Netapp Global File Cache
A file caching service that allows data to be hosted centrally but accessed globally without the latencies associated with long distance data interacrtion.
Features
- File caching
Benefits
- Secure file caching
- Accelerated data access
Pricing
£6,413 a licence a year
Service documents
Request an accessible format
Framework
G-Cloud 14
Service ID
3 1 5 0 9 5 2 2 8 2 2 2 4 0 3
Contact
Softcat Limited
Charles Harrison
Telephone: 01628 403403
Email: psitq@softcat.com
Service scope
- Software add-on or extension
- Yes
- What software services is the service an extension to
- Cloud Volumes ONTAP, Azure NetApp files, Amazon FSx for NetApp ONTAP, Cloud Volumes Service
- Cloud deployment model
-
- Private cloud
- Hybrid cloud
- Service constraints
-
Core requirements: -
https://docs.netapp.com/us-en/cloud-manager-file-cache/concept-before-you-begin-to-deploy-gfc.html
Edge Requirements: -
https://docs.netapp.com/us-en/cloud-manager-file-cache/download-gfc-resources.html - System requirements
-
- Service needs to be managed by NetApp Cloud Manager
- GFC must installed on Windows Server 2012 R2 and later
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
- Full details of NetApp support , Support Levels and On-Site offering can be found here: https://www.netapp.com/us/services/index.aspx
- User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- WCAG 2.1 AA or EN 301 549
- Phone support
- Yes
- Phone support availability
- 24 hours, 7 days a week
- Web chat support
- Web chat
- Web chat support availability
- 24 hours, 7 days a week
- Web chat support accessibility standard
- None or don’t know
- How the web chat support is accessible
- N/A
- Web chat accessibility testing
- N/A
- Onsite support
- Yes, at extra cost
- Support levels
- Full details of NetApp support , Support Levels and On-Site offering can be found here: https://www.netapp.com/us/services/index.aspx
- Support available to third parties
- No
Onboarding and offboarding
- Getting started
- Online Documentation is available - https://docs.netapp.com/us-en/cloud-manager-file-cache/
- Service documentation
- Yes
- Documentation formats
- HTML
- End-of-contract data extraction
- The data stored on this service is just a cache of the central data so it is not the source copy. It can be deleted
- End-of-contract process
- The product will stop caching the source data and user reads/writes will fail
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Internet Explorer 11
- Microsoft Edge
- Firefox
- Chrome
- Safari
- Application to install
- Yes
- Compatible operating systems
-
- Linux or Unix
- MacOS
- Windows
- Designed for use on mobile devices
- No
- Service interface
- Yes
- User support accessibility
- None or don’t know
- Description of service interface
- A WebGUI (https://cloud.netapp.com/cloud-manager) is used to access the service. In Cloud Manager there is a Global File Cache tab where the service is configured and managed. If this is being used with an on prem central storage device then there are manual steps to get this working
- Accessibility standards
- None or don’t know
- Description of accessibility
- A WebGUI (https://cloud.netapp.com/cloud-manager) is used to access the service. In Cloud Manager there is a Global File Cache tab where the service is configured and managed. If this is being used with an on prem central storage device then there are manual steps to get this working
- Accessibility testing
- N/A
- API
- No
- Customisation available
- No
Scaling
- Independence of resources
- The VM's that the edge servers run on can be scaled up or out to accomodate more caching space or users
Analytics
- Service usage metrics
- Yes
- Metrics types
- There are many metrics supplied for GFC. The user guide lists how to obtain these. https://repo.cloudsync.netapp.com/gfc/Netapp%20GFC%20User%20Guide%201.1.0.pdf
- Reporting types
- Reports on request
Resellers
- Supplier type
- Reseller providing extra support
- Organisation whose services are being resold
- Netapp
Staff security
- Staff security clearance
- Conforms to BS7858:2019
- Government security clearance
- Up to Developed Vetting (DV)
Asset protection
- Knowledge of data storage and processing locations
- No
- Datacentre security standards
- Supplier-defined controls
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- In-house
- Protecting data at rest
- Other
- Other data at rest protection approach
- Data at the core can be encrypted using Key Managers (Inbuilt or external). Data at the edge can be encrypted at rest via BitLocker
- Data sanitisation process
- Yes
- Data sanitisation type
- Deleted data can’t be directly accessed
- Equipment disposal approach
- In-house destruction process
Data importing and exporting
- Data export approach
- Data stored here is a cache of source data and, as such, does not need to be exported
- Data export formats
- Other
- Data import formats
- Other
Data-in-transit protection
- Data protection between buyer and supplier networks
- Legacy SSL and TLS (under version 1.2)
- Data protection within supplier network
- Legacy SSL and TLS (under version 1.2)
Availability and resilience
- Guaranteed availability
- As the virtul machines are all hosted on the customer premesis, data centre or a public cloud, the SLA would be with them and not us.
- Approach to resilience
- If an edge cache fails the users will just read and write directly from the source. If no core devices are available local users have read only access to locally cached data. Multiple Core and Edge devices can be deployed for resiliency
- Outage reporting
- https://status.services.cloud.netapp.com/
Identity and authentication
- User authentication needed
- Yes
- User authentication
- Username or password
- Access restrictions in management interfaces and support channels
- Authentication is federated with an external provider (Auth0 by default) using username / password. Auth0 authenticates username and password and passes JWT token into users browser cookie space. Federation to existing IAM is supported via ADFS in Microsoft AD , for more information see: https://services.cloud.netapp.com/misc/federation-support
- Access restriction testing frequency
- Less than once a year
- Management access authentication
-
- 2-factor authentication
- Dedicated link (for example VPN)
Audit information for users
- Access to user activity audit information
- You control when users can access audit information
- How long user audit data is stored for
- User-defined
- Access to supplier activity audit information
- You control when users can access audit information
- How long supplier audit data is stored for
- User-defined
- How long system logs are stored for
- User-defined
Standards and certifications
- ISO/IEC 27001 certification
- No
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- No
- Cyber essentials plus
- No
- Other security certifications
- Yes
- Any other security certifications
- https://security.netapp.com/certs/
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
-
- ISO/IEC 27001
- Other
- Other security governance standards
-
ISO/IEC 27001 and ISO/IEC 15408
For further information check the below links:
https://security.netapp.com/certs/
https://library-clnt.dmz.netapp.com/info/web/ECMP1138936.html?&access=a - Information security policies and processes
-
NetApp is committed to providing its customers with quality products that provide the security posture they require. In pursuit of a continued and supportive relationship, NetApp recognizes that the changing security and threat landscape requires PwC to seek information about NetApp’s Secure Development LifeCycle practices.
NetApp has a comprehensive secure development lifecycle program based on industry best practices which includes, security training, static analysis security testing (SAST), dynamic analysis security testing (DAST), vulnerability scanning, third-party penetration testing and other security practices. NetApp further incorporates certain security features such as encrypted data-at-rest and data-in-motion depending on the system. NetApp’s secure development lifecycle is a journey and continues to be rolled out to achieve maturity.
As part of the development, ONTAP executes various secure development lifecycle practices and determines corrective actions. SAST, DAST, Fuzzing and vulnerability scanning are performed with each release. Pentration testing is performed at least annually.
Operational security
- Configuration and change management standard
- Supplier-defined controls
- Configuration and change management approach
- The following industry standards and mandates guide the handling of product vulnerabilities at NetApp and the disclosure of vulnerabilities to our customers and the broader technology community:National Infrastructure Advisory Council (NIAC) – Disclosing and Managing Vulnerability GuidelinesISO/IEC 29147:2014(E) – Information technology — Security techniques — Vulnerability disclosureISO/IEC 30111:2013(E) – Information technology — Security techniques — Vulnerability handling processes
- Vulnerability management type
- Undisclosed
- Vulnerability management approach
- Please ask for details
- Protective monitoring type
- Supplier-defined controls
- Protective monitoring approach
-
The following industry standards and mandates guide the handling of product vulnerabilities at NetApp and the disclosure of vulnerabilities to our customers and the broader technology community:
National Infrastructure Advisory Council (NIAC) – Disclosing and Managing Vulnerability Guidelines
ISO/IEC 29147:2014(E) – Information technology — Security techniques — Vulnerability disclosure
ISO/IEC 30111:2013(E) – Information technology — Security techniques — Vulnerability handling processes - Incident management type
- Supplier-defined controls
- Incident management approach
- Incident management handling procedures have been developed and maintained to cover all potential types of security incidents, including, but not limited to: (1) intrusion, (2) denial of service, (3) malicious code, (4) malicious communications, and (5) misuse of resources. Redovery strategies that NetApp would use if a cyber attack were to occur is company confidential. Testing for cyber attack scenarios has been donesuccessfully and will continue to be done in the future.
Secure development
- Approach to secure software development best practice
- Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)
Public sector networks
- Connection to public sector networks
- No
Social Value
- Social Value
-
Social Value
- Fighting climate change
- Tackling economic inequality
- Equal opportunity
- Wellbeing
Fighting climate change
Softcat are dedicated to reducing our environmental impact and actively promoting sustainability. Our commitment to sustainability is a core aspect of our business strategy, driving us to innovate and lead in the creation of a more sustainable future for our company and the communities we serve. This commitment is embedded in our policies, operating procedures, and training programs.
We are proud to be the first FTSE 250 company to be awarded 5-star status in relation to the United Nations Sustainable Development Goals.
We aim to achieve a Carbon Net-Zero Value Circle by 2040 by prioritising renewable energy, reducing natural resource use, minimising waste, and safeguarding biodiversity in compliance with environmental legislation.
At Softcat, we have taken significant steps towards securing renewable energy across our organisation, reducing our scope 1 & 2 emissions. We had the target of using 100% Renewable Energy across all our locations by 2024. We successfully delivered against this target ~2 years early.
In May 2023 we took delivery of 15 electric vehicles, replacing all existing fossil-fuelled company cars used by employees for business means. The implementation of the EV pool fleet will see a saving of over 80 tons of CO2e per year. A huge impact on our Net Zero targets.Tackling economic inequality
As a value-add reseller, Softcat outsources the products, services, and solutions through our extensive network of partners, to best suit the needs of our broad client base. We always consider and promote SMEs and local providers where appropriate, particularly for the products and services we offer via the G Cloud framework.
We remain dedicated to improving employability and educational awareness across schools, colleges, and universities to help break down the barriers to joining technology organisations.
We work collaboratively with many schools that are close in proximity to our offices, to ensure we are actively supporting the community as well as schools from lower socio-economic backgrounds.
We visit the schools to talk about the IT sector and the roles in our organisation, as well as promoting work-experience opportunities during the summer. In particular, we actively encourage students from diverse backgrounds to engage in work experience to appreciate the roles available in our sector.
For ambitious school and college leavers, a Softcat Apprenticeship is a great first step into the world of work, with 94% of our apprentices offered a permanent position at Softcat post apprenticeships, which goes to show the amazing opportunity available with us.
We were ranked 1st in IT & Consultancy, and 10th overall in by RateMyApprenticeship.com - Best 100 Apprenticeship Employers 2023-2024 list.
Softcat now also offer 12 month paid internships to University students looking to complete a year in industry as part of their undergraduate studies.Equal opportunity
Our approach to diversity and inclusion is introduced first during our induction training, as part of our Softcat values, outlining responsibility to uphold our principles. This message is reinforced by our process and policies, networks, Allyship Training and Inclusion Awareness campaigns.
Softcat supports diversity and inclusion through various networks including:
- Supporting Women in Business (SWIB)
- The Ethnic and Cultural Network
- The Pride Network
- The Family Network
- The Empowering Disability and Neurodiversity Network (EDN)
- The Faith at Work Network
- Armed Forces & Veterans Network
These networks aim to create a supportive and inclusive work environment for all employees, regardless of gender, ethnicity, sexual orientation, disability, or family commitments.
Our allyship programme, Stronger Together, is a mixture of event and workshop-based training available to all staff. Programme topics include, bias, power, privilege, and being a greater ally.
Inclusion Awareness campaigns include race, disability, sexual orientation, gender, faith, and caring responsibilities. These sessions highlight and celebrate minority groups, through panel sessions, Q&A sessions and training, providing an opportunity to discuss and understand ways to be more inclusive.
Our efforts to improve diversity and inclusion have been incredibly successful. Since 2020, the number of female employees below management level has increased to 35%, and the number of ethnic minority employees rose to 17%.Wellbeing
At Softcat, all employees are provided with access to our multidimensional wellbeing programme which includes flexible work arrangements, free nutritious breakfast, mental health support, employee benefits scheme, health and wellbeing week activities, and online workshops.
Giving back to the community is an innate part of who we are as a company. All Softcat employees are therefore given two volunteer days per year to support a charitable or community cause.
Each of our 10 regional offices also support local charities through fundraising, donations and events. For example, our Manchester office has raised over £30,000 for the WeLoveMCR charity. This funding has supported young, disadvantaged Manchester citizens in gaining qualifications to broaden their work opportunities and supporting local groups in delivering indispensable services that enable community cohesion.
Pricing
- Price
- £6,413 a licence a year
- Discount for educational organisations
- No
- Free trial available
- No