NTT Europe Ltd

Platform as a Service

Extend the capabilities of the NTT Enterprise Cloud to encompass management of both Business Application and Business Services layers, delivering true Platforms as a Service. Platform and application services provide managed storage, backups and archiving, database, middleware, applications and security in a modular service portfolio across the whole IT platform.

Features

  • •Hardware used is based on a common x86 platform
  • •Hypervisor software that allows multiple virtual machine operation
  • •Different service levels are available to fit customer needs.
  • Customer portal allows you to manage your whole IT estate
  • Easy deployment of new apps and servers
  • •Solutions designed around ISO20000, Prince2 and best practice guidelines.
  • •Highly secure solutions, in line with ISO270001
  • •Public, private or hybrid Cloud solution
  • Security – Software Defined Networking firewalls
  • modular service portfolio across the whole IT platform.

Benefits

  • Deploy new application servers in a more flexible way
  • Increase system availability
  • Controlling IT costs by consolidating hardware
  • secure control
  • •• Cost Optimisation – Pay for what you use
  • Value – Optimise hardware resources and manage IT costs
  • Seamless . One portal, one contract, one SLA
  • Cost control – TCO reductions of up to 30%

Pricing

£100 to £500 per unit

  • Education pricing available
  • Free trial available

Service documents

G-Cloud 9

387957326696024

NTT Europe Ltd

Trevor Gillis

07817960846

trevor.gillis@ntt.eu

Service scope

Service scope
Service constraints None
System requirements N/A

User support

User support
Email or online ticketing support Email or online ticketing
Support response times NTT Europe provides a 24X7X365 service as standard.
Specific response times can be agreed as per customer requirements
User can manage status and priority of support tickets Yes
Online ticketing support accessibility WCAG 2.0 AA or EN 301 549
Phone support Yes
Phone support availability 24 hours, 7 days a week
Web chat support Web chat
Web chat support availability 24 hours, 7 days a week
Web chat support accessibility standard WCAG 2.0 AA or EN 301 549 9: Web
Web chat accessibility testing N/A
Onsite support Onsite support
Support levels NTT Europe provides 24X7X365 support as standard in our Service
NTT Europe provides Technical, Account and Service Management support
Typical support levels - P1 - 15mins, P2- 30 mins, P3 - 2 hours, P4 - 4hours
Support available to third parties No

Onboarding and offboarding

Onboarding and offboarding
Getting started NTT Europe provides on site training, online training and user documentation for users starting to use the service.
Service documentation Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction The extraction of users data at the end of the Contract period is built into the Contract arrangements agreed. This also defines the extraction methods used.Users may export VM disks from the portal/API or transfer data suing the transfer protocols such as ftp/scp
End-of-contract process The contract is designed to be flexible. End of contract arrangements are identified at the outset of the contract and include data extraction methods and cooperation with any new Cloud suppliers.

Using the service

Using the service
Web browser interface Yes
Using the web interface There are no limitations on how users set up or make changes through the web interface
Web interface accessibility standard WCAG 2.0 AA or EN 301 549
Web interface accessibility testing N/A
API Yes
What users can and can't do using the API There are no limitations on how users can set up or make changes through the API.There is a full range of API's all API's are published on the NTT Europe Knowledge Center. We also have an Enterprise Cloud CLI tool (API client) and ECL2.0 SDK for Python to helpAPI development.
API automation tools
  • Chef
  • Puppet
API documentation Yes
API documentation formats
  • HTML
  • PDF
Command line interface No

Scaling

Scaling
Scaling available Yes
Scaling type Automatic
Independence of resources Cloud deployment model - Hybrid cloud, assured by contractual commitment
Services separation are assured by assurance of service design
Services management separation are assured by assurance of service design
Usage notifications Yes
Usage reporting
  • API
  • Email
  • SMS
  • Other

Analytics

Analytics
Infrastructure or application metrics Yes
Metrics types
  • CPU
  • Disk
  • HTTP request and response status
  • Memory
  • Network
  • Number of active instances
Reporting types
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

Resellers
Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Conforms to BS7858:2012
Government security clearance Up to Developed Vetting (DV)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations Yes
Datacentre security standards Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency At least once a year
Penetration testing approach ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
Protecting data at rest Physical access control, complying with SSAE-16 / ISAE 3402
Data sanitisation process Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
  • Hardware containing data is completely destroyed
Equipment disposal approach Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

Backup and recovery
Backup and recovery Yes
Backup controls As agreed in the Contract schedule
Datacentre setup Multiple datacentres with disaster recovery
Scheduling backups Users schedule backups through a web interface
Backup recovery Users can recover backups themselves, for example through a web interface

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks Legacy SSL and TLS (under version 1.2)
Data protection within supplier network Legacy SSL and TLS (under version 1.2)

Availability and resilience

Availability and resilience
Guaranteed availability Typical response times SLA's - P1 - 15mins, P2- 30 mins, P3 - 2 hours, P4 - 4hours
Service availability is 99.99 - assured by contractual commitment
NTT Europe also operates a Service Credit regime for failure to meet targets and SLA's. these are assured by contractual commitment
Approach to resilience Information available on request
Outage reporting Public Dashboard
API
Email alerts

Identity and authentication

Identity and authentication
User authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
Access restrictions in management interfaces and support channels Access is restricted
Username and password, assured by CESG-assured components
Access restriction testing frequency At least every 6 months
Management access authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
Devices users manage the service through Dedicated device over multiple services or networks

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users have access to real-time audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 Lloyds Register (LRQA)
ISO/IEC 27001 accreditation date 12/12/2016
What the ISO/IEC 27001 doesn’t cover N/A
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification Yes
Who accredited the PCI DSS certification CNS Group
PCI DSS accreditation date 24/12/2106
What the PCI DSS doesn’t cover This covers the building, deployment, and support of cloud and managed hosting solutions.
Other security accreditations No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance accreditation Yes
Security governance standards ISO/IEC 27001
Information security policies and processes NTT Europe has a number of Policies in place. These follow the controls defined in the ISO27001:2013 version of the standard and range from Acceptable Control, Internet Usage, Mobile Computing, Incident Management, Business Continuity, Data Protection,Document Retention,Confidential Information Protection and Physical Access Control. These principles are reviewed annually and updated as needed. A full security induction programme is in place and regular Security Information awareness campaigns are run to ensure that staff are kept abreast or responsibilities and threats. Staff adherence to and understanding of policies is measured by annual elearning security quizzes. In addition any InfoSec incidents are investigated by the Information Security team. The InfoSec team includes a full time internal auditor who audits all of NTTE against all security policies. The InfoSec team reports to the Director Information Security and Compliance. who in turn reports to the European Information Security Management Board and the Chief Security Officer.

Operational security

Operational security
Configuration and change management standard Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach NTT Europe adheres to ITIL standards for all levels of Service Management including Configuration and Change Management Users report incidents on line, via the telephone or via email NTT Europe provides a full reporting service as part of the Service Management arrangements with customers. This is usually monthly and are on line or hard copy.
Vulnerability management type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Vulnerability management approach NTT Europe provides the following -
Vulnerability assessment
Vulnerability monitoring
Vulnerability mitigation prioritisation
Vulnerability tracking
Vulnerability mitigation timescales
Protective monitoring type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach The service is monitored by both the users and NTT Europe's technical support resource. Through dashboards and central control systems which are intergral to the Data Center facilities that we operate. This provides a 24X7X365 service cover. This means that any compromises can be deqalt with immediately.
Any compromises are dealt with in line with the agreed SLA's commmitments - typically SLA's could be -P1 - 15mins, P2- 30 mins, P3 - 2 hours, P4 - 4hours
Incident management type Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach NTT Europe adheres to ITIL standards for all levels of Service Management including Incident Management
Users report incidents on line, via the telephone or via email
NTT Europe provides Incident reports as part of the Service Management arrangements with customers. This is usually monthly and are on line or hard copy

Secure development

Secure development
Approach to secure software development best practice Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

Separation between users
Virtualisation technology used to keep applications and users sharing the same infrastructure apart Yes
Who implements virtualisation Supplier
Virtualisation technologies used VMware
How shared infrastructure is kept separate Cloud deployment model Hybrid cloud, assured by contractual commitment
Type of consumer Anyone - public, assured by contractual commitment
Services separation Yes, assured by assurance of service design
Services management separation Yes, assured by assurance of service design

Energy efficiency

Energy efficiency
Energy-efficient datacentres Yes

Pricing

Pricing
Price £100 to £500 per unit
Discount for educational organisations Yes
Free trial available Yes
Description of free trial Full service
The free trial time period is defined by the individual user requirement but is usually one month

Documents

Documents
Pricing document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑