Q Associates Limited

Q Cloud Connect Network Infrastructure

Q Associates Cloud Connect Intuitive Network Infrastructure Services for Cloud. Covering, Network Security, Network Support, Network Architecture, Network Monitoring, Aruba, Cisco, HP, Juniper, Fortinet, FortiGate, SolarWinds, F5, ASA, Pix, Check- point, Palo Alto, Zscaler, BGP/OSPF, LAN, WAN, VLAN

Features

  • Certified Information Systems Security Professional (CISSP) testing
  • Cisco accredited engineers CCNA, CCDA, CCDP
  • Design and integration of network architecture
  • Remote monitoring services
  • Firewall Installation and Configuration
  • Cloud migration (Azure, AWS , UKcloud, Iland, OVH)
  • Networking, switches, firewalls, Juniper, Cisco, LAN, WAN, CCNA, Cloud Connect
  • Fortinet, FortiGate, SolarWinds, F5, Check- point, Palo Alto, Zscaler,

Benefits

  • Deliver network performance
  • Drive improved employee productivity
  • Enable an enterprise mobility strategy and cloud strategy
  • Improve end-to-end performance of applications and services
  • Intuitive Cloud Connect Network Infrastructure Services for Cloud
  • Qualified and trained professionals
  • Specialists in public sector delivery
  • SC / DV security cleared professionals

Pricing

£2,500 a unit a month

  • Education pricing available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@qassociates.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 12

Service ID

9 5 7 6 3 1 6 5 6 4 4 5 0 9 4

Contact

Q Associates Limited Adam Freeman
Telephone: 01635 248181
Email: tenders@qassociates.co.uk

Service scope

Service constraints
No service constraints
System requirements
No specific system requirements

User support

Email or online ticketing support
Email or online ticketing
Support response times
Typical service responses are outlined below.

P1 – System Down • Problem or product defect causes complete loss of service • Live Call Transfer or if unable to do this within 10 mins
P2 – Serious/Degraded • Severe loss of service
• No acceptable workaround, but operations continue • Within 1hr
P3 – Minor/Needs attention • Minor loss of service
• Impact is an inconvenience • Within 4 hours of Business Day
P4 – Non critical • No loss of service
• Minor error that does not impede operations • Next Business Day
User can manage status and priority of support tickets
No
Phone support
Yes
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
No
Onsite support
Onsite support
Support levels
Response to requests within 3 hours, including weekends.

Standard support hours are 8.30am to 6.00pm Monday to Friday (24/7 and extended support also available on request)

We provide a dedicated account manager on all G-Cloud accounts to manage and support the recruitment process.
Support available to third parties
Yes

Onboarding and offboarding

Getting started
We provide a User Documentation pack for users of our Services.

All staff performing services have received extensive onsite training
Service documentation
Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction
A full off-boarding process is implemented.

All services are included in the price of the contract, there is no additional cost.
End-of-contract process
A full off-boarding process is implemented.

All services are included in the price of the contract, there is no additional cost.

Using the service

Web browser interface
No
API
No
Command line interface
No

Scaling

Scaling available
Yes
Scaling type
Automatic
Independence of resources
We have dedicated Account Teams, headed up by Senior Managers to ensure that the volume of requests from users is managed efficiently and the service provided is at the exceptional level that we have become known for in the industry.

The Account Leads have regular contact and communication with both Users and internal managers so demand can be communicated and managed efficiently.
Usage notifications
Yes
Usage reporting
Email

Analytics

Infrastructure or application metrics
Yes
Metrics types
  • CPU
  • Disk
  • HTTP request and response status
  • Memory
  • Network
  • Number of active instances
Reporting types
Reports on request

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Conforms to BS7858:2012
Government security clearance
Up to Developed Vetting (DV)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations
No
Datacentre security standards
Managed by a third party
Penetration testing frequency
At least every 6 months
Penetration testing approach
Another external penetration testing organisation
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
Data sanitisation process
Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
  • Hardware containing data is completely destroyed
Equipment disposal approach
A third-party destruction service

Backup and recovery

Backup and recovery
Yes
What’s backed up
  • Files
  • Database
  • Directories
Backup controls
Users may make requests regarding backups, which will be reviewed and responded to in line with our usual support response processes.
Datacentre setup
Single datacentre with multiple copies
Scheduling backups
Users contact the support team to schedule backups
Backup recovery
Users contact the support team

Data-in-transit protection

Data protection between buyer and supplier networks
IPsec or TLS VPN gateway
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

Guaranteed availability
We agree to work with any level of SLA that the user may require, and can arrange these on request.

If services are not performed to the satisfaction of the User, a full refund may be agreed on a case by case basis.
Approach to resilience
Available on request
Outage reporting
Email alerts

Identity and authentication

User authentication
Username or password
Access restrictions in management interfaces and support channels
IP restrictions, two factor authentication of approved users and protective monitoring/logging.
Access restriction testing frequency
At least every 6 months
Management access authentication
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
Devices users manage the service through
Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

Access to user activity audit information
Users contact the support team to get audit information
How long user audit data is stored for
At least 12 months
Access to supplier activity audit information
Users contact the support team to get audit information
How long supplier audit data is stored for
At least 12 months
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
NQA for Q Associates
ISO/IEC 27001 accreditation date
April 2016 for Q Associates
What the ISO/IEC 27001 doesn’t cover
Nothing
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Other security certifications
No

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
ISO/IEC 27001
Information security policies and processes
IS027001,
Cyber Essentials,
Work to GDPR standards

Operational security

Configuration and change management standard
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach
Work to recognised standards. Details available on request.
Vulnerability management type
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Vulnerability management approach
Work to recognised standards.

Sensitive information, details available on request.
Protective monitoring type
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach
Work to recognised standards.

Sensitive information, details available on request.
Incident management type
Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach
Work to recognised standards.

Sensitive information, details available on request.

Secure development

Approach to secure software development best practice
Conforms to a recognised standard, but self-assessed

Separation between users

Virtualisation technology used to keep applications and users sharing the same infrastructure apart
No

Energy efficiency

Energy-efficient datacentres
Yes
Description of energy efficient datacentres
The multiple cloud providers we currently use for datacentre facilities all adhere to the EU code of conduct for energy-efficient datacentres.

Pricing

Price
£2,500 a unit a month
Discount for educational organisations
Yes
Free trial available
No

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@qassociates.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.