DV)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
  • EU-US Privacy Shield agreement locations
User control over data storage and processing locations
Yes
Datacentre security standards
Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency
At least every 6 months
Penetration testing approach
Another external penetration testing organisation
Protecting data at rest
Physical access control, complying with SSAE-16 / ISAE 3402
Data sanitisation process
No
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

Backup and recovery
Yes
What’s backed up
  • Virtual Machines
  • Databases
  • Object Storage
  • Files
  • Most Data
Backup controls
Determined at the outset of the service with the customer / as part of the Backup & Restore standards defined with the customer.
Datacentre setup
Multiple datacentres
Scheduling backups
Supplier controls the whole backup schedule
Backup recovery
Users contact the support team

Data-in-transit protection

Data protection between buyer and supplier networks
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

Guaranteed availability
https://aws.amazon.com/legal/service-level-agreements/
Approach to resilience
Amazon AWS Data Centres are configured to be resilient with multiple availability zones and diverse connectivity.

In addition Amazon AWS Data Centres are configured as Regional Pairs to support DR.
Outage reporting
Public Dashboard
API
Email Alerts

Identity and authentication

User authentication
  • 2-factor authentication
  • Identity federation with existing provider (for example Google apps)
Access restrictions in management interfaces and support channels
2FA
Bastion Hosts
Access restriction testing frequency
At least every 6 months
Management access authentication
2-factor authentication
Devices users manage the service through
Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)

Audit information for users

Access to user activity audit information
Users receive audit information on a regular basis
How long user audit data is stored for
At least 12 months
Access to supplier activity audit information
Users receive audit information on a regular basis
How long supplier audit data is stored for
At least 12 months
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
No
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Other security certifications
Yes
Any other security certifications
Cyber Essentials

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
Other
Other security governance standards
Aligned with CIS & NIST.
Working towards Cyber Essentials and ISO27001
Information security policies and processes
Cyber Essenitals
NIST & CIS

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
ITILV4 Aligned
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
NIST & CIS
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
NIST & CIS
Incident management type
Supplier-defined controls
Incident management approach
ITILv4

Secure development

Approach to secure software development best practice
Conforms to a recognised standard, but self-assessed

Separation between users

Virtualisation technology used to keep applications and users sharing the same infrastructure apart
No

Energy efficiency

Energy-efficient datacentres
Yes
Description of energy efficient datacentres
https://aws.amazon.com/compliance/data-center/data-centers/

Pricing

Price
£0.01 a unit a second
Discount for educational organisations
Yes
Free trial available
No

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Sales@upbeatdata.com. Tell them what format you need. It will help if you say what assistive technology you use.