dsp managed services

Oracle Cloud Consulting

• Public Cloud design, build and migrate for Oracle, AWS and Azure
• Hybrid Cloud deployment Oracle, AWS and Azure

Features

• Cloud compute model
• administration and reporting
• managed services

Benefits

• reduced costs
• increased scalability to add capacity as the buisiness grows
• faster time to market - less worry over the infrastructure
• flexibility and creativity - quick application deployment and changes

£5,000 to £25,000 an instance a year

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at jonathan.cowling@dsp.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 12

Service ID

804383855503297

Contact

Jonathan Cowling
07740348779
jonathan.cowling@dsp.co.uk

Service scope

• Service constraints: Processor architecture in our cloud providers is limited to intel compatible processors. Non Intel based workloads can be migrated into our cloud offereing after a conversion exercise / process.
• System requirements: An understanding of the required compute model for each database/application.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 24/7 response team. Tickets are prioritised according to severity, with response and fix times set accordingly. Issues in the most urgent category are responded to within 30 minutes.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), 7 days a week
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: Web chat is accessible via our website (www.dsp.co.uk). The chat will automatically appear at the bottom right of the page, via which users can contact our Sales team.
• Web chat accessibility testing: N/A
• Onsite support: Yes, at extra cost
• Support levels: DSP is a database managed services company specialising in Oracle, SQL Server, and Cloud technology. Providing DBA support, Oracle Cloud migrations, amongst other services, we aim to provide continuous improvement for our customers whilst delivering stable, optimised database platforms.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Cloud infrastructure requires no additional training for users. The application will work in the same way.
• Service documentation: No
• End-of-contract data extraction: Standard extraction tools and methodologies as advised by the vendor, DSP can advise also and assist in any egress activity.
• End-of-contract process: For basic IaaS nothing more than the egress process. DSP have an end of service process which is covered under a different service description.

Using the service

• Web browser interface: No
• API: No
• Command line interface: No

Scaling

• Scaling available: Yes
• Scaling type: Automatic
• Independence of resources: As per the vendor guarantees
• Usage notifications: Yes
• Usage reporting:
  • Email
  • SMS

Analytics

• Infrastructure or application metrics: Yes
• Metrics types:
  • CPU
  • Disk
  • Memory
  • Number of active instances
  • Other
• Other metrics: Database
• Reporting types:
  • Real-time dashboards
  • Regular reports

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Oracle, Microsoft

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

• Backup and recovery: Yes
• What’s backed up:
  • Level; 0, database, application, custom, VM snapshot
  • Whatever is required by the client
• Backup controls: Specification of what is backed is defined at the service definition stage and during take on.
• Datacentre setup: Multiple datacentres with disaster recovery
• Scheduling backups: Users contact the support team to schedule backups
• Backup recovery: Users contact the support team

Data-in-transit protection

• Data protection between buyer and supplier networks: Private network or public sector network
• Data protection within supplier network: Other
• Other protection within supplier network: Tbc

Availability and resilience

• Guaranteed availability: Availability matches that of the end cloud provider ie. Oracle for Oracle Cloud. DSP services layered over this have separate SLA's as described in another service section.
• Approach to resilience: Available on request.
• Outage reporting: Outages are reported by the the vendor via public dashboard and email alerts. In addition DSP's services including monitoring (if taken) will also alert via dashboards, email, phone and text messages generated from DSP's monitor and alerting solution. e.g. for Azure DSP has specific Azure UIM probes that will alert our service desk to an outage (and other defined errors).

Identity and authentication

• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Dedicated link (for example VPN)
  • Username or password
  • Other
• Other user authentication: DSP can use a variety of authentication methods depending on the requirement. DSP DBA's for example would use 2 factor authentication for specific sites.
• Access restrictions in management interfaces and support channels: We employ role-based access controls wherever supported by the service. We apply the principle of least privilege for all users. Admin rights are only granted where there is a clear and justified requirement. Administrative actions are audited and checked regularly.
• Access restriction testing frequency: At least every 6 months
• Management access authentication: Username or password
• Devices users manage the service through:
  • Dedicated device on a segregated network (providers own provision)
  • Dedicated device on a government network (for example PSN)
  • Dedicated device over multiple services or networks
  • Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)
  • Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

• Access to user activity audit information: Users receive audit information on a regular basis
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: British Assessment Bureau
• ISO/IEC 27001 accreditation date: 28/04/2020
• What the ISO/IEC 27001 doesn’t cover: All our services are covered.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: The cloud vendor will have a strict governance standard, available upon request.
• Information security policies and processes: As per the vendor policy, available upon request.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: DSP is aligned to the ITIL framework. Cloud assets are recorded in our secure CMDB. We advise on regular CAB meeting to discuss, plan and action changes in a structured manner. Changes are submitted 24 hrs prior to CAB meeting and require approval prior to the change happening.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: DSP maintain a senior level partner status with the vendors eg. Oracle from whom receive security updates notifications such as bug reports and critical patches to secure vulnerabilities. DSP's patching regimes agreed with the end clients aims to apply regular patching on a quarterly basis and critical security patches will be applied immediately following approval at a emergency CAB. DSP gets it's information from a variety of online sources and from the vendors. Details available on request.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: The cloud providers/vendors provide industry standard monitoring and protection that will alert our engineers in the event of policy violations, unusual access patterns and other security events. when a compromise is detected, DSP will convene an emergency meeting of relevant stakeholders authorised to take preventative action to resolve a security incident. Clear communication to clients at all times, clarifying impact of incidents and actions taken to resolve them. we would respond immediately.
• Incident management type: Supplier-defined controls
• Incident management approach: DSP uses the ITIL framework incident management approach with well defined procedures covering both standard working hours and 24*7. Procedures cover regular processing of incidents against a priority ranking with an associated SLA. This is managed via our service desk system which also handles incidents initiated via the automated monitor and alerting. The process also includes structured client updates and responses via email.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: Yes
• Who implements virtualisation: Third-party
• Third-party virtualisation provider: The cloud vendor (ie. Oracle)
• How shared infrastructure is kept separate: There is a highly secure subscription model where all the VM's within a subscription are locked down to a specific user base.

Energy efficiency

• Energy-efficient datacentres: No

Pricing

• Price: £5,000 to £25,000 an instance a year
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: Varies according to the situation, for example Oracle Bitesize presents Proof of Value and a small test-migration.
• Link to free trial: https://content.dsp.co.uk/oracle-cloud-bitesize

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at jonathan.cowling@dsp.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.