LANET LTD

Microsoft Azure Implementation and Managed Services

Microsoft Azure Cloud Adoption, Landing Zone Deployment, Migration, Remediation and Managed Services. Planning, design and security of infrastructure cloud services. Azure IaaS and PaaS from VMs to databases management and security.

Features

• Cloud Hosting
• Cloud Platform
• Azure Infrastructure
• Azure Hosting
• Azure Landing Zone
• Azure Managed Services
• Azure Support
• Cloud Migration
• Cloud Security
• Azure Review

Benefits

• Best Practice Setup and Recommendations
• Secure Cloud
• Secure Infrastructure
• Infrastructure Automation
• Cloud Adoption Framework
• Azure Gap Analysis
• Cost Optimisation
• Managed Services
• Expert Advice
• Resilient and Scalable Cloud Platform

£700 to £1,200 a user a day

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at dina.chauhan@lanet.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

210103713520739

Contact

Dina Chauhan
07984407673
dina.chauhan@lanet.co.uk

Service scope

• Service constraints: Not Applicable
• System requirements: None

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Monday to Friday 09:00 to 17:30 questions will be respond to within 24hours. ; Monday to Friday after 17:30 question will be responded to within the following day.; Weekends questions will be answered within 48 hours.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Support is provided from Monday to Friday 9am to 17:30 excluding Bank Holidays.; Technical Manager can be assigned.; The cloud support engineer will provide the support.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Azure account, billing and subscription set up.; Best practice cloud platform implementation or migration and fully managed service.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: User will be sent any required data upon request within 72 hours.
• End-of-contract process: For Managed Services the following is included:; Costs start from £2,000 plus VAT per month. Additional costs depend on amount of resources and level support required. ; Weekly review of Azure Compliance Center and manage remediation tasks for non-compliant resources.; Weekly review and update security policies and configurations to keep pace with the evolving threat landscape.; Proactive monitoring of the environment for security threats and vulnerabilities.; Monthly review of cost management and opportunities for optimisation.; Management & monitoring of automated patching to reduce the risks of increased cyber security threats and minimise downtime.; Maintenance and updates of the cloud platform (Landing Zone) at agreed schedules.

Using the service

• Web browser interface: No
• API: No
• Command line interface: No

Scaling

• Scaling available: Yes
• Scaling type:
  • Automatic
  • Manual
• Independence of resources: Work with customer on the availability requirements and design infrastructure accordingly.
• Usage notifications: Yes
• Usage reporting: Email

Analytics

• Infrastructure or application metrics: Yes
• Metrics types:
  • CPU
  • Disk
  • HTTP request and response status
  • Memory
  • Network
  • Number of active instances
  • Other
• Other metrics: Activity Logs
• Reporting types:
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Microsoft

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
  • Hardware containing data is completely destroyed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

• Backup and recovery: Yes
• What’s backed up:
  • Files
  • Virtual Machines
  • Databases
• Backup controls: Can control schedules, retention periods,
• Datacentre setup:
  • Multiple datacentres with disaster recovery
  • Multiple datacentres
  • Single datacentre with multiple copies
  • Single datacentre
• Scheduling backups: Users schedule backups through a web interface
• Backup recovery:
  • Users can recover backups themselves, for example through a web interface
  • Users contact the support team

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: Services have at least 99% Up time SLA.; Users refunds can be negotiated in individual contracts.
• Approach to resilience: Cloud services are resilient. We work with clients help determine resilience requirements. Can achieve 99.99% uptime.
• Outage reporting: Email alerts.

Identity and authentication

• User authentication: 2-factor authentication
• Access restrictions in management interfaces and support channels: Least privilege access control and PIM is enabled
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Username or password
• Devices users manage the service through:
  • Dedicated device on a segregated network (providers own provision)
  • Dedicated device over multiple services or networks
  • Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)
  • Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Peers Quality Assurance Limited
• ISO/IEC 27001 accreditation date: 04/12/2023
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: ISO 9001

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Internal training and recording of users reading and accepting our ISO 27001 compliant security policies.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Changes are discussed with customers at review meetings and logged in our ticketing system and customer monthly reports.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: We use vulnerability protection offered in the Microsoft Azure platform and present this as an option for clients. e.g. Microsoft Defender for Cloud.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Monitoring is added at the Microsoft Azure platform level using native tools
• Incident management type: Supplier-defined controls
• Incident management approach: Based on ITIL best practices and using our own internal Azure DevOps and 7pace systems.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: Yes
• Who implements virtualisation: Third-party
• Third-party virtualisation provider: Microsoft Azure
• How shared infrastructure is kept separate: Microsoft ensure isolation by private networks and options for dedicated hardware.

Energy efficiency

• Energy-efficient datacentres: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  We donate anually to Cool Earth charity to help protect our planet.; ; We donate a percentage of our profits each year to help causes that protect our planet. ; ; We also donate a percentage to help the people on it.

  Tackling economic inequality

  LA NET are committed to training all its employee to Microsoft Azure Cloud Certifications this ensure a high level of knowledge and consistent level of service.; ; There is a training log which focuses on the development of the employees.; ; Working with ARU University to speak and guide students on careers in IT.; ; We work with a local Academy school to support students looking for work experience within the IT industry.

  Equal opportunity

  Within our workplace we embrace diversity and inclusion, with a multi-ethnic team.

  Wellbeing

  We pride ourselves on supporting our employees with their health and wellbeing. We actively promote health and wellbeing within our company through our fortnightly online meetings and quarterly face to face meetings.; We provide private medical support, including private GP care, hospital stays, eye care, dental, hearing and support for mental health.

Pricing

• Price: £700 to £1,200 a user a day
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at dina.chauhan@lanet.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.