Centerprise International Ltd

Centerprise Web Filtering Service by TitanHQ

WebTitan is a cloud based web filtering service which allows you to monitor, control, protect and report on your business and users from online threats.
You can create a granular policy for your users to control internet access and block malware in your organisation.

Features

• Cloud Based
• Malware & phishing protection
• Policy exceptions (Cloud Keys)
• Enforce Safe Search
• URL Filtering
• Flexible policy creation
• Reporting
• Roaming Devices
• User Identification

Benefits

• Cloud based reducing network bandwidth
• Per user licensing with economies of scale
• Full access to suite of over 50 predefined reports
• Custom policy creation with whitelists/blacklists
• Perfect for BYOD
• 53 predefined content filters including gambling, pornography, social media etc
• Safe search enforced with a single click
• Block viruses, Phising & other Malware

£0.50 to £1.59 a user a month

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tendersteam@centerprise.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

121324413451410

Contact

Tenders Team
01256 378 000
tendersteam@centerprise.co.uk

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
• Service constraints: Scheduled maintenance will be carried out in agreement with the customer, of which notification will be given 30 days in advance. ; In the case of emergency maintenance, the customer will be informed as soon as the issue has been detected.
• System requirements: DNS should redirect web traffic via service

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Target response times are subject to the contracted level of Centerprise Service. Typically, these will be: Standard - Target 90 minutes initial response Comprehensive - Target 90 minutes initial response
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: No
• Support levels: We provide a first line support telephone number, email ticketing support, online ticketing support and Webchat - all of which are supported by our second and third line resolver groups. Questions are responded to on a priority basis. Our user can manage status and priority of support tickets as well as accessing our technical support team via email, online portal or webchat. All our support levels are charged at the same rates. Our architects, consultants and technical support teams are wholly dedicated to ensuring the infrastructure supporting your applications and data are implemented and maintained to ensure peak performance
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Centerprise will gather requirements for filtering and refine default policies to fit your organisations needs. Assistance with updating DNS to integrate to the WebTitan service will be provided. Admin user training can be provided alongside admin user documentation.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
  • Other
• Other documentation formats: In Product
• End-of-contract data extraction: All data can be exported by the user using the CiCloud Portal interface or cPanel
• End-of-contract process: At the end of the contract Centerprise will cease the service. ; All data stored including backups will be securely deleted using industry standard best practise methods.; On termination of the Agreement we will give you a reasonable opportunity to migrate your environment out of our Services in an orderly fashion, where possible.; Optionally, on contract initiation, Centerprise will work with the Customer to create an exit plan within 3 months of the start of service. The exit plan will define what happens at the end of the contract.; For option costs, please refer to the price card.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
  • Linux or Unix
  • MacOS
  • Windows
  • Windows Phone
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: N/a
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Web based administration console allowing policy creation and management, white- and blacklisting according to category or custom URL, reporting and viewing realtime activity data.
• Accessibility standards: None or don’t know
• Description of accessibility: Only applies to administration portal. Accessibility testing/standards compliance information from the vendor is currently pending.
• Accessibility testing: None
• API: Yes
• What users can and can't do using the API: Comprehensive API allows vast majority of system features and reporting data to be controlled and accessed via API.
• API documentation: Yes
• API documentation formats: Open API (also known as Swagger)
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Administrators can create and manage web filtering policies, reporting and dashboarding. Interfacing to LDAP/AD user directory for audit logging of user activity.

Scaling

• Independence of resources: We can offer all clients dedicated Private Cloud infrastructure that is not shared by other users

Analytics

• Service usage metrics: Yes
• Metrics types: Service usage metrics, user transaction volumes
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: TitanHQ

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: In-house
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Administrators can download logs and reports
• Data export formats:
  • CSV
  • Other
• Other data export formats: TXT
• Data import formats:
  • CSV
  • Other
• Other data import formats: TXT

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Centerprise guarantees 100% availability of virtual servers in any given calendar month.; Centerprise guarantees 100% network availability in any given calendar month.; Centerprise guarantees a network latency of 1ms or less for data packets between servers within Centerprise’s services and network. ; If we fail to meet the guarantees detailed above, you will be able to request a credit as detailed below up to a maximum of 100% of your fee for capacity used during the previous 30 calendar days. ; Details of the definitions of the above are defined in our terms and conditions for the service.
• Approach to resilience: CiCloud is built on Enterprise class infrastructure from HPE with rack-scale efficiency delivering just the right amount of performance, adaptability and availability where needed. ; With no single point of failure from compute to disk to networking node all the way though to multiple power supplies and cooling fans. Hosted in two government approved Tier 3 plus Datacentre.; Full details are available on request.
• Outage reporting: Centerprise's CiCloud's systems and services are proactively monitored for availability and system health by the event management process.; System events and alerts of threshold breaches are detected by CiCloud’s system management tools and these alert our Customer Support team of state changes, including service outages in any of CiCloud Cloud service offerings. ; Customer Support are responsible for informing service affecting outages to customers and these are tailored to match the business needs of the customer. ; The form of the communication can be either email or telephone to the customer’s service desk or preferred service contacts. ; The alert to the customer contains information on which service has failed, the likely effect it will have on customers IT service along with reference information for follow up. CiCloud Customer Support then maintain regular updates to affected customers on the expected service restore time until de-escalation.

Identity and authentication

• User authentication needed: No
• Access restrictions in management interfaces and support channels: When a ticket is raised via phone, customers will always be asked to authenticate themselves using a series of security questions unique to them. ; Usernames, passwords and 2 factor authentication is used to restrict access to customer facing portals for Centerprise systems. ; Role based access control (RBAC) is used to define user access rights within Centerprise systems.
• Access restriction testing frequency: At least every 6 months
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: You control when users can access audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Alcumus ISOQAR
• ISO/IEC 27001 accreditation date: 24/06/2008
• What the ISO/IEC 27001 doesn’t cover: The certification covers all Centerprise products and services.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: Yes
• Who accredited the PCI DSS certification: SecurityMetrics
• PCI DSS accreditation date: 10/11/2018
• What the PCI DSS doesn’t cover: The certification covers all Centerprise products and services.
• Cyber essentials: No
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: The Information Security Management System (ISMS) is intended to be an enabling mechanism for information sharing, for electronic operations, and for reducing information-related risks to acceptable levels. The scope of the ISMS covers all Centerprise information assets associated with the provision of the service. The ISMS is subject to continuous, systematic review and improvement. Centerprise has established a top-level Information Systems Management Forum (ISMF), chaired by the CEO that includes the Information Security Officer and other management staff or roles to support the ISMS framework and to periodically review the information security policy. This policy and all changes to this policy are subject to approval by the Centerprise CEO.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Centerprise have a strict Change management control policy in line with our ISO20k certification. The change process workflow can be summarised as follows: - 1 - Change creation; 2 - Two Stage Change Approval (Quality / Technical); 3 - Identification of affected customers 4 - Customer notification. 5 - Implementation
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Information regarding potential threats comes from a variety of sources primarily relating to our underlying operating system.; Critical vulnerabilities can be patched via a hot-fix process pushed to all servers automatically. Typically the time frame between identifying and remediation with 72 hours.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Centerprise have a defined protective monitoring process with includes a number of different methodologies and techniques. Due to the sensitive nature of the details of this process Centerprise do not make these details publicly available but they can be discussed on request. When a potential compromise is found it is reported to the Information Security Manager as set out in Centerprise's incident management policy. The Centerprise ISM is responsible for coordinating and managing the response within 24 hours.
• Incident management type: Supplier-defined controls
• Incident management approach: Centerprise's Incident Management process is based on ITIL principles, and provides 1st Line service desk support via phone and email. Standard resolution templates are used for common issues, and an ITSM tool provides audit trails and log of ticket volumes, categories etc. Due to the sensitive nature of the details of this process Centerprise do not make these details publicly available but they can be discussed on request.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Centerprise is committed to working towards ‘Carbon Neutral’ status, aiming to be carbon neutral by the end of 2050. Scope 1 and Scope 2 emissions have been reduced by 32.51% from our baseline in the year 2020- 21. Centerprise’s strategy expands beyond its internal business operations by ensuring the changes implemented flow into our product strategies. In this way, the organisations and communities in which Centerprise operates will also benefit. For example, today, Centerprise’s customers benefit from solutions • that reduce resource requirements and associated office and transportation costs, such as cloud-based services working from home, • Replacing petrol/diesel vehicles with electric vehicles • Using electronic communications to replace printed and posted materials and face to face meetings • utilising technologies such as Artificial Intelligence and Machine Learning to improve efficiency and lower the carbon intensity of operations • Procuring from low carbon suppliers.

  Covid-19 recovery

  Centerprise recognises Covid's impact on the UK economy and has made investments to help support job seekers and local growth stimulants. Centerprise has started a new Apprenticeship scheme to help provide young people with a career path in Sales. Each year, new apprentices will be added to a planned process of educating the individual through a combination of formal study and on-the-job training in different parts of the organisation, leading to a recognisable qualification. In South Wales, Centerprise has invested £5m in extending their premises to another 5,000 square feet to expand the recycling capability. This action has provided work to more people in a high unemployment area by utilising local contractors for the building work and providing new employment opportunities as the site starts operation.

  Tackling economic inequality

  Centerprise is helping to level the playing field regarding economic inequality by ensuring that all employment is based on pure ability to perform, regardless of any other factor. This will include the provision of any aid needed to ensure that those with disabilities or other factors can contribute equally. Centerprise states that all employees are paid over the basic living wage.

  Equal opportunity

  Centerprise is helping to level the playing field regarding economic inequality by ensuring that all employment is based on pure ability to perform, regardless of any other factor. This will include the provision of any aid needed to ensure that those with disabilities or other factors can contribute equally.

  Wellbeing

  Centerprise care for the welfare of all staff. The following is a sample of the services offered:- • Subsidised Gym membership • Free fruit distributed weekly • Anonymous AI-based Mental Welfare service – AMY • 2 Wellbeing days for all staff

Pricing

• Price: £0.50 to £1.59 a user a month
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tendersteam@centerprise.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.