CTO Technologies Ltd

Vulnerability Management Services

Our Vulnerability Management as a Service (VMaaS) is designed around the complex requirements of the NHS and schools. Delivered by our qualified cyber security engineers, the service comes with OTLO dashboard providing full visibility into vulnerabilities across an IT estate and support for NHS security policies like CareCERTs and DSPT.

Features

• Active monitoring of your IT estate
• Vulnerability Scanning and Assessment
• Prioritisation, Patching and Remediation
• Vulnerability Programme Design and Management
• Managed security infrastructure services, Firewall, Web, Anti-Virus
• CareCERT and DSPT assistance, administration and management
• Customised dashboard that alerts/reports on all devices including clinical
• Cyber Essentials including Plus readiness

Benefits

• Vendor agnostic, including SCCM, SolarWinds, Qualys, Lansweeper, Nessus, ManageEngine, Ivanti
• Response and agile SLAs to suit all customers’ requirements
• Fully scalable, on demand access to cyber professionals
• Expert advice from a leading IT consultancy in healthcare
• Proactive monitoring of systems and network infrastructure
• Access to skilled crisis management experts during incidents
• Experience operating across NHS, healthcare, educational and public sector organisations
• Improved ability to detect, resist and respond to cyber-attacks
• ISO27001 and Cyber Essentials Plus accredited

£350.00 a person a day

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at mark.bishop@ctotechnologies.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 12

Service ID

677463442565195

Contact

Mark Bishop
0845 644 3830
mark.bishop@ctotechnologies.co.uk

Planning

• Planning service: Yes
• How the planning service works: We work with our customers initially hosting scoping workshops to understand the full scope of the services which need to be delivered. This also allows us to fully understand the business, strategies, objectives and current position – and where the customer wants to get to. We can then align technically with the business strategies and deliver the right outcomes and value. Our consultants will ensure that the design and delivery of any of our Managed IT Security Service meets the needs of our customers.
• Planning service works with specific services: No

Training

• Training service provided: Yes
• How the training service works: We can provide all manner of cyber security training both directly and through partners. The training offered includes online, instructor lead and on the job (skill transfer). ; ; We can also work with clients’ marketing and communications team to create security awareness campaigns and help develop or update your on-boarding processes.
• Training is tied to specific services: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: CTO Tec can provide implementation planning, risk assessments and impact analysis to support set-up and migration.
• Setup or migration service is for specific cloud services: No

Quality assurance and performance testing

• Quality assurance and performance testing service: Yes
• How the quality assurance and performance testing works: CTO Technologies are ISO9001 accredited.

Security testing

• Security services: Yes
• Security services type: Cyber security consultancy

Ongoing support

• Ongoing support service: Yes
• Types of service supported: Hosting or software provided by your organisation
• How the support service works: We are accredited under ISO27001 and Cyber Essential+ and all our IT Security Services are operated in compliance with the ISO20000 framework.

Service scope

• Service constraints: Our support service has no constraints. We can provide services remotely or on site as required by the customer. We can work alongside the customer's existing IT team, or act autonomously to manage and resolve any aspects of the service that arise 24x365.

User support

• Email or online ticketing support: Yes, at extra cost
• Support response times: Response within 1 hour and resolved within 24 hours; Monday - Friday
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Support levels: All support levels required can be customised to meet the customer's requirements, typically this would either be 5x9-5, 7-8x8 or 24x365. Details of our service levels are available upon request. ; ; Each of our customers is assigned technical account manager to make sure the needs of the service are being delivered and reporting is provided on a schedule defined by the customer from our service deliver manager.

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Qualys, SolarWinds

Staff security

• Staff security clearance: Staff screening not performed
• Government security clearance: Up to Developed Vetting (DV)

Pricing

• Price: £350.00 a person a day
• Discount for educational organisations: Yes

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at mark.bishop@ctotechnologies.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.