Planet IT

Microsoft Azure Hosting Solutions

Planet IT have Azure certified staff that work with our customers to provide a tailor-made solution that fits within the desired budget while still being able to meet the business needs.Using Microsoft Azure we provide a flexible and cost-efficient cloud strategy.

Features

• Azure Migrate for detailed assessments prior to migration
• Azure Site Recovery for seamless migrations between Datacentres and Azure
• High Availability with Availability Sets and Availability Zones
• Mobile Services with Intune
• Business Analytics
• Configurable Geo-replication to another Azure region

Benefits

• Outstanding service levels from our Microsoft accredited support staff
• Build, Deploy and Manage apps quickly
• Unlimited use of secure online Azure Storage
• Deployable anywhere with Azure Stack
• Compliancy reports from built in Advisor
• Automatic patching of hardware by Microsoft
• Huge savings by rights sizing VMs and created Reserved Instances
• Support moving from IaaS to PaaS and SaaS solutions
• New features constantly being rolled out

£0.17 an instance an hour

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at GCloud@planet-it.net. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

211562325544282

Contact

Lauren Carey
01235433900
GCloud@planet-it.net

Service scope

• Service constraints: N/A
• System requirements: N/A

User support

• Email or online ticketing support: Yes, at extra cost
• Support response times: Our SLA' based around a 4 hours response time for non critical issues and a 1 hour response time for critical issues. However instant access support is available.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Yes, at an extra cost
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: WCAG 2.1 AA or EN 301 549
• Web chat accessibility testing: Vendor has completed extensive assistive technology testing.
• Onsite support: Yes, at extra cost
• Support levels: We provide 1st to 3rd Line support for the Microsoft Azure Platform, depending on user requirements. Support starts from £350 per year and we run flexible 90 day offerings on all of our packages. All customer get a dedicated account manager and senior support engineer aligned to their account.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: We provide training for admin users on the platform as standard, we also provide access to our documentation portal and support via Microsoft.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Users can use Microsofts dedicated migration tools to move off platform or can seek access from 3rd Parties to support migration.
• End-of-contract process: At the end of a contract the resources / services will cease and will be deleted securely 30 days after the last day of paid services unless payments are resumed or services transfered.

Using the service

• Web browser interface: No
• API: No
• Command line interface: No

Scaling

• Scaling available: Yes
• Scaling type:
  • Automatic
  • Manual
• Independence of resources: Microsoft offers a scaleable platform which has N+1 capacity and user resource pools cannot effect each other.
• Usage notifications: Yes
• Usage reporting: Email

Analytics

• Infrastructure or application metrics: Yes
• Metrics types:
  • CPU
  • Disk
  • Memory
  • Network
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Microsoft

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

• Backup and recovery: Yes
• What’s backed up:
  • Azure Site Recovery Manager
  • File Back Up
  • Veeam Integration
  • VM Back Up
• Backup controls: All back ups are controlled via the web platform.
• Datacentre setup:
  • Multiple datacentres with disaster recovery
  • Multiple datacentres
  • Single datacentre with multiple copies
  • Single datacentre
• Scheduling backups: Users schedule backups through a web interface
• Backup recovery:
  • Users can recover backups themselves, for example through a web interface
  • Users contact the support team

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: The infrastructure is designed to bring applications closer to users around the world, preserving data residency, and offering comprehensive compliance and resiliency options for customers. Azure has 58 regions worldwide, and is available in 140 countries/regions.; A region is a set of datacenters that is interconnected via a massive and resilient network. The network includes content distribution, load balancing, redundancy, and encryption by default. With more global regions than any other cloud provider, Azure gives you the flexibility to deploy applications where you need them.
• Approach to resilience: Azure regions are organized into geographies. An Azure geography ensures that data residency, sovereignty, compliance, and resiliency requirements are honored within geographical boundaries.
• Outage reporting: Public Dashboard; API; Email Alerts

Identity and authentication

• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google apps)
  • Dedicated link (for example VPN)
  • Username or password
• Access restrictions in management interfaces and support channels: All user management can be carried out via the web portal or API.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
• Devices users manage the service through:
  • Dedicated device on a segregated network (providers own provision)
  • Dedicated device on a government network (for example PSN)
  • Dedicated device over multiple services or networks
  • Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)
  • Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: Between 6 months and 12 months
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: Between 6 months and 12 months
• How long system logs are stored for: Between 6 months and 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: QSL
• ISO/IEC 27001 accreditation date: 31/01/2020
• What the ISO/IEC 27001 doesn’t cover: All systems covered
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: ISO 27001

Security governance

• Named board-level person responsible for service security: No
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: All required ISO 27001 polices are followed.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Change management is handles via our change management request process which is conducted in a safe and secure way, examples of this can be demonstrated on request.
• Vulnerability management type: Undisclosed
• Vulnerability management approach: Vulnerability assessments are undertaken by Microsoft on the platform at relevant times.
• Protective monitoring type: Undisclosed
• Protective monitoring approach: We offer both a proactive monitoring solution via our support team or Microsoft offer a solution as part of the platform.
• Incident management type: Undisclosed
• Incident management approach: We run a full incident management process.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: Yes
• Who implements virtualisation: Third-party
• Third-party virtualisation provider: Microsoft
• How shared infrastructure is kept separate: Microsoft provide a platform which does not allow cross tenant population and therefore organisations do not risk data leakage via other systems running on the same hardware.

Energy efficiency

• Energy-efficient datacentres: No

Social Value

• Social Value:

  Social Value

  Equal opportunity

  Equal opportunity

  At Planet IT, we champion a culture of inclusivity and equal opportunity, ensuring that every individual, regardless of their background, identity, or circumstance, has the chance to thrive and contribute their unique talents to our diverse community.

Pricing

• Price: £0.17 an instance an hour
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: 12 months of free services plus limited credit for 30 days.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at GCloud@planet-it.net. Tell them what format you need. It will help if you say what assistive technology you use.