CenturyLink Communications UK Limited

CenturyLink SD-WAN

SD-WAN enables bonding multiple WAN connections -- Internet, MPLS or any other transport type -- effectively making the best use of a aggregated bandwidth. This is done by placing edge devices at customer sites that are managed centrally.

Overlay encrypted tunnels are created on top of the links.


  • WAN design, deployment, initial configuration, site activation, 24x7 support
  • Shared infrastructure
  • Centralised administration web portal
  • Private WAN
  • Site split-tunneling to Internet
  • Performance-based/application routing
  • Analytics and reporting
  • Analytics and reporting
  • Centralised control and Management


  • Enables enterprises to reduce operating costs in the WAN
  • Faster site deployment with built-in agility and zero touch configuration
  • Centralised management to set site and network policy in minutes
  • Improves cloud performance
  • Multiple access types
  • Fully managed, co-managed with our pro-services team or self-managed
  • Significantly improves security and compliance
  • Cloud- optimised, Cloud connected
  • Direct access to public cloud/ SaaS applications
  • Transport-agnostic (MPLS, broadband, 4G/LTE, VSat)


£100 to £10000 per unit per month

Service documents

G-Cloud 10


CenturyLink Communications UK Limited

Mike Thomas

0330 060 9328


Service scope

Service scope
Service constraints The service does require that access to the required site is available. Therefore orders may be subject to a survey.
System requirements Adequete space and power and temperature control

User support

User support
Email or online ticketing support Email or online ticketing
Support response times When a ticket is opened on the CenturyLink Incident Management System diagnosis begins into the cause. Automated notification emails can also be set up and CenturyLink will provide updates at key milestones during the incident within the service SLA until the incident is resolved and closed.
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 24 hours, 7 days a week
Web chat support No
Onsite support Onsite support
Support levels CenturyLink could offer on-site training after a service deployment to floor walk or provide user workshops to ensure users were comfortable using any new technology, this would be a chargeable activity. CenturyLink engineers would also attend site to assist in any incident management activity and this would come at no extra cost.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started CenturyLink provide on-site training and user documentation
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction N/A - This service is for the connectivity
End-of-contract process At the end of the contract, the customer information is removed and the connectivity is terminated.

Using the service

Using the service
Web browser interface Yes
Using the web interface The CenturyLink Customer Portal enables on-line ticketing support including the following;
Create, view, update, escalate or cancel trouble tickets.
View ticket history for performance trending.
Create and view Reason for Outage (RFO) requests on trouble tickets.
Receive proactive notification of trouble tickets and network maintenance activities across services via email.
Create, view, update, escalate or cancel trouble tickets.
Web interface accessibility standard None or don’t know
How the web interface is accessible The CenturyLink Customer Portal is built on a robust platform accessible via the public Internet and is compatible with various software applications. The Portal employs three levels of authentication to ensure the protection and integrity of customer data. Each customer authorises a Delegated Administrator with customer-controlled, super-user account capabilities to create and modify user access and reset passwords on demand. Delegated Administrators can grant access in any combination of accounts and functionality to employees as business needs change. Logging into the Portal the first time can be accomplished using self-registration with basic account information listed on CenturyLink’s invoices.

Password Policy

Passwords are encrypted leveraging a SHA-256 hash function. Each password must be at least 8 characters and requires a specified mix of letters, numbers, and special characters.

Two-Factor Authorisation for Managed Security

CenturyLink offers a number of tools for customers to manage their Security products. Accessing the Managed Security features in the CenturyLink portal requires the user to get a secure token from Level 3 and log in with two-factor authorisation.

Access Control Policy

CenturyLink Customer Portal supports a role-based authorisation system which allows customers to administer users as well as their role definitions
Web interface accessibility testing None
Command line interface No


Scaling available Yes
Scaling type Manual
Independence of resources How do you guarantee users aren’t affected by the demand other users are placing on your service?
Usage notifications Yes
Usage reporting Email


Infrastructure or application metrics Yes
Metrics types Network
Reporting types Real-time dashboards


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance Up to Security Clearance (SC)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
User control over data storage and processing locations Yes
Datacentre security standards Managed by a third party
Penetration testing frequency At least once a year
Penetration testing approach ‘IT Health Check’ performed by a CHECK service provider
Protecting data at rest Other
Other data at rest protection approach This is a connectivity service only. CenturyLink is not responsible to handing customers data
Data sanitisation process No
Equipment disposal approach A third-party destruction service

Backup and recovery

Backup and recovery
Backup and recovery No

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks Private network or public sector network
Data protection within supplier network Other
Other protection within supplier network VRF Seperation

Availability and resilience

Availability and resilience
Guaranteed availability SLAs are detailed in the attached SLA document.
Approach to resilience The CenturyLink service can be designed to have multiple, separated, routes for resilience. The Service Architect will be happy to discuss your requirements and plan in the resilience you need.
Outage reporting The CenturyLink Service is proactively monitored at CenturyLink Network Operation Centres.

Identity and authentication

Identity and authentication
User authentication Other
Other user authentication N/A This is connectivity only
Access restrictions in management interfaces and support channels N/A - This is connectivity only
Access restriction testing frequency Never
Management access authentication Other
Devices users manage the service through Dedicated device on a segregated network (providers own provision)

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards ISO/IEC 27001
Information security policies and processes CESG Assurance Scheme (Telecommunications) - CAS(T)

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach CenturyLink have a strict Change management control policy in line with our ISO20k certification.
The change process workflow can be summarised as follows:
• Change creation;
• Two Stage Change Approval (Quality / Technical);
• Identification of affected customers
• Customer notification.
• Implementation (generally between 00:00 and 06:00 Local time)
Vulnerability management type Supplier-defined controls
Vulnerability management approach CenturyLink global security team receive threat information from a number of different sources including active monitoring of CenturyLink’s products and services and infrastructure, along with regular vendor vulnerability updates and information provided by communities of interest. CenturyLink operate a regular patching policy and process along with a Vulnerability Management Forum for the review, risk management, prioritisation, remediation action plan and implementation planning associated with Vulnerabilities identified.
Protective monitoring type Supplier-defined controls
Protective monitoring approach CenturyLink operate an active protective monitoring process for it’s products, services and infrastructure which provides potential security event info to CenturyLink’s multiple SOC environment for analysis. CenturyLink’s SOC facilities are manned 24 x7x 365 providing as near as possible real-time response to security events with an escalation process to senior management as required.
Incident management type Supplier-defined controls
Incident management approach CenturyLink maintain and operate a security incident process for management of potential security incidents which manages any potential incidents to conclusion. Anyone within CenturyLink can raise a security breach via a dedicated portal which will then be analysed for required action. The process has defined paths of escalation and timeframes for escalation along with criteria for customer notification and response.

Secure development

Secure development
Approach to secure software development best practice Supplier-defined process

Separation between users

Separation between users
Virtualisation technology used to keep applications and users sharing the same infrastructure apart No

Energy efficiency

Energy efficiency
Energy-efficient datacentres Yes


Price £100 to £10000 per unit per month
Discount for educational organisations No
Free trial available No


Pricing document View uploaded document
Service definition document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑