Academia Ltd

Cloud Server

A Dedicated Private Cloud from Academia offers you your own Cloud infrastructure based on dedicated hardware and resources. We design and configure a hardware configuration that best meets your actual business needs and in addition, provides that extra layer of security - vital for those with sensitive data storage requirements.

Features

  • Private Cloud
  • Public Cloud
  • Dedicated Storage
  • 99.9% Uptime Guarantee

Benefits

  • Scalable on demand server infrastructure
  • Choice of operating systems (Microsoft and Linux)
  • Backup included
  • Tier 3 Datacentre, for secure and reliable hosting
  • Firewall Protection as standard for enhanced security
  • Lower TCO, you only pay for what you use

Pricing

£54 to £198 per server per month

Service documents

G-Cloud 9

854976908267973

Academia Ltd

Academia Bids

01992 703900

bids@academia.co.uk

Service scope

Service scope
Service constraints No constraints - your cloud instances can be used for any purpose.
System requirements No system requirements, bring or buy licensing.

User support

User support
Email or online ticketing support Email or online ticketing
Support response times 4 Hour response time from 9am to 6pm, Monday to Friday. Weekend response time will vary depending on the issue raised.
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support Web chat
Web chat support availability 9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard None or don’t know
How the web chat support is accessible All content provided in web chat is text only, and therefore should be visible to all screen readers or assistive software.
Web chat accessibility testing No testing supplied at present, but we have used the product with a number of customers without issue and continue to test it in a variety of environments.
Onsite support Yes, at extra cost
Support levels Onsite engineering is provided at two support levels: Senior and Junior Engineer. These roles provide direct equipment and troubleshooting support: Senior Engineers are priced at £850 a day, and Junior Engineers at £550 per day.
Technical Account Management and Service Architecture are provided at extra cost for all services we offer.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Assistance with the selection of products is available through a phone call - our technical sales team will be delighted to help you select the right Cloud Server to suit you, and provide guidance on the suitability of the platform for your specific requirements.
Service documentation No
End-of-contract data extraction We guarantee availability of data through a number of methods dependent on the server configuration you have requested. For virtual server instances, we can provide a full snapshot of the VM you have used, or securely wipe it if you request to do so.
End-of-contract process The contract price includes availability of the Cloud Server instance for the duration agreed - at the end of your contract we'll contact you to discuss ongoing usage of the instance or if you require the instance to be terminated. 14 days beyond the contract end, your instance will be securely wiped along with any data stored on it.

Using the service

Using the service
Web browser interface No
API No
Command line interface Yes
Command line interface compatibility
  • Linux or Unix
  • Windows
  • MacOS
Using the command line interface Command Line interfaces are limited to direct access to OS level features when VMs are created, with specific features based on the Operating System used on the Server Platform.

Scaling

Scaling
Scaling available No
Independence of resources Each Cloud Server instance is monitored for its CPU, Disk space and network activity to ensure it is not using more than it's allocated resources, and if necessary can be moved to an alternate system with more resources available. The entire hardware stack on which the instances operate is continually monitored for performance and updates to hardware and overhead are provided regularly.
Usage notifications Yes
Usage reporting
  • Email
  • Other

Analytics

Analytics
Infrastructure or application metrics Yes
Metrics types
  • CPU
  • Disk
  • Memory
  • Network
  • Number of active instances
Reporting types
  • Regular reports
  • Reports on request

Resellers

Resellers
Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance None

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations Yes
Datacentre security standards Managed by a third party
Penetration testing frequency At least once a year
Penetration testing approach Another external penetration testing organisation
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
Data sanitisation process Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach In-house destruction process

Backup and recovery

Backup and recovery
Backup and recovery Yes
What’s backed up
  • Virtual Machines
  • Databases
Backup controls We provide backups to a fixed schedule, however users have full access to their cloud instance so are able to schedule backups at any time to suit them.
Datacentre setup
  • Multiple datacentres with disaster recovery
  • Multiple datacentres
Scheduling backups Users contact the support team to schedule backups
Backup recovery Users contact the support team

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

Availability and resilience
Guaranteed availability We offer 99.9% uptime across all Cloud Servers, with credits for service unavailability applied to customer accounts for future use.
Approach to resilience This information is available on request.
Outage reporting A public dashboard is available at status.academia.co.uk, and email alerts are automatically provided to the named contact for each Cloud Server to advise when planned maintenance is to occur that may affect service availability, or when we have detected an issue that affects one or more Cloud Servers in operation.

Identity and authentication

Identity and authentication
User authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
Access restrictions in management interfaces and support channels Access to restricted in management interfaces and support channels to identified internal users of the systems team. User access is restricted to only the systems they have purchased through a combination of VLAN / VPN / AD authentication and 2FA if required to avoid unwanted cross access to systems,
Underlying network infrastructure control is only available to Systems Team members without exception.
Access restriction testing frequency At least every 6 months
Management access authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
Devices users manage the service through
  • Dedicated device on a segregated network (providers own provision)
  • Dedicated device over multiple services or networks
  • Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 SN Registrars (Holdings) Limited
ISO/IEC 27001 accreditation date 28/2/2016
What the ISO/IEC 27001 doesn’t cover All aspects of our system infrastructure and product offerings are covered by our ISO certification.
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security accreditations No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance accreditation Yes
Security governance standards ISO/IEC 27001
Information security policies and processes Compliance with ISO27001 is a written requirement of employment at our company and is regularly assessed by our in-house auditing team as well as through six monthly externally led audits.
We alos operate through the premise of least available privilege for all system users, including a named and vetted system team whose higher level access to systems is fully monitored and subject to 2FA throughout.
The systems team report to the Technical Director who is entirely responsible as a Board member for the technical infrastructure.
We also operate our entire company systems on the same infrastructure - fully separated from client instances - and as such our company DR and BCP apply to the same infrastructure.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach All system components are subject to 24/7 monitoring for performance and tracked issues, and are proactively replaced if their performance shows signs of future degradation. We also operate an N+N redundant system in most areas, with a fallback to N+1 to avoid a single failure impacting on system availability.
Changes are fully assessed for security impact in line with ISO27001 security controls and tested on internal development systems before rollout.
Vulnerability management type Supplier-defined controls
Vulnerability management approach Our technical team are alerted to potential threats directly by our hardware and software partners, and will deploy threat responses immediately based on industry information or detected issues within our infrastructure. Patches are deployed based on the level of threat and impact on our infrastructure - as we operate a fully redundant series of systems, we can inspect the performance as patches are deployed and continue rollout or roll back as needed.
Protective monitoring type Supplier-defined controls
Protective monitoring approach As with all system level impacts, we monitor the system 24/7 to ensure that all operating parameters are within expected levels, and our automated monitoring systems will raise an alert to our systems team if this is not the case.
Patches and updates to the system are communicated to all affected users directly and also published on our status page for our cloud servers.
Incident management type Supplier-defined controls
Incident management approach Incidents can be reported to our systems team through our ticketing system and will automatically be raised to priority 1 if a cloud based system is affected. Our team also apply standard processes for the resolution of system issues against a known good backup and rollback procedure.
Incident reports - both ongoing and previous - are available through our status page at status.academia.co.uk.

Secure development

Secure development
Approach to secure software development best practice Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

Separation between users
Virtualisation technology used to keep applications and users sharing the same infrastructure apart Yes
Who implements virtualisation Supplier
Virtualisation technologies used VMware
How shared infrastructure is kept separate We provide several methods for ensuring data separation in accordance with our ISO27001 certification; VLAN separation, Domain based authentication, and physical separation on different network infrastructures if so requested by the client.

Energy efficiency

Energy efficiency
Energy-efficient datacentres No

Pricing

Pricing
Price £54 to £198 per server per month
Discount for educational organisations No
Free trial available No

Documents

Documents
Pricing document View uploaded document
Skills Framework for the Information Age rate card View uploaded document
Terms and conditions document View uploaded document
Return to top ↑