Verizon UK Ltd

ZSCALER AND CONTENT CONTROL

Web content management is a cloud architecture; the end user’s web communication traffic will be forwarded to the Zscaler cloud, where the appropriate policy will be enforced on the user’s web request. The web reply communication traffic will be thoroughly inspected before clean traffic is delivered back to the end-user.

Features

  • Deployable globally with zero impact on the user base
  • Customise the service through a very easy to use web-portal
  • Managed SECaaS enables organisations to establish a multi-layered security posture
  • Pay as you go
  • Shift Cloud Platform for Guest Wifi and DNS
  • Web Security Professional Suite
  • Advanced Behavioral Analysis
  • Cloud Data Loss Prevention

Benefits

  • Gap-Free Security
  • Compliance and Real-time Analytics enables regulatory and industry compliance
  • World’s largest global security cloud; 100+ datacenters
  • Easily secure all smartphones and tablets without an agent
  • Near-zero latency
  • No appliances, software or clients to deploy and manage
  • Inspect every byte
  • Empowerment of people to use mobile and social

Pricing

£7.60 per licence per month

  • Free trial available

Service documents

G-Cloud 10

474888506539396

Verizon UK Ltd

Leanne Hurrell

01189055000

gcloud@verizon.com

Service scope

Service scope
Service constraints The customers need to connect via internet
System requirements
  • Browser based access
  • The ability to configure the default route on machines

User support

User support
Email or online ticketing support No
Phone support Yes
Phone support availability 24 hours, 7 days a week
Web chat support Web chat
Web chat support availability 24 hours, 7 days a week
Web chat support accessibility standard None or don’t know
How the web chat support is accessible This is available via the Verizon support portal users can discuss issues but not self raise ie the chat is with a human operator
Web chat accessibility testing We have tested with our customer base which includes ~1million potential customers
Onsite support Yes, at extra cost
Support levels We offer 100% availability hence there is a flat support level
We can provide account management support
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Users configure their devices to point to the platform, we need to upload control policies and make a connection to the customer directory service in some manner , ie LDAP or AD ocnnection
Service documentation Yes
Documentation formats
  • HTML
  • ODF
  • PDF
End-of-contract data extraction There is no data to extract other than logs which are transmitted continuously to the customer
End-of-contract process There is no additional cost the contract is simply terminated

Using the service

Using the service
Web browser interface Yes
Using the web interface Users can achieve orders fault tickets , gain reports and bills . The only task they cannot perform is technical pre-sales discussions and consultancy
Web interface accessibility standard WCAG 2.0 AAA
Web interface accessibility testing Non apart from "in the field" experience of multiple users using the platform and providing feedback
API No
Command line interface No

Scaling

Scaling
Scaling available Yes
Scaling type Automatic
Independence of resources We employ large scale and headroom planning rules. We are aware of the total number of users at order stage and plan accordingly. We also have global customers which gives a time of day loading advantage across platforms. We are able to distribute loads locally and globally
Usage notifications Yes
Usage reporting Email

Analytics

Analytics
Infrastructure or application metrics Yes
Metrics types
  • HTTP request and response status
  • Number of active instances
Reporting types
  • Real-time dashboards
  • Reports on request

Resellers

Resellers
Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Conforms to BS7858:2012
Government security clearance Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
  • EU-US Privacy Shield agreement locations
User control over data storage and processing locations Yes
Datacentre security standards Supplier-defined controls
Penetration testing frequency At least once a year
Penetration testing approach ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
Protecting data at rest
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
Data sanitisation process Yes
Data sanitisation type Explicit overwriting of storage before reallocation
Equipment disposal approach In-house destruction process

Backup and recovery

Backup and recovery
Backup and recovery Yes
What’s backed up
  • We backup the service but not individual files or content
  • We backup logs
Backup controls They are automatic and part of the core service
Datacentre setup
  • Multiple datacentres with disaster recovery
  • Multiple datacentres
Scheduling backups Supplier controls the whole backup schedule
Backup recovery Users contact the support team

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks TLS (version 1.2 or above)
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

Availability and resilience
Guaranteed availability We provide 100% availability
Approach to resilience We operate over 100 locations globally with in build as well as global and country resilience
Outage reporting A public dashboard,an API, email alerts

Identity and authentication

Identity and authentication
User authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Username or password
Access restrictions in management interfaces and support channels By bastion and multiple firewall network as well as out of band management
Access restriction testing frequency At least every 6 months
Management access authentication 2-factor authentication
Devices users manage the service through Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

Audit information for users
Access to user activity audit information Users receive audit information on a regular basis
How long user audit data is stored for At least 12 months
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for At least 12 months
How long system logs are stored for At least 12 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards ISO/IEC 27001
Information security policies and processes We have extensive policies and align to ISO27001 and FISMA/FICAM

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach We operate extensive ITIL alignment and configuration management. We assess all changes as this product is fundamentally a security product and is constantly updated with new virus definitions. These are deployed in lab environment before being progressively deployed across the estate
Vulnerability management type Supplier-defined controls
Vulnerability management approach This is fundamental to this security product and is available on request as this is the IPR behind this platform
Protective monitoring type Supplier-defined controls
Protective monitoring approach We align with GPG 13 principals
Incident management type Supplier-defined controls
Incident management approach We align with ITIL. Users can use phone or portal to log incidents. Reports are provided on line by secure portal

Secure development

Secure development
Approach to secure software development best practice Conforms to a recognised standard, but self-assessed

Separation between users

Separation between users
Virtualisation technology used to keep applications and users sharing the same infrastructure apart Yes
Who implements virtualisation Supplier
Virtualisation technologies used Other
Other virtualisation technology used This is bespoke to the platform but relies on open stack
How shared infrastructure is kept separate We provide routing separation and virtual lan configuration to the virtual instances

Energy efficiency

Energy efficiency
Energy-efficient datacentres Yes

Pricing

Pricing
Price £7.60 per licence per month
Discount for educational organisations No
Free trial available Yes
Description of free trial Standard service excluding training and support

Documents

Documents
Pricing document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑