MarkLogic Corporation

MarkLogic Data Hub Service (DHS)

MarkLogic Data Hub Service is an automated cloud service for data integration. Based on MarkLogic Data Hub, the service enables teams to integrate and curate data for both operational and analytical use. Delivered as a cloud service, it provides on-demand capacity, auto-scaling, automated database operations, and enterprise data security.

Features

  • Automated Scalability - unmatched in the ability to auto-scale.
  • Automated Upgrades, automates both installation and upgrades.
  • Automated Backups, ensures safety of your data at all times.
  • Guaranteed Availability, high performance SLAs and provides 99.95% availability.
  • Built in replication & High availability for always-on availability
  • Automated patching and one-click upgrades for new major versions
  • Pricing is simple and you pay a fixed rate

Benefits

  • Flexible. Fast. Iterative, making data integration and curation easy
  • Automation, No lag time to get infrastructure up and running
  • Cost-effectiveness, Pay only for what you need
  • Reliability, Data Hub Service is for mission-critical systems
  • Secure By Default, Effortlessly protect your sensitive data
  • Enables agile teams to immediately start integrating and curating data
  • No infrastructure to manage, creating a complete service experience
  • Based on MarkLogic’s proven Data Hub technology
  • Cloud Neutral - Provides flexibility and portability

Pricing

£525 to £919.8 per unit per year

Service documents

G-Cloud 11

578302870750732

MarkLogic Corporation

Chris Cherry

+44 (0)7798 534528

UKGOV@marklogic.com

Service scope

Service scope
Service constraints No applicable constraints.
System requirements Cloud agnostic - Works on AWS, Azure or GCP

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Support response times

MarkLogic Support offers comprehensive 24/7 support for the MarkLogic software. In addition MarkLogic Consulting Services can offer application and service support. Typically this will only be while we are developing and delivering services and long-term support would be provided by our customers' teams after transition to business-as-usual.
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 24 hours, 7 days a week
Web chat support No
Onsite support Yes, at extra cost
Support levels MarkLogic has one level of support, which includes 9:00am to 5:00pm support in customer local time for P2, P3 and P4 incidents, and 24x7 support for P1 incidents, as defined in our Support Handbook. We have support engineers configured geographically to cover all timezones, and will "follow the sun," handing off as necessary to work P1 incidents until they are resolved. P2 through P4 incidents are typically handled by a single support engineer, although occasionally these will also be handed off to take advantage of an engineer's language, timezone, or technical expertise. Support personnel are tightly integrated with the product engineering team and provide the interface between the customer and the product engineering team.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started MarkLogic provides a variety of training options tailored to customer requirements, whether it is a new customer just getting started with MarkLogic or an organisation that needs customised, private training for an entire team. Successful implementation and self-sufficiency in utilising the MarkLogic platform is our goal for customers, so our entire education programme is available free of charge. MarkLogic University (MLU) offers a full curriculum of training. Training is available as live, instructor-led online courses and many courses are also presented as pre-recorded self-paced training to suit the learning style and preferences of individual learners. Additionally, MLU provides a wealth of small on-demand modules around specific features. Learning Assessments help our customers to track the attainment of their teams’ skills through the training and ultimately MarkLogic Professional Certification is available to recognise mature skills in your team. Documentation around all parts of the MarkLogic Server platform is provided by our dedicated technical documentation team and available on the MarkLogic Developer website.
Service documentation Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction MarkLogic Server is cloud agnostic and specifically designed to avoid cloud lock-in. At the end of the contract, the user can extract and continue to use their data by the following methods: A backup archive of all data can be generated and migrated to a different cloud service; MarkLogic utilises standard data formats for storage (XML and JSON) allowing this data can be extracted and used.
End-of-contract process At the end of the contract if the buyer decides not the renew then the buyer is responsible for ensuring the export and archive of their data from a production MarkLogic before license expiry. If the buyer requires consulting expertise on this process this is available at an additional cost at standard consulting rates.

Using the service

Using the service
Web browser interface Yes
Using the web interface Web browser interface
Web interface accessibility standard None or don’t know
How the web interface is accessible MarkLogic web interfaces can be built to fully comply with current web interface standards.
Web interface accessibility testing MarkLogic web interfaces can be built to fully comply with current web interface standards that support assistive technology users.
API Yes
What users can and can't do using the API MarkLogic Server provides a number of APIs including REST, XCC, SQL, ODBC and WebDav. Wrappers for common programming languages are also provided, including Java, JavaScript and Node.JS and others. All APIs are comprehensively documented. Two of the core APIs are the Client REST API and Management REST API. The Client REST API is a REST-based API for creating applications that with document manipulation and search capabilities. Use the web services provided by the API to create, read, update, delete, and search content in MarkLogic Server. The Management API is a REST-based API that allows you to administer MarkLogic Server and access MarkLogic Server instrumentation with no provisioning or set-up. You can use the API to perform administrative tasks such as initialising or extending a cluster; creating databases, forests, and App Servers; and managing tiered storage partitions. The API also provides the ability to easily capture detailed information on MarkLogic Server objects and processes, such as hosts, databases, forests, App Servers, groups, transactions, and requests from a wide variety of tools.
API automation tools
  • Ansible
  • Chef
  • OpenStack
  • Puppet
  • Other
Other API automation tools Gradle
API documentation Yes
API documentation formats
  • HTML
  • PDF
Command line interface Yes
Command line interface compatibility
  • Linux or Unix
  • Windows
  • MacOS
Using the command line interface MarkLogic is fully functional using command line tooling and scripting.

Scaling

Scaling
Scaling available Yes
Scaling type Automatic
Independence of resources MarkLogic Server is cloud agnostic and deployed on cloud infrastructure with resources as specified by the buyer. For an AWS deployment option MarkLogic Server would be deployed on EC2 instances dedicated to the buyer and their users only. For other cloud platforms similar separation of infrastructure and users is available.
Usage notifications Yes
Usage reporting
  • API
  • Email
  • Other

Analytics

Analytics
Infrastructure or application metrics Yes
Metrics types
  • CPU
  • Disk
  • HTTP request and response status
  • Memory
  • Network
  • Number of active instances
Reporting types
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

Resellers
Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Conforms to BS7858:2012
Government security clearance Up to Developed Vetting (DV)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
User control over data storage and processing locations Yes
Datacentre security standards Managed by a third party
Penetration testing frequency At least every 6 months
Penetration testing approach In-house
Protecting data at rest
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
Data sanitisation process No
Equipment disposal approach A third-party destruction service

Backup and recovery

Backup and recovery
Backup and recovery Yes
What’s backed up Automated Backups, ensures safety of your data at all times.
Backup controls MarkLogic Server provides a facility to make a consistent backup of a database. See https://docs.marklogic.com/guide/admin/backup_restore for full details and features.
Datacentre setup
  • Multiple datacentres with disaster recovery
  • Multiple datacentres
Scheduling backups Users schedule backups through a web interface
Backup recovery Users contact the support team

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks
  • Private network or public sector network
  • IPsec or TLS VPN gateway
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

Availability and resilience
Guaranteed availability MarkLogic is cloud agnostic and deployable with SLAs as specified by the buyer. For an AWS deployment option by employing a highly available/disaster recovery configuration across multiple availability zones and regions availability in excess of 99.99% is achievable. For other cloud platforms similar capabilities are available.
Approach to resilience MarkLogic is cloud agnostic and the level of service resilience is specified by the buyer. Further information as to service resilience capabilities is available on request.
Outage reporting MarkLogic is cloud agnostic and deployed with service monitoring available as specified by the buyer. For an AWS deployment option outage reporting is available via a public dashboard, API and email alerts. MarkLogic also provides plugins for the Nagios and New Relic application performance management and monitoring tools.

Identity and authentication

Identity and authentication
User authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
Access restrictions in management interfaces and support channels MarkLogic Server is cloud agnostic and the restriction in management interfaces and support channels is specified by the buyer. For an AWS deployment option this is achieved using the IAM Service where you can centrally manage users, security credentials such as passwords, access keys, and permissions policies that control which AWS services and resources users can access.
Access restriction testing frequency At least every 6 months
Management access authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
Devices users manage the service through
  • Dedicated device on a segregated network (providers own provision)
  • Dedicated device on a government network (for example PSN)
  • Dedicated device over multiple services or networks
  • Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)
  • Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users have access to real-time audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications Yes
Any other security certifications
  • Common Criteria Certified
  • PL3/ICD 503
  • DITSCAP
  • Cyber Security Essentials
  • FIPS 140-2
  • NIST 800-53, ICD 503, SSAE 16
  • HIPAA, SOX 302/404
  • FedRAMP
  • ISO/IEC 15408 EAL2 with ALC_FLR.3 certification
  • EU 95/46/EC

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards Other
Other security governance standards MarkLogic Server has achieved Common Criteria security certification. This is an internationally recognised International Standards Organisation standard (ISO/IEC 15408) used by governments and other organisations to assess the security capabilities of technology products.
Information security policies and processes The MarkLogic Information Security Policy (ISP) contains policies and procedures for remote access, network security, physical security, email & web conferencing security, password security, clean desk policy, data handling privacy and protection, backup & restoration, security breach/incident response policy and procedures and password security. A copy of the ISP is distributed to all employees who have to acknowledge receipt and review of the company’s ISP. The ISP is also included as part of the new hire orientation for all new employees. changes made to the ISP are updated to the internal MarkLogic portal. The VP of I.T. is the designated Chief Information Security Officer (CISO). Other members of the MarkLogic security team include SVP Engineering, Senior Director – I.T. compliance, EVP – Products and the Lead Security Engineer. In addition, we have a dedicated Facilities Security Officer who provides security briefings for security cleared employees at least on an annual basis

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach Available on request.
Vulnerability management type Supplier-defined controls
Vulnerability management approach Finders who believe they have discovered a vulnerability in MarkLogic products should contact MarkLogic. To protect the user community, MarkLogic requests that the finder follow the coordinated disclosure process and not post any information in public forums until after product updates are released. MarkLogic will validate the issue and verify whether any currently supported products are affected. MarkLogic will coordinate a plan of action to resolve the issue and communicate concerning the vulnerability. Response could range from workarounds to patches, depending on the severity and impact of the issue (as determined by CVSS scoring).
Protective monitoring type Supplier-defined controls
Protective monitoring approach MarkLogic has established a protective monitoring process to conform to SSAE16 requirements.
Incident management type Supplier-defined controls
Incident management approach MarkLogic has established incident management processes to conform to SSAE16 requirements. MarkLogic has a comprehensive security breach/incident response plan that defines procedures for reporting and responding to security incidents that may compromise the availability, integrity, and confidentiality of MarkLogic’s information systems, network resources or data. This plan covers phases of preparation, identification, assessment, containment, eradication, recovery and follow-up. Employees can report an incident via an incident response reporting form, email or verbally to their manager or the CISO.

Secure development

Secure development
Approach to secure software development best practice Supplier-defined process

Separation between users

Separation between users
Virtualisation technology used to keep applications and users sharing the same infrastructure apart Yes
Who implements virtualisation Supplier
Virtualisation technologies used Other
Other virtualisation technology used AWS, Azure and GCP supplied hypervisor.
How shared infrastructure is kept separate Fully managed by Cloud Vendor either AWS, Azure or GCP.

Energy efficiency

Energy efficiency
Energy-efficient datacentres Yes
Description of energy efficient datacentres Supplier defined. AWS, Azure and GCP

Pricing

Pricing
Price £525 to £919.8 per unit per year
Discount for educational organisations No
Free trial available Yes
Description of free trial Description of free trial

We offer a free developer edition which fully provides all MarkLogic features. The developer edition for non-production use and is limited to 1TB data. Full enterprise support is not available on the developer edition. https://developer.marklogic.com/free-developer/
Link to free trial https://aws.amazon.com/marketplace/pp/B072Z536VB

Service documents

pdf document: Pricing document pdf document: Service definition document pdf document: Terms and conditions pdf document: Modern Slavery statement
Service documents
Return to top ↑