Memset Ltd

OpenStack Community Cloud for Government (Official over Internet)

Memset’s OpenStack Cloud Framework is a ubiquitous open source cloud computing platform for public and private clouds. Memset’s (OFFICIAL over Internet) Government Community OpenStack service is simple to implement, rapidly scalable, and feature rich backed by industry-leading SLAs and UK-based, BPSS and SC cleared support teams.

Features

  • Upload or configure your own base images
  • Pre-configured virtual machines in a range of OS flavours
  • Industry-leading low prices
  • Ultimate control: Root/administrator, Web-based control panel and MemShell
  • 24x7x365 hardware & availability monitoring included
  • 99.95% uptime guarantee with multi-homed network
  • Appropriate for OFFICIAL information
  • Easy deployment via our portal or API
  • Green: one of the lowest carbon footprint computing platforms

Benefits

  • Community Cloud for exclusive use of UK Public Sector customers
  • Enterprise-grade Tier 3 UK data centres with industry-leading SLAs
  • A 24x7x365 operations team
  • Choice of operating system: Debian, Ubuntu, CentOS or Microsoft
  • Self- or Memset-managed virtual firewalls and load-balancers available
  • Patrol™ Suite intrusion detection and vulnerability scanning available
  • Choice of self-managed, infrastructure-assisted or managed-platform (24x7x365 support) SLAs
  • 24x7x365 hardware & availability monitoring included
  • Optional SSDs for high performance - ideal for high-throughput requirements
  • Snapshot functionality for disaster recovery, rapid deployment or clustering

Pricing

£0.015 per gigabyte per hour

  • Minimum contract period: Hour
  • Including VAT
  • Education pricing available
  • Termination costs apply

Service documents

G-Cloud 8

881901771227308

Memset Ltd

Katie Olver

00 44 1483 608010

katie@memset.com

Support

Support
Name Content
Support service type
  • Service desk
  • Phone
Support accessible to any third-party suppliers Yes
Support availability We monitor connectivity, power and respond accordingly 24/7. Customers can choose from two SLAs based on the support they require.
Standard support response times 2 hours
Incident escalation process available Yes

Open standards

Open standards
Name Content
Open standards supported and documented Yes

Onboarding and offboarding

Onboarding and offboarding
Name Content
Service onboarding process included Yes
Service offboarding process included Yes

Analytics

Analytics
Name Content
Real-time management information available Yes

Cloud features

Cloud features
Name Content
Elastic cloud approach supported Yes
Guaranteed resources defined Yes
Persistent storage supported Yes

Provisioning

Provisioning
Name Content
Self-service provisioning supported Yes
Service provisioning time 30 minutes
Service deprovisioning time Instantaneous

Open source

Open source
Name Content
Open-source software used and supported Yes

API access

API access
Name Content
API access available and supported Yes
API type XML-RPC, JSON-RPC, JSON over HTTPS

Networks and connectivity

Networks and connectivity
Name Content
Networks the service is directly connected to Internet

Access

Access
Name Content
Supported web browsers
  • Internet Explorer 7
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10+
  • Firefox
  • Chrome
  • Safari
  • Opera
Offline working and syncing supported Yes
Supported devices
  • PC
  • Mac
  • Smartphone
  • Tablet

Certifications

Certifications
Name Content
Vendor certification(s)
  • Red Hat CSA
  • LPI
  • MCSA
  • MCP
  • CCNA
  • CompTIA Server+
  • CompTIA Network+

Data storage

Data storage
Name Content
Datacentres adhere to the EU code of conduct for energy-efficient datacentres Yes
User-defined data location Yes
Datacentre tier Uptime Institute Tier 2
Backup, disaster recovery and resilience plan in place Yes
Data extraction/removal plan in place Yes

Data-in-transit protection

Data-in-transit protection
Name Content
Data protection between user device and service
  • CPA Foundation VPN Gateway
  • TLS (HTTPS or VPN) version 1.2 or later
  • Legacy SSL or TLS (HTTPS or VPN)
  • No encryption
Assured by independent testing of implementation
Data protection within service
  • TLS (HTTPS or VPN) version 1.2 or later
  • Legacy SSL or TLS (HTTPS or VPN)
  • VLAN
  • Other network protection
  • No encryption
Assured by independent testing of implementation
Data protection between services
  • CPA Foundation VPN Gateway
  • TLS (HTTPS or VPN) version 1.2 or later
  • Legacy SSL or TLS (HTTPS or VPN)
  • No encryption
Assured by independent testing of implementation

Asset protection and resilience

Asset protection and resilience
Name Content
Datacentre location UK, assured by contractual commitment
Data management location UK, assured by contractual commitment
Legal jurisdiction of service provider UK, assured by contractual commitment
Datacentre protection Yes
Data-at-rest protection
  • Other encryption
  • Secure containers, racks or cages
  • Physical access control
  • No protection
Assured by independent testing of implementation
Secure data deletion Other secure erasure process, assured by independent testing of implementation
Storage media disposal CESG-assured destruction service (CAS(T)), assured by CESG-assured components
Secure equipment disposal Yes, assured by CESG-assured components
Redundant equipment accounts revoked Yes, assured by independent validation of assertion
Service availability 99.95

Separation between consumers

Separation between consumers
Name Content
Cloud deployment model Community cloud
Type of consumer Only government consumers
Services separation Yes, assured by independent testing of implementation
Services management separation Yes, assured by independent testing of implementation

Governance

Governance
Name Content
Governance framework Yes, assured by independent validation of assertion

Configuration and change management

Configuration and change management
Name Content
Configuration and change management tracking Yes, assured by independent validation of assertion
Change impact assessment Yes, assured by independent validation of assertion

Vulnerability management

Vulnerability management
Name Content
Vulnerability assessment Yes, assured by independent validation of assertion
Vulnerability monitoring Yes, assured by independent validation of assertion
Vulnerability mitigation prioritisation Yes, assured by independent validation of assertion
Vulnerability tracking Yes, assured by independent validation of assertion
Vulnerability mitigation timescales Yes, assured by independent validation of assertion

Event monitoring

Event monitoring
Name Content
Event monitoring Yes, assured by independent validation of assertion

Incident management

Incident management
Name Content
Incident management processes Yes, assured by independent validation of assertion
Consumer reporting of security incidents Yes, assured by independent validation of assertion
Security incident definition published Yes, assured by independent validation of assertion

Personnel security

Personnel security
Name Content
Personnel security checks
  • Baseline personnel security standard (BPSS)
  • Background checks in accordance with BS7858:2012
  • Employment checks
Assured by independent validation of assertion

Secure development

Secure development
Name Content
Secure development Yes, assured by independent validation of assertion
Secure design, coding, testing and deployment Yes, assured by independent validation of assertion
Software configuration management Yes, assured by independent validation of assertion

Supply-chain security

Supply-chain security
Name Content
Visibility of data shared with third-party suppliers Yes
Third-party supplier security requirements Yes, assured by independent validation of assertion
Third-party supplier risk assessment Yes, assured by independent validation of assertion
Third-party supplier compliance monitoring Yes, assured by independent validation of assertion
Hardware and software verification Yes

Authentication of consumers

Authentication of consumers
Name Content
User authentication and access management Yes, assured by independent validation of assertion
User access control through support channels Yes, assured by independent validation of assertion

Separation and access control within management interfaces

Separation and access control within management interfaces
Name Content
User access control within management interfaces Yes, assured by independent validation of assertion
Administrator permissions Yes, assured by independent validation of assertion
Management interface protection Yes, assured by independent validation of assertion

Identity and authentication

Identity and authentication
Name Content
Identity and authentication controls
  • Username and password
  • Username and strong password/passphrase enforcement
  • Other mechanism
Assured by independent testing of implementation

External interface protection

External interface protection
Name Content
Onboarding guidance provided Yes
Interconnection method provided
  • Private WAN
  • Internet

Secure service administration

Secure service administration
Name Content
Service management model Service management via bastion hosts

Audit information provision to consumers

Audit information provision to consumers
Name Content
Audit information provided Data made available

Secure use of the service by the customer

Secure use of the service by the customer
Name Content
Device access method
  • Corporate/enterprise devices
  • Partner devices
  • Unknown devices
Service configuration guidance Yes
Training Yes
Return to top ↑