COOLSPIRiT

COOLSPIRiT a Databarracks Company: Pure Storage Evergreen//One Storage as a Service (STaaS)

The Pure Storage Evergreen® subscription portfolio offers unequaled choice and flexibility in how you purchase and consume storage. All based on the proven, non-disruptive Evergreen architecture. Available as Evergreen//One, Evergreen//Flex or Pure Cloud Block Store.

Features

• Built on enterprise all-flash block/file/object storage technology
• Consumption-based data service
• Instant Hybrid Cloud portable between on-premise and public cloud
• Pure OPEX - Pay Only for What You Use
• On-demand container Storage-as-a-Service
• Open and simple automation for your cloud data
• Offsite replication, snapshots and archive
• Backup and Rapid data restoration platform
• Real time reporting and cloud management
• Implementation and advisory services for strategy and planning

Benefits

• No large upfront costs for storage, OPEX model
• Operational flexibility - Grow and shrink capacity as needed
• Instant Hybrid Cloud: portable between on-premise and public cloud
• Simplified operations and predictive support
• Lower cost for IT via consolidation, efficiency and simple management
• High performance, high resilience, low latency to support business processes
• Reduced time-to-value via solution architects and operational readiness experts
• Accelerated technology adoption with migration and consultancy services
• Workflow automation delivered by consistent APIs across on-prem and cloud

£0.10 a gigabyte a month

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at frameworks@coolspirit.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

373135170070628

Contact

Alex Raben
01246 454 222
frameworks@coolspirit.co.uk

Service scope

• Service constraints: There are no planned maintenance arrangements, we operate non-disruptive upgrades.; Please see relevant Service Definition Document.
• System requirements:
  • Operating systems and applications at supported levels
  • Suitable internet links to transfer data

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 15 minute response SLA & 4 hour onsite break-fix SLA for Sev 1 incidents.; 30 minute response SLA & next business day onsite break-fix SLA for Sev 2 incidents.; 1 business hour response SLA & 3 business days onsite break-fix SLA for Sev 3 incidents.; 2 business hour response SLA & 5 business days onsite break-fix SLA for Sev 4 incidents.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Onsite support
• Support levels: Business Critical Services included in the per GiB price, which includes a Service Account Manager (SAM) and a Designated Support Engineer (DSE).; ; 7x24 support with 15-minutes response and 4-hour onsite parts. All aspects of the hardware are supported. Any failed component will be shipped to site within the agreed support SLA's and replaced. All hardware components can be replaced online with no impact to end user performance or services; ; 15 minute response SLA & 4 hour onsite break-fix SLA for Sev 1 incidents.; 30 minute response SLA & next business day onsite break-fix SLA for Sev 2 incidents.; 1 business hour response SLA & 3 business days onsite break-fix SLA for Sev 3 incidents.; 2 business hour response SLA & 5 business days onsite break-fix SLA for Sev 4 incidents.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Simplicity is at the heart of Pure’s technology. Training and enablement is included along with user documentation. The online support guide is available on the internet:-; https://www.purestorage.com/content/dam/pdf/en/legal/pure-support-guide.pdf; Pure Storage operates a state-of-the-art customer support portal at https://support.purestorage.com.; The portal supports browsing from desktop, tablet, or smartphone with single sign-on between all sections of the site. Customers may contact Pure Storage Support at support@purestorage.com to request login; credentials.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
  • Other
• Other documentation formats: Power Point
• End-of-contract data extraction: Pure will conduct a field-wipe of the array and a Certification of Erasure. If necessary, the flash modules can be retained by the customer for secure destruction - this is subject to custom pricing.
• End-of-contract process: The arrays have to be returned at end of the term, then Pure will perform a NIST compliant secure erase and provide the certification. Additional charges apply if the client is unable to return the array or wishes to retain the flash modules for secure destruction by the customer at the time of termination (this is done on a case by case basis).; What is included:; - Onboarding; - Ongoing monitoring & reporting; - Capacity and Logistics planning; - Performance and capacity SLA mgmt; Refresh, upgrades, expansion, removal; All software, services, support and customer success; - Pure needs access to data center and right to own, substitute, expand, reduce and upgrade underlying assets as needed

Using the service

• Web browser interface: Yes
• Using the web interface: Pure1 is a cloud-based, AI-powered, data-management platform for fleets of storage arrays accessible by any device with a web browser. Pure1 automates the management and monitoring of Pure as-a-Service subscriptions (start and renewal dates are displayed) but the contract cannot be terminated via Pure1.; ; Pure1 enables full-stack visibility across systems. Users can view and manage their arrays in a dashboard. They can perform real-time performance analysis (up to a month) and capacity analysis (back up to a year).; ; Pure’s Workload Planner uses AI to better understand the environment and identify optimisation opportunities. Workload DNA modelling predicts array capacity and performance, intelligently identifies workload and hardware upgrades, and previews the IT environment based on workload changes.; ; Dark-sites (without Pure1 connectivity):; ; 1. Metering Data - We use a syslogs mechanism to report usage and SLA information that is sent to Pure in a scheduled manner by the customer, Pure resident engineer or partner storage admin. This is so that we can bill and manage the environment accordingly.; 2. Install Types - We have specific implementation services for dark-site deployments and installs provided as options on request.; 3. Non-Returnable Hardware - there is an additional charge uplift which can be provided on request.
• Web interface accessibility standard: None or don’t know
• How the web interface is accessible: Pure1 is a cloud-based, AI-powered, data-management platform for fleets of storage arrays accessible by any device with a web-browser. Pure1 automates the management and monitoring of Pure as-a-Service subscriptions (start and renewal dates are displayed) but the contract cannot be terminated via Pure1.; ; Pure1 enables full-stack visibility across systems. Users can view and manage their arrays in a dashboard. real-time performance analysis (up to a month) and capacity analysis (back up to a year) is available.; ; Pure’s Workload Planner uses AI to understand the environment and identify optimisation opportunities. Workload DNA modelling predicts array capacity and performance, intelligently identifies workload and hardware upgrades, and previews the IT environment based on workload changes.; ; For dark-sites:; 1. Metering Data - We use a syslogs mechanism to report usage and SLA information sent to Pure in a scheduled manner by a product (Pure 1 Unplugged) to schedule regular dump and transfer of usage metering data by the customer, Pure resident engineer or partner admin. This helps us bill and manage the environment accordingly.; 2. Install Types - We have specific implementation services for dark site deployments and installs provided on request; 3. Non-Returnable Hardware - additional charge uplift can be provided on request.
• Web interface accessibility testing: N/A
• API: Yes
• What users can and can't do using the API: All Pure as-a-Service offerings are REST API driven. REpresentational State Transfer (REST) uses HTTP requests to interact with resources within Pure Storage. The Pure Storage REST API provides simple and consistent interfaces for both on-premise and cloud storage services.
• API automation tools:
  • Ansible
  • Chef
  • OpenStack
  • SaltStack
  • Terraform
  • Puppet
  • Other
• Other API automation tools: Any REST API compatible automation suite or development language
• API documentation: Yes
• API documentation formats:
  • Open API (also known as Swagger)
  • HTML
  • PDF
• Command line interface: Yes
• Command line interface compatibility:
  • Linux or Unix
  • Windows
  • MacOS
• Using the command line interface: All administrative activities can be performed from the command line with appropriate permissions.

Scaling

• Scaling available: Yes
• Scaling type: Automatic
• Independence of resources: Storage-as-a-Service (STaaS) can be deployed on premise and in the public cloud for a specific client, rather than multi-tenant and the service scales to meet increased demand for storage capacity including a 20%-30% on-demand headroom. Our customer success team monitors usage and we also have a dashboard where the usage is seen by the customer. As part of the Subscription we proactively monitor and meter usage and utilization ensure it does not exceed 75% - 80%. If a customer is trending towards this level we proactively reach out to validate their usage and ship additional capacity as needed.
• Usage notifications: Yes
• Usage reporting:
  • API
  • Email

Analytics

• Infrastructure or application metrics: Yes
• Metrics types: Other
• Other metrics:
  • Performance - Latency, IOPS, Bandwidth, Load
  • Capacity
  • Data Reduction Ratio
  • Protection Status
  • System Health
  • Capacity & Workload Planning
  • VM Topology & Analytics
  • Alerts
  • Support Cases
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: Pure Storage

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a CHECK service provider
• Protecting data at rest:
  • Encryption of all physical media
  • Other
• Other data at rest protection approach: Via our Purity Operating Environment.; The solution uses an always-on FIPS 140-2 certified implementation of AES-256 algorithm to encrypt all data and metadata stored. This data encryption occurs transparently to the accessing applications and without impacting performance, while maintaining data reduction.; The arrays manage the keys used for device locking and data encryption autonomously, regularly refreshing them without administrative intervention. The internal key management uses three layers of dependent keys and supports activities: automatic key rotation, periodic key regeneration, and unreadable partitioned keys that are spread over several FlashArray flash modules.
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

• Backup and recovery: Yes
• What’s backed up:
  • Volumes, files and objects as space-saving immutable snapshots
  • NFS and S3 target for most backup clients
  • Native integration with Oracle, Microsoft and SAP database backup technologies
  • Virtual machines
  • Databases
  • We provide rapid data recovery
• Backup controls: Snapshots can be taken instantly on-demand or scheduled by the user. Individual volumes or groups of volumes can be backed-up using different snapshot schedules.
• Datacentre setup:
  • Multiple datacentres with disaster recovery
  • Multiple datacentres
  • Single datacentre with multiple copies
  • Single datacentre
• Scheduling backups: Users schedule backups through a web interface
• Backup recovery: Users can recover backups themselves, for example through a web interface

Data-in-transit protection

• Data protection between buyer and supplier networks: IPsec or TLS VPN gateway
• Data protection within supplier network: IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: Availability SLA = 99.99%; The refund in case of a breach of SLAs are agreed on a case by case basis in the contract with the customer.
• Approach to resilience: Pure’s technology is designed for resilience, with no single points of failure and the ability to upgrade non-disruptively avoiding the need for planned downtime. Measured average uptime across the entire fleet is 99.9999%.
• Outage reporting: Dashboard Summary Reports available via Pure1 - Lists the top 10 arrays by load performance and capacity relative growth along with load and capacity projections for selected arrays over the next 30 days. Also includes a list of the most recent critical and warning alerts. Uptime reporting can be provided as part of the BCS Service Review. Email notifications available for any incident/severity case transaction

Identity and authentication

• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: Our management interfaces (web GUI, SSH, REST API) may be placed onto a network accessible only to the approved users. The web UI and REST API are configured by default to use TLS, and customers can install their own certificates to increase the security of these interfaces. FlashArray administrators do not have access to the data held on the array through the array itself.; ; For Pure1 Cloud we support SSO with Customer's Identity Provider.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Username or password
• Devices users manage the service through: Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: Between 1 month and 6 months
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: Between 1 month and 6 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • CSA CCM version 3.0
  • ISO/IEC 27001
• Information security policies and processes: Pure Storage maintains security requirements (consistent with the nature of Pure Storage’s business). The security policies are reviewed, approved and communicated on an annual basis and are available on the intranet. We are also in the process of maturing our Governance, Risk and Compliance function in which we plan to do a revamp of our policies.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: There is a documented change control process for internal changes. For Pure1, almost all changes are heavily code reviewed. We are moving many of our critical systems to continuous deployment. With rigorous automated tests and a staging environment.
• Vulnerability management type: Undisclosed
• Vulnerability management approach: Pure Storage’s Vulnerability Management program monitors for applicable vulnerabilities reported from internal and external sources using manual and automated processes. Sources of information monitored; include reputable industry information sources e.g MITRE and tool/vendor specific intelligence collated from numerous sources. Pure Storage maintains a variety of dynamic and enumeration tools used by Security, that are tuned to detect and alert for new vulnerabilities. When a new a vulnerability is reported, Pure Storage follows our Vulnerability Management Standard using CVSS scores to assess, triage, and assign remediation efforts.
• Protective monitoring type: Undisclosed
• Protective monitoring approach: APIs and alerting protocols allow for querying and auditing of processes and sub-processes. Pure1 allows for global auditing of the above as well as leveraging the Pure meta AI to predict trends.; System monitoring is continuous on the platform. Telemetry data is updated to Pure1 on a 30 second interval. This is used more for analysis and forecasting through trend analysis. Additional log information is uploaded every hour by the system and scanned for fingerprint matches of existing known issues. If one is triggered it will automatically generate a support case and support will be alerted. (See support SLAs page6)
• Incident management type: Undisclosed
• Incident management approach: Security Incidents are treated the similar fashion as Site incidents and hence piggy backs on SRE Incident management. We use AlienVault and other tools to monitor for security incidents and response is coordinated with SRE.; Pure uses a variety of tools to maintain security for its internal systems. For instance, web filtering, anti-virus and anti-malware screening along with technology that automatically detects unknown threats before the organization is compromised, and each SaaS service used by Pure Storage uses an SSL encryption authentication protocol that leverages encryption. Pure Storage maintains basic password requirements and access controls, etc.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: Yes
• Who implements virtualisation: Supplier
• Virtualisation technologies used: Other
• Other virtualisation technology used: VMware; Hyper-V; Citrix XenServer; Oracle VM; Red Hat Virtualisation; KVM hypervisor
• How shared infrastructure is kept separate: Data Volume segmentation or physical segmentation by providing multiple storage arrays.

Energy efficiency

• Energy-efficient datacentres: Yes
• Description of energy efficient datacentres: TBC

Social Value

• Social Value:

  Social Value

  Fighting climate change

  Fighting climate change

  As an organisation, COOLSPIRiT is wholly committed to improving our social & sustainability record and drive real change through to delivery of our contracts. We take great pride working with our supply chain and customers to understand how our services can be provided with reduced emissions seeking a net zero impact on our environment. We employ a number of activities / initiatives to help accelerate us towards our global population becoming carbon neutral, including, Partnering with World Land Trust to plant trees in Borneo, SME Climate Commitment, Working from solar-powered offices, Availability of electric car charge points, Electric-powered company vehicles, Upgrading to LED lighting throughout our offices, Eradicating the use of single-use plastic, Achieving ISO 14001 Certification, Supporting the 721 Challenge. We understand that our business has a direct impact on the environment, so we're actively working towards best practices in the technology sector. In regard to our Social Responsibility, we also thrive on making differences wherever possible, be it big or small, to help support the overall impact that organisations can have on our local communities. Initiatives we have in place include, Apprenticeships for local people, Employment skills structure, Supporting the community, Donations of technology equipment, Local collaboration, Sustainability and environmental focus, Supporting Charity. We're excited to have now partnered with the World Land Trust (Registered Charity No. 1001291) as a corporate supporter. The World Land Trust carries out essential reforestation projects, supporting conservation and creation of wildlife-rich habitats benefitting local communities, reconnecting forest areas, and storing carbon. In addition to the measures noted above we will automatically plant a tree for every contract placed with us. More information can be found on our website https://www.coolspirit.co.uk/

Pricing

• Price: £0.10 a gigabyte a month
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at frameworks@coolspirit.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.