Zenzero

Microsoft 365 Licenses and Azure Cloud Subscriptions

Zenzero is a Tier-1 Cloud Solutions Provider (CSP) that enables your organisation to leverage the benefits of license consultancy, procurement of services including Microsoft 365 licenses, M365 software licenses, and Azure subscriptions, as well as ongoing support. These services are bolstered by utilising Microsoft Premier Support.

Features

• Flexible, pay-as-you-go license models
• Support and consultancy on license purchasing
• Office 365 / Microsoft 365 / Enterprise E1, E3, E5
• Azure Services with no minimum spend
• Windows Server and Microsoft SQL
• Access to Microsoft Premier Support
• Multiple Azure Subscription capabilities
• Enterprise Mobility, MDM and cyber security solutions
• Microsoft 365 Apps for Enterprise and Business
• Intune Device and App management

Benefits

• Flexible monthly and/or annual licencing
• Access to Microsoft support
• ITIL aligned incident management
• PRINCE2 aligned project management services
• Centralised subscription and license management capabilities
• ISO 27001 working practices
• Small to large scale project delivery experience
• Protect and control workforce's access to data
• Work from anywhere on any device
• Microsoft Solutions Partner

£0.01 a licence

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at hello@zenzero.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

130720953613220

Contact

Adam Crossling
03333209900
hello@zenzero.co.uk

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Microsoft 365 licenses and Azure subscriptions can be used in conjunction with other line of business applications to offer a rounded offering. Specific parts of the Microsoft ecosystem such as Dynamics CRM, Power BI and Azure cloud can be a strong addition to any existing IT environment.
• Cloud deployment model: Public cloud
• Service constraints: No
• System requirements: Microsoft 365 Business Premium max seat count of 300

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Zenzero’s Microsoft certified, UK-based IT helpdesk provides unlimited support to customers 8:00-18:00, Monday to Friday via phone, email, and our website. In addition to this, we provide 24/7 out-of-hours emergency support as required. The majority of queries and issues we receive can be resolved remotely by our IT service desk, ensuring a fast, efficient response. For more complex issues, we can quickly arrange for onsite IT support from one of our experienced, friendly IT technicians. Business critical incidents are picked up within an hour. Medium severity within 4 hours and low priority on next business day. Support is available 24/7/365.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 A
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Zenzero’s Microsoft certified, UK-based IT helpdesk provides unlimited support to customers 8:00-18:00, Monday to Friday via phone, email, and our website. In addition to this, we provide 24/7 out-of-hours emergency support as required. The majority of queries and issues we receive can be resolved remotely by our IT service desk, ensuring a fast, efficient response. However, for more complex issues, we can quickly arrange for onsite IT support from one of our experienced, friendly IT technicians. We offer Technical Account Managers and Customer Success Managers to act as your primary point of contact for operational and procurement support. They will work with you on your cloud roadmap and help the organisation to achieve it's objectives. Support pricing is bespoke and tailored to the specific requirements of the buying organisation.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Users are provided guidance with license requirements. We will help to tailor user requirements to specific Microsoft 365 and Azure services and furthermore, provide ongoing support of those licenses for the end user.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: The data within the Microsoft 365 and/or Azure environments are property of the end client. Zenzero's access at the end of the contract is removed, therefore there is no need for data extraction.
• End-of-contract process: At the end of the contract, dependent on what the end client organisation intends to do. License procurement and provisioning services will move to the new provider (or internal IT team if where applicable). Service support will cease after the offboarding process has been completed. Offboarding processes are followed to ensure that there is no service disruption whilst maintaining a professional and seamless handover to a new provider.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: Yes
• Compatible operating systems:
  • Linux or Unix
  • MacOS
  • Windows
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Access to the service portal is via a web browser and can be accessed via mobile with no differences to the experience.
• Service interface: Yes
• User support accessibility: WCAG 2.1 A
• Description of service interface: The service interface is via the myZenzero support portal where users can access ticket information, raise new tickets, provide updates on existing cases and close tickets. Notifications from Zenzero will also be received via the myZenzero service portal. Communication with end-users is via telephone where needed, ticket updates for passive comms and via portal to ensure users always know the latest updates on their requests.
• Accessibility standards: None or don’t know
• Description of accessibility: Dependent on the device or browser used, users can increase the text size available and control focus indicators.
• Accessibility testing: To ensure accessibility standards for our service interface, several types of interface testing have been performed including Text Resizing, Focus Indicator Testing and Responsive Design testing.
• API: No
• Customisation available: Yes
• Description of customisation: Different reporting options are available to monitor and manage service and license utilisation. This customisation can be determined at the onboarding stage of any opportunity with the buying organisation.

Scaling

• Independence of resources: Service continuity: Microsoft offerings are delivered by highly resilient systems that help to maintain peak service performance. Service continuity provisions are part of the system design. These provisions enable Microsoft to recover quickly from unexpected events such as hardware or application failure, data corruption, or other incidents that affect users. These service continuity solutions also apply during catastrophic outages (for example, natural disasters or an incident within a Microsoft data center that renders the entire data center inoperable).

Analytics

• Service usage metrics: Yes
• Metrics types: License utilisation reports can be offered for Microsoft 365 licenses. For Azure, Compute (CPU and Memory) and Storage consumption reporting is also available.
• Reporting types:
  • Real-time dashboards
  • Regular reports

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Microsoft

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest: Physical access control, complying with another standard
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: In Microsoft Azure, end-users have several options for exporting data, depending on the services they are using. Overview of the data you can export: Virtual Machine (VM) Data, Logs and Metrics, Resource Templates, Data Lake Storage, Blob Storage, Azure Active Directory (AD) Information.; ; In Microsoft 365, end-users/administrators can export data from:; - Outlook - emails, calendars, and contacts in PST format.; - OneDrive - Download files or entire accounts.; - SharePoint Online: Download documents and lists; - Power BI: Export reports and data visualizations ; - Dynamics 365: Export data to Excel or other databases.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • XML
  • PDF
  • HTML
  • DOC
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Microsoft Cloud Platforms are available 24x7x365 and maintain 99% availability.
• Approach to resilience: Not applicable. The datacentre is Microsoft owned.
• Outage reporting: All outage alerts are reported via email. Furthermore, the status of the Microsoft service can be monitored at https://portal.office.com/servicestatus

Identity and authentication

• User authentication needed: Yes
• User authentication: 2-factor authentication
• Access restrictions in management interfaces and support channels: Access to management interfaces is confined solely to trusted IP addresses and clearly defined Role Based Access Controls restrict access to individuals who specifically need access to functionality or data.
• Access restriction testing frequency: At least every 6 months
• Management access authentication: 2-factor authentication

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: BSI
• ISO/IEC 27001 accreditation date: 02/07/2023
• What the ISO/IEC 27001 doesn’t cover: All sites other than London and Coventry
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: ISO27001

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Any configuration changes within the Microsoft cloud platform are documented within the Ticketing system and communicated to relevant stake holders for approval prior to any scheduled changes. All changes are documented.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Potential threats are assessed via continuous internal, external, application, network and agent-based vulnerability scanning, supplemented via regular penetration testing. Identified vulnerabilities are prioritised based on factors such as severity, potential impact and likelihood of exploitation. Remediation, including the application of security patches, is performed in a timely manner after evaluation and testing, typically shortly (< 24 hours) after vendor patch release. Threat data is procured from a number of third-party sources and integrated into our vulnerability management process.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Zenzero utilise our in-house Security Operation Centre to monitor all systems for potential compromises using a combination of automated monitoring tools and manual security assessments. When a potential compromise is detected, our incident response team, consisting of experienced security analysts, investigates further. Depending on the nature of the compromise, response actions may include isolating affected systems, disabling compromised accounts, and implementing further containment measures. Critical and high priority incidents are actioned immediately.
• Incident management type: Supplier-defined controls
• Incident management approach: Zenzero have pre-defined incident response playbook for common incidents outlining step-by-step procedures for addressing various types of events. Our processes are regularly reviewed and updated and align with industry best practices. Users can report incidents through multiple channels including email, our IT service desk or via our security operations centre. Throughout the incident lifecycle, and on resolution, regular communication and updates are provided to all stakeholders, culminating in an incident report detailing the timeline, impact, root cause analysis, actions taken, and lessons learned.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Zenzero is actively engaged in Environmental, Social, and Governance (ESG) work, demonstrating a strong commitment to sustainability and ethical practices. They are in the final stages of being a certified B Corporation, which means they meet high standards of social and environmental performance, accountability, and transparency. As part of their ESG efforts, Zenzero has joined the Tech Zero taskforce, aligning with other tech companies to tackle the climate crisis and drive progress towards net zero carbon emissions. They have pledged to become carbon neutral by 2027 and are implementing measures such as an electric vehicle salary sacrifice scheme and cycle to work schemes to reduce their travel emissions.

  Covid-19 recovery

  Covid-19 recovery During COVID 19 to support our workforce, we held (and continue to hold) regular team huddles and one-to-one calls via Microsoft Teams to check in with staff and understand the state of their wellbeing. This included ensuring that the environments they were working in were suitable and supportive. We are proud of the pastoral care we provide to our employees, particularly the younger members of staff and those who do not have a family around them that can operate as a support group. We provide all staff with private medical care via Vitality. These services provide them with full private healthcare benefits, including access to a mental health helpline and a range of complementary therapies, including holistic therapies. We regularly supports charitable organisations and educational establishments through donations of either money or end of commercial life IT equipment. For example, we have donated a number of reconditioned systems to a school in Kenya. Furthermore, we work with a number of local entrepreneurs who own small businesses, supporting them through employment opportunities, mentoring, and knowledge sharing.

  Tackling economic inequality

  Tackling economic inequality Zenzero regularly take on board apprentices and will continue to do. Some of our previous apprentices are still with the company and hold roles such as: technician, systems administrator, helpdesk team leader, and head of technical. Furthermore, to support our growth we have 27 open vacancies across all regions. Zenzero is an equal opportunity employer. Every employee benefits from a personalised training matrix that enables us to track their development and ensure they receive all the training required to perform their role to the highest possible standard. The scope of this internal training includes working with our primary software providers to help staff gain accreditation and degrees, including with Microsoft, as Zenzero is a Microsoft Solutions Partner. Furthermore, Zenzero encourages staff to pursue any additional QA training courses that will further develop their skills and knowledge.

  Equal opportunity

  Equal opportunity Zenzero is an equal opportunities employer and welcome applications from people from all backgrounds and experiences, including individuals with disabilities. All staff receive equality, diversity & inclusion (EDI) training, and any employee whose role includes conducting interviews also undergoes training on disability sensitivity. We are committed to supporting disabled employees with any reasonable adjustments they require, including: -Assistive technology, -Non-medical assistive support, such as ergonomic chairs, desks, and mice & keyboards, -Flexible working hours in order to accommodate their needs within the scope of our operations. Requests for reasonable adjustments are voluntary and confidential, and we will work closely with any employee who requests them to provide the support and accommodation necessary to enable them to fulfil their role. Zenzero has a multicultural workforce, with employees from a range of races, religions, and other protected characteristics under the Equality Act 2010. We are committed to providing all staff with the same support, guidance, and opportunities for development, and have procedures in place to prevent discrimination and promote EDI. Harassment or victimisation of any kind are not tolerated and will result in swift and severe action. We are also in the process of gaining Investors in People accreditation.

  Wellbeing

  Wellbeing To support the wellbeing of our workforce, Zenzero holds regular team huddles and one-to-one meetings to check in with staff and understand the state of their wellbeing. During the COVID-19 pandemic, these were conducted via Microsoft Teams, but we are now also introducing in-person meetings/huddles. During the pandemic, these calls including checking in with staff to ensure that the environments they were working in were suitable and supportive. We are proud of the pastoral care we provide to our employees, particularly the younger members of staff and those who do not have a family around them that can operate as a support group. In order to protect both their physical and mental wellbeing, we provide staff with private medical care via Vitality. These services provide them with full private healthcare benefits, such as access to a mental health helpline and a range of complementary therapies, including holistic therapies. We encourage staff to play a positive role in the community, and support them with knowledge & expertise, equipment, and money, as necessary, to enable them to do so. Additionally, Zenzero holds regular social events for all teams and regions globally to create a positive and fun working environment

Pricing

• Price: £0.01 a licence
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at hello@zenzero.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.