Creative Networks

Cisco Umbrella

Cisco Umbrella is a cloud-based security service safeguarding devices from online threats by blocking malicious websites and content. It provides visibility into internet activity, defends against malware and phishing, and integrates with other security tools for a comprehensive defence against cyberattacks.

Features

• Block malicious content for robust protection.
• Cloud-based security for seamless threat prevention.
• DNS/IP enforcement for enhanced security.
• Visibility into internet activity across devices.
• Protect against malware, ransomware, phishing.
• Secure web gateway for safe browsing.
• Integrate with other security solutions.
• Policy enforcement for compliance and data protection.
• Global coverage for users worldwide.

Benefits

• Enhanced security ensures peace of mind during browsing sessions.
• Streamlined threat prevention boosts workflow efficiency.
• Reduced malware risk ensures smoother operations.
• Secure browsing enhances overall productivity.
• Minimised downtime via effective content blocking.
• Simplified compliance management for regulatory adherence.
• Real-time threat response for proactive defence.
• Cost-effective protection lowers financial risks.
• Simplified IT management with cloud security solutions.
• Scalable protection fits diverse business needs.

£4.50 a user a month

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at aj@creative-n.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

221140241072453

Contact

Azeem Javed
03303337337
aj@creative-n.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Cisco Umbrella extends security for SASE, firewalls, EPP, SIEM, and network infrastructure. It combines DNS-level protection with network security, enhances threat detection and response, and provides centralised monitoring and control over network traffic, bolstering overall security posture.
• Cloud deployment model: Public cloud
• Service constraints: There are no constraints to this Service.
• System requirements:
  • Stable internet connection for accessing cloud-based security features.
  • Compatible with Windows, macOS, Linux, iOS, and Android devices.
  • DNS configuration may be required for traffic filtering.
  • User authentication ensures secure access to Umbrella features.
  • Valid subscription/license required for full access to Umbrella services.
  • Optional integration with other security solutions or network components.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Support response times - 08:30 - 18:00 Weekdays, excluding Bank Holidays. Out of hours support available where necessary. 30 minutes to 8 hour response dependent on priority call, P1 - 30 mins, P2 - 1 hour, P3 - 4 hours, and P4 - 8 hours.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 A
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: WCAG 2.1 A
• Web chat accessibility testing: We have not conducted any testing of web chat accessibility with users employing assistive technology.
• Onsite support: Onsite support
• Support levels: End-user training can be provided at an ad hoc cost. We provide a UK based Service Desk for support. Out of hours support is available. Our helpdesk is made up of 1st, 2nd and 3rd Line technical expertise. A Technical Account Manager will be assigned as standard as a part of our standard and premium IT Support, see our pricing schedule and SFIA Rate Card for details.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: We assist users in adopting our service through a variety of resources tailored to their needs. Our user documentation offers step-by-step guides, FAQs, and troubleshooting tips for independent learning. Additionally, we provide interactive online training sessions and webinars led by experienced instructors to guide users through setup and configuration processes effectively. For those preferring personalised assistance, optional onsite training sessions can be arranged to address specific organisational requirements. Our dedicated technical support team is readily available to assist users with any inquiries or challenges they may encounter, offering prompt resolution via email, phone, or online chat. With these resources and support channels in place, we aim to ensure a smooth onboarding experience and empower users to harness the full capabilities of the service for their communication needs.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Exported upon request. Contact the Support Helpdesk or Technical Account Manager.
• End-of-contract process: At the end of the contract services will continue on a rolling 30 day agreement until either party serves notice. If it is decided the client will exit, Creative Networks will assist in transitioning and migration of services ensuring continuity and a smooth handover. We will, where applicable deliver an Exit Plan which sets out the proposed methodology for achieving an orderly transition of Services on the expiry or termination of the contract. The Exit Plan will contain at minimum: Separate mechanisms for dealing with Ordinary Exit and Emergency Exit. The management structure to be employed during both transfer and cessation of the services and a detailed description of both the transfer and cessation processes, including a timetable. Document how the Services will transfer including details of the processes, documentation, data transfer, systems migration, security and the segregation of technology components. Specify the scope of the Termination Services that may be required and any charges that would be payable for the provision of such Termination Services and detail how such services would be provided. Provide a timetable and identify critical issues and set out the management structure to be put in place and employed during the Termination Assistance Period.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: While both mobile and desktop versions of Cisco Umbrella offer core functionality like policy management and reporting, differences exist. Mobile interfaces are optimized for smaller screens and touch input, with some administrative features reserved for desktop use. Performance may vary due to hardware and network disparities, while mobile versions may leverage device features like push notifications. Overall, both versions aim to provide seamless security management, but mobile versions prioritize usability on-the-go, while desktop versions may offer more advanced capabilities for administrators.
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: The Cisco Umbrella service interface is a web-based dashboard featuring navigation menus for accessing key sections such as policy management, reporting, and user administration. It offers an overview dashboard displaying essential metrics and insights, along with tools for configuring security policies, generating reports, and managing user accounts. Users can customise settings, integrate with directory services, and access help resources for documentation and support. Overall, the interface provides a user-friendly and centralised platform for effectively managing security policies, monitoring internet activity, and responding to threats within the Cisco Umbrella service.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: Creative Networks have not conducted any interface testing with users of assistive technology.
• API: Yes
• What users can and can't do using the API: Using Cisco Umbrella's API, users can streamline the setup and management of the service by programmatically configuring DNS settings, policies, and integrations. This allows for automation of deployment processes, including provisioning and initial configuration. Users have the flexibility to make changes dynamically, adjusting security policies, content filtering rules, and access controls as needed. Additionally, they can retrieve real-time data and analytics for monitoring and analysis purposes, enabling informed decision-making. However, there are limitations to what users can achieve through the API. Some administrative tasks may not be available or may have limited functionality compared to the web interface. Advanced configuration options may require a deep understanding of the API and Cisco Umbrella's functionality. Users must ensure proper authentication and authorisation mechanisms are in place to prevent unauthorised access and changes to the service configuration. Continuous monitoring and error handling are essential to ensure the reliability and security of API interactions.
• API documentation: Yes
• API documentation formats: PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Users of Cisco Umbrella can customise the service in several ways to align with their unique security needs and organisational requirements. They can configure security policies to define rules for content filtering, threat protection, access control, and internet usage. Integration with other security solutions, networking devices, and third-party applications can be customised to ensure seamless interoperability and data sharing. Custom reports and dashboards allow users to track key metrics, monitor internet activity, and gain insights into security events by selecting specific data points, applying filters, and scheduling report delivery. User management customisation enables administrators to define granular access levels, roles, permissions, and authentication settings based on job roles and responsibilities. Additionally, developers and IT teams can leverage the Cisco Umbrella API to build custom applications, automate tasks, and integrate the service with other systems, enhancing customisation and extensibility. These customisation options are typically available to users with administrative privileges, such as IT administrators or security personnel, who can access and configure settings through the Cisco Umbrella web-based dashboard or API.

Scaling

• Independence of resources: To maintain service quality amidst varying user demands, Cisco Umbrella utilises a robust infrastructure designed for scalability. Load balancing evenly distributes incoming traffic across servers and data centres, preventing performance degradation during peak periods. Resource isolation ensures that each user's data and processing remain separate, safeguarding against interference from others' activities. Continuous monitoring allows Cisco to proactively identify and address any performance issues, while optimisation efforts ensure efficient resource utilisation. Additionally, service level agreements (SLAs) may be in place to outline performance guarantees, including uptime, availability, and response times.

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Cisco

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: Less than once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Physical access control, complying with another standard
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Users can export data from Cisco Umbrella through the reporting interface, scheduling automated report delivery via email in various formats like CSV or PDF. For more advanced needs, they can use the Cisco Umbrella API for programmatic access and develop custom scripts or integrate with third-party tools for data analysis. These options provide flexibility to export data manually or automatically, catering to diverse data export requirements and enabling seamless integration with existing workflows and systems.
• Data export formats:
  • CSV
  • ODF
• Data import formats:
  • CSV
  • ODF

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Cisco Umbrella typically offers a high level of availability backed by service level agreements (SLAs) to ensure reliability and uptime for users. The specific level of availability guaranteed by Cisco Umbrella may vary depending on the service plan and agreement with the customer. Contact the support team at hello@creative-n.com for more information.
• Approach to resilience: Cisco Umbrella prioritises resilience through various design features. Operating across multiple geographically dispersed data centres ensures redundancy, minimising the impact of localised failures and maintaining continuous service availability. Load balancing mechanisms evenly distribute incoming traffic across servers and data centres, preventing any single point of failure. Failover mechanisms automatically reroute traffic in case of disruptions, ensuring uninterrupted service delivery. Continuous monitoring systems constantly assess the health and performance of the infrastructure, enabling real-time alerts and proactive measures to address issues promptly. Additionally, Cisco has comprehensive disaster recovery plans in place, including backup systems and recovery procedures, to swiftly restore service in the event of major disruptions. Security measures are integrated into the infrastructure design to protect against cyber threats that could compromise service availability. These measures include DDoS protection, network segmentation, and encryption to safeguard against malicious activities. By incorporating these resilience features, Cisco Umbrella aims to provide users with a highly available and reliable service that remains operational even during adverse conditions or unexpected events, ensuring uninterrupted protection against cybersecurity threats.
• Outage reporting: Email alerts

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: Supplier defined controls.
• Access restriction testing frequency: Less than once a year
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: Less than 1 month
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: Less than 1 month
• How long system logs are stored for: Less than 1 month

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: UKAS
• ISO/IEC 27001 accreditation date: 24/10/2022
• What the ISO/IEC 27001 doesn’t cover: Areas not covered by ISO/IEC 27001 certification include specific business processes unrelated to information security, certain third-party services or suppliers, or compliance with other industry-specific regulations.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Organisations adhering to ISO 27001 establish robust information security practices. They develop policies aligned with ISO 27001 requirements, covering areas like access control, data protection, and incident response. Through risk assessments, they identify and prioritise security risks, implementing controls to mitigate them. Employees receive training on security policies and procedures to enhance awareness and compliance. Monitoring and review processes ensure the effectiveness of security controls, with regular audits and assessments conducted. A designated individual or team oversees the implementation and maintenance of the Information Security Management System (ISMS), reporting to senior management or the board. To ensure policy adherence, organisations employ various mechanisms such as audits, reviews, and ongoing monitoring. Non-compliance issues prompt corrective actions and improvements to the ISMS. By following these practices, organisations demonstrate their commitment to information security and continuously strive to enhance their security posture in line with ISO 27001 standards.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Creative Network's have in place a Change Management Process that follows the ISO 20000 Standard. A change is proposed with the Change Manager and then added to the Changes-overview. The change is scheduled to be executed and a roll back plan is created (if necessary). Rollback is actioned immediately upon confirmation as per following the rollback matrix, resources are freed and announcements are published. Periodically, the overview of archived changes is checked.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Creative Network's have a Vulnerability Management process that implements the following: Receives information about zero day threats from the National Cyber Security Centre; subscribe to newsletters from vendors and used products, in contact with special interest groups; Technical vulnerabilities are handled either using the Incident management process or the Change management process; Patches are tested following the Installation of software on operational systems.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: All devices have a monitoring agent on them which can identify potential issues and report back to our service desk. If an issue is identified we have an internal 4 hour SLA to ensure remedial actions are carried asap, the seriousness of an incident will be assessed on discovery so that any priority issues can be responded to quickly.
• Incident management type: Supplier-defined controls
• Incident management approach: Fully developed Business Continuity and Disaster Recovery management process developed in line with ISO 22301. Creative Network's have a pre-defined Incident Management Process in place where by an incident is reported with the Incident Manager and then added to the Incidents-overview. After which, relevant log files (from all systems affected) and evidence is gathered. The incident is corrected by implementing a patch, temporary fix or workaround. It is determine whether future occurrences of the incident can be prevented, e.g. by modifying/strengthening one or more controls. Periodically, the overview of archived incidents is checked for apparent trends and effectivity of corrections.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  By providing cloud-based security solutions, Cisco Umbrella helps organisations reduce their carbon footprint. Unlike traditional on-premises security systems, which require physical hardware and maintenance, cloud-based solutions consume fewer energy and resources. Additionally, by preventing cyberattacks and data breaches, Cisco Umbrella helps mitigate the environmental impact associated with remediating such incidents, which often involves substantial energy consumption.

  Covid-19 recovery

  During the Covid-19 pandemic, many businesses shifted to remote work, increasing reliance on cloud services for security and connectivity. Cisco Umbrella facilitates this transition by offering robust cloud-based security that ensures the safety of remote workers and sensitive data. This enables businesses to maintain operations securely despite disruptions caused by the pandemic.

  Equal opportunity

  Cisco Umbrella promotes equal opportunity by providing comprehensive security solutions accessible to businesses of all sizes and sectors. Its scalability allows organisations with varying budgets and resources to access cutting-edge cybersecurity measures, thus levelling the playing field and enabling smaller enterprises to compete on a more equal footing with larger corporations.

  Wellbeing

  In today's digital age, cybersecurity is paramount for safeguarding individuals' and organisations' wellbeing. By protecting users from cyber threats such as malware, phishing attacks, and ransomware, Cisco Umbrella contributes to the overall wellbeing of its users. It helps reduce stress and anxiety associated with potential data breaches, financial losses, and identity theft, thereby fostering a safer and more secure online environment.

Pricing

• Price: £4.50 a user a month
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at aj@creative-n.com. Tell them what format you need. It will help if you say what assistive technology you use.