Email Security Services
A managed email security service to protect your email services from spam, malware and phishing attacks. The ability to perform advanced email routing, encryption and data loss prevention for your outbound email.
Features
- Defend against spam, phishing and malware
- Secure email transmission with TLS encryption
- Data Loss Protection
- Advanced Sandbox analysis of zero-day threats
- Time of Click protection for embedded URLs
Benefits
- Reduce exposure to security threats
- Fully managed to limit time required from your staff
- Rapid deployment
Pricing
£175 to £850 a unit
- Education pricing available
Service documents
Request an accessible format
Framework
G-Cloud 14
Service ID
1 0 7 4 3 8 3 5 5 4 4 3 6 6 4
Contact
Ve3 Global Ltd
Nikhil Alex
Telephone: 02045520840
Email: prime@ve3.global
Service scope
- Software add-on or extension
- No
- Cloud deployment model
- Public cloud
- Service constraints
- No specific constraints
- System requirements
- No specific system requirements
User support
- Email or online ticketing support
- Yes, at extra cost
- Support response times
- Response times depend upon severity of issue, these will be agreed as part of the SLA with each customer.
- User can manage status and priority of support tickets
- No
- Phone support
- Yes
- Phone support availability
- 24 hours, 7 days a week
- Web chat support
- No
- Onsite support
- Yes, at extra cost
- Support levels
- The services are provided with a standard support level. This can be enhanced with the provision of a dedicated engineer or account manager where required, particularly with large or complex customers this is recommended.
- Support available to third parties
- Yes
Onboarding and offboarding
- Getting started
- The service entails backend infrastructure modifications exclusively, without necessitating end user training. VE3 will offer guidance on configuring pertinent DNS and firewall rules to facilitate the service's acceptance of mail for the customer and connection to their local email systems.
- Service documentation
- Yes
- Documentation formats
-
- HTML
- End-of-contract data extraction
- No data extract required.
- End-of-contract process
- The customer will reconfigure their DNS MX records to direct email traffic to their new service.
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Microsoft Edge
- Chrome
- Safari
- Application to install
- No
- Designed for use on mobile devices
- Yes
- Differences between the mobile and desktop service
- No difference between mobile and desktop service as filtering is done before email reaches these devices.
- Service interface
- Yes
- User support accessibility
- WCAG 2.1 AA or EN 301 549
- Description of service interface
- The service interface provides the ability to configure a set of heuristic and AI rules for filtering, routing and matching email. The interface is a web-based portal which allows detailed configuration of the products.
- Accessibility standards
- WCAG 2.1 AA or EN 301 549
- Accessibility testing
- We have a number of administrators using screen readers and other assistive technology to interact with our management console; these users have been able to manage the product successfully. We also use a number of static analysis tools to ensure compatibility with the relevant standards and tools for assistive technology.
- API
- No
- Customisation available
- No
Scaling
- Independence of resources
- Our infrastructure provides services across a very large number of customers. We have built-in real-time monitoring on volume of email by customer and the ability to throttle throughput on any accounts which are sending unusually high volumes of email (i.e. compromised accounts, broken scripts/applications, etc.) to prevent impact on other customers.
Analytics
- Service usage metrics
- Yes
- Metrics types
-
The service will provide metrics on the following items:
- Availability
- Average Processing Time
- Volume of email transmitted inbound/out bout
- Volume of malicious emails
Resellers
- Supplier type
- Reseller (no extras)
- Organisation whose services are being resold
- Multiple partners. Refer to our additional resale terms and conditions
Staff security
- Staff security clearance
- Conforms to BS7858:2019
- Government security clearance
- Up to Developed Vetting (DV)
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
-
- United Kingdom
- European Economic Area (EEA)
- User control over data storage and processing locations
- Yes
- Datacentre security standards
- Complies with a recognised standard (for example CSA CCM version 3.0)
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- Another external penetration testing organisation
- Protecting data at rest
-
- Physical access control, complying with another standard
- Encryption of all physical media
- Data sanitisation process
- No
- Equipment disposal approach
- Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001
Data importing and exporting
- Data export approach
- N/A
- Data export formats
- CSV
- Data import formats
- CSV
Data-in-transit protection
- Data protection between buyer and supplier networks
-
- Private network or public sector network
- TLS (version 1.2 or above)
- Data protection within supplier network
- TLS (version 1.2 or above)
Availability and resilience
- Guaranteed availability
- 99.98% availability SLA covered by service credit regime in contract.
- Approach to resilience
- The service is load balanced across multiple sites with excess capacity in each site. An entire site can be taken out of service without impacting customer experience.
- Outage reporting
- Any service alerts are displayed on the service portal.
Identity and authentication
- User authentication needed
- No
- Access restrictions in management interfaces and support channels
- Access management for any interactive elements is done through a username and password with a 2nd factor authentication device.
- Access restriction testing frequency
- At least once a year
- Management access authentication
-
- 2-factor authentication
- Public key authentication (including by TLS client certificate)
- Identity federation with existing provider (for example Google Apps)
- Limited access network (for example PSN)
Audit information for users
- Access to user activity audit information
- Users contact the support team to get audit information
- How long user audit data is stored for
- User-defined
- Access to supplier activity audit information
- Users contact the support team to get audit information
- How long supplier audit data is stored for
- User-defined
- How long system logs are stored for
- Between 6 months and 12 months
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- EGAC
- ISO/IEC 27001 accreditation date
- 06/01/2024
- What the ISO/IEC 27001 doesn’t cover
- N/A
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- Yes
- Cyber essentials plus
- Yes
- Other security certifications
- Yes
- Any other security certifications
-
- ISO 22301
- ISO 14000-1
- ISO 22000-1
- ISO 9000-1
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
- ISO/IEC 27001
- Information security policies and processes
- VE3 maintains a robust suite of security policies and procedures overseen by our Client Data Protection program. This encompasses training for all personnel.
Operational security
- Configuration and change management standard
- Supplier-defined controls
- Configuration and change management approach
- All elements of the service are coordinated within a Configuration Management Database (CMDB), seamlessly integrated with our change management system. Every Request for Change (RFC) is associated with the particular Configuration Items undergoing updates. The change process entails thorough review and approval of RFCs by our dedicated security reviewer team.
- Vulnerability management type
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Vulnerability management approach
- The services are regularly scanned by automated tools to detect potential security vulnerabilities. All recorded vulnerabilities are tracked through our vulnerability management system to closure; the target resolution time will depend upon the severity of the vulnerability. Patches are deployed on a regular basis.
- Protective monitoring type
- Supplier-defined controls
- Protective monitoring approach
- We use a number of monitoring processes to detect attempts to compromise the services. Any detected events are responded to by our security team as quickly as possible. More specific information may be provided to potential customers under NDA if required.
- Incident management type
- Supplier-defined controls
- Incident management approach
- VE3's Security Operations Centre oversees all security incidents for our services on a global scale. This encompasses standardized processes and protocols for investigating incidents, collaborating with pertinent stakeholders, and facilitating remediation efforts.
Secure development
- Approach to secure software development best practice
- Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)
Public sector networks
- Connection to public sector networks
- Yes
- Connected networks
-
- Public Services Network (PSN)
- NHS Network (N3)
- Scottish Wide Area Network (SWAN)
Social Value
- Social Value
-
Social Value
- Fighting climate change
- Covid-19 recovery
- Tackling economic inequality
- Equal opportunity
- Wellbeing
Fighting climate change
Our G-Cloud service provision is deeply committed to fighting climate change, recognizing the urgent need for collective action to address environmental challenges. Here's how our services deliver against this social value theme:
Environmental Sustainability in Operations:
We prioritize running efficient operations to reduce emissions and minimize environmental impacts. This includes implementing energy-efficient practices, optimizing resource usage, and adopting renewable energy sources wherever possible within our data centers and infrastructure.
Promoting Sustainable Practices:
VE3 actively engages with our suppliers and clients to promote sustainable business practices. Through our services, we advocate for the adoption of environmentally friendly technologies, responsible sourcing, and waste reduction strategies, thereby reducing carbon footprints across the supply chain.
Responsible by Design Framework:
Our G-Cloud services adhere to a 'Responsible by Design' framework, ensuring that environmental considerations are integrated into the development and deployment of digital solutions. By prioritizing environmental protection and minimizing negative impacts, we strive to deliver sustainable outcomes for our clients.
Training and Education:
VE3 invests in training and education programs focused on environmental sustainability. Through initiatives like the Sustainability Quotient (SQ) training, we equip our teams with the knowledge and skills to adopt climate-smart behaviors and implement environmentally conscious practices in their work.
Community Engagement:
We actively engage with communities to support environmental objectives and promote climate action. By partnering with local organizations and stakeholders, we contribute to initiatives aimed at addressing climate change, such as tree planting programs, clean energy projects, and environmental education campaigns.Covid-19 recovery
Our G-Cloud service provision plays a crucial role in supporting the COVID-19 recovery effort by facilitating resilience, adaptation, and innovation in the face of unprecedented challenges. Here's how our services contribute to the recovery process:
Remote Work Enablement:
VE3's digital solutions empower organizations to transition to remote work seamlessly. By providing secure and reliable cloud-based infrastructure, collaboration tools, and remote access solutions, we enable businesses to maintain productivity while ensuring the safety and well-being of their employees.
Business Continuity Planning:
We assist organizations in developing and implementing robust business continuity plans to mitigate disruptions caused by the pandemic. Our services include data backup and recovery solutions, disaster recovery planning, and resilience testing to ensure operational continuity in the face of unforeseen events.
Digital Transformation Acceleration:
VE3 accelerates digital transformation initiatives to help organizations adapt to the new normal. By modernizing legacy systems, implementing cloud-based technologies, and digitizing processes, we enable businesses to optimize efficiency, improve agility, and remain competitive in a rapidly evolving landscape.
Healthcare Support Solutions:
We provide specialized healthcare support solutions to assist frontline workers and healthcare organizations in responding to the COVID-19 crisis. This includes telemedicine platforms, patient management systems, and data analytics tools to enhance patient care, streamline operations, and support decision-making processes.
Economic Stimulus through Innovation:
VE3 fosters innovation and entrepreneurship to stimulate economic recovery in the aftermath of the pandemic. Through our G-Cloud services, we support startups, small businesses, and enterprises in developing and deploying innovative solutions that address emerging challenges, create new opportunities, and drive economic growth.Tackling economic inequality
We recognize the importance of tackling economic inequality and are committed to leveraging our G-Cloud service provision to address this pressing social issue. Here's how our services contribute to tackling economic inequality:
Access to Affordable Technology:
We strive to make cutting-edge technology accessible and affordable to all, regardless of economic status. By offering scalable and cost-effective cloud-based solutions, we enable organizations, including small and medium-sized enterprises (SMEs) and underserved communities, to access the tools and resources they need to compete in the digital economy.
Skills Development and Training:
VE3 invests in skills development and training programs to empower individuals with the knowledge and expertise needed to thrive in the digital age. Through initiatives like online courses, certifications, and workshops, we equip people from diverse backgrounds with the skills required for high-demand roles in technology and innovation, thereby enhancing their employability and economic prospects.
Support for Minority-Owned Businesses:
We actively support minority-owned businesses and entrepreneurs by providing access to mentorship, networking opportunities, and resources to help them grow and succeed. Through initiatives like supplier diversity programs and partnerships with minority business organizations, we promote inclusion and diversity in the technology sector and contribute to creating more equitable economic opportunities.
Digital Inclusion Initiatives:
VE3 is committed to promoting digital inclusion and bridging the digital divide by ensuring that everyone has access to essential digital services and technologies. We collaborate with governments, nonprofits, and community organizations to implement initiatives such as digital literacy programs, affordable internet access schemes, and community technology centers, thereby empowering underserved populations and promoting economic equity.
Fair and Transparent Procurement Practices:
We adhere to fair and transparent procurement practices to create opportunities for businesses of all sizes and backgrounds to participate in government contracts and procurement processes.Equal opportunity
We are deeply committed to promoting equal opportunity and fostering diversity and inclusion in all aspects of our G-Cloud service provision. Here's how our services contribute to advancing equal opportunity:
Diverse Workforce and Inclusive Culture:
VE3 prioritizes building a diverse workforce and fostering an inclusive culture where all individuals, regardless of background or identity, have equal opportunities to succeed and thrive. We promote diversity in recruitment, hiring, and talent development processes, and actively support initiatives that celebrate and embrace differences.
Equal Access to Opportunities:
We are dedicated to ensuring equal access to opportunities for all individuals, including those from underrepresented or marginalized communities. Through our G-Cloud services, we strive to create pathways for inclusive economic participation by providing access to training, resources, and support for entrepreneurship and career advancement.
Supplier Diversity and Inclusion:
VE3 promotes supplier diversity and inclusion by actively seeking out and partnering with businesses owned by minorities, women, veterans, LGBTQ+ individuals, and other underrepresented groups. We believe in creating a diverse and inclusive supplier ecosystem that reflects the communities we serve and fosters economic empowerment for all.
Accessibility and Inclusive Design:
Our G-Cloud services are designed with accessibility and inclusivity in mind, ensuring that everyone, including individuals with disabilities, has equal access to digital platforms, applications, and services. We adhere to accessibility standards and guidelines to remove barriers and create seamless user experiences for all users.
Education and Skill Development:
VE3 invests in education and skill development initiatives to empower individuals with the knowledge and capabilities needed to succeed in the digital economy. Through partnerships with educational institutions, nonprofits, and community organizations, we provide access to training programs, scholarships, and mentorship opportunities that promote equal opportunity and career advancement.Wellbeing
We prioritize the wellbeing of individuals and communities in all aspects of our G-Cloud service provision. Here's how our services contribute to enhancing wellbeing:
User-Centric Design:
VE3 designs our G-Cloud services with a user-centric approach, prioritizing usability, accessibility, and intuitive design. By focusing on the needs and preferences of users, we create digital experiences that enhance overall wellbeing by reducing frustration, stress, and cognitive load.
Health and Safety Protocols:
We implement robust health and safety protocols to protect the wellbeing of employees, clients, and partners. This includes adherence to strict security standards, data privacy regulations, and compliance with industry best practices to ensure the safety and integrity of our digital infrastructure and services.
Promotion of Work-Life Balance:
VE3 recognizes the importance of work-life balance in maintaining overall wellbeing. Through our G-Cloud services, we enable remote work, flexible scheduling, and collaboration tools that empower individuals to achieve a healthy balance between their professional and personal lives, leading to greater job satisfaction and wellbeing.
Mental Health Support:
We prioritize mental health support for our employees and clients by offering resources, programs, and initiatives aimed at promoting mental wellbeing. This includes access to counseling services, mindfulness training, stress management workshops, and employee assistance programs designed to support individuals in times of need.
Community Engagement and Social Impact:
VE3 actively engages with communities to address social determinants of health and promote holistic wellbeing. Through partnerships, philanthropic initiatives, and volunteer efforts, we support local organizations and projects focused on improving access to healthcare, education, housing, and other essential services that contribute to overall community wellbeing.
Environmental Sustainability:
We are committed to environmental sustainability as a core component of wellbeing. By prioritizing eco-friendly practices, resource conservation, and carbon reduction efforts in our operations and services, we contribute to creating a healthier and more sustainable environment.
Pricing
- Price
- £175 to £850 a unit
- Discount for educational organisations
- Yes
- Free trial available
- No