HSO Implementation Services - Azure Cloud Infrastructure
Microsoft Azure is a Cloud Service reducing the need for on-premises infrastructure and lengthy procurement processes, providing guaranteed uptime, secure and easily scalable. Implementations involve infrastructure, data, integration, analytics, machine learning, AI (Artificial Intelligence), and applications. HSO’s Microsoft Azure consultancy services include assessment, planning, design, implementation, support and licensing advice.
Features
- Utilise Microsoft Azure Active Directory for Identity management
- Microsoft Azure infrastructure and application performance monitoring
- DevOps and Developer tools
- Architect, design, integrate, govern solutions
- Microsoft Azure synchronous and asynchronous integration
- Machine Learning and Cognitive AI (Artificial Intelligence) service
- Microsoft Azure Gateway connector to on-premises infrastructure
- Data Lake and Data Factory services for data platform
- IoT (Internet of things) service platform
- Manage authentication and authorization for applications with Azure
Benefits
- Secure organisational data and gain central control
- Reduce implementation costs compared to on-premises equivalent
- Avoid expense and complexity of buying / managing physical servers
- Reduce implementation time with no procurement process need
- Improve stability with Microsoft Guaranteed up time
- Gain disaster recovery through multiple data centres for performance
- Protect, store, back-up and recover data cost-effectively and securely
- Future-proof by managing increasing/decreasing workloads with auto scale
- Make informed decisions using machine learning and AI
- Reduce cost and time to test and build applications
Pricing
£600 to £1,600 a unit a day
Service documents
Request an accessible format
Framework
G-Cloud 13
Service ID
5 2 6 5 9 8 5 7 1 9 3 6 3 2 7
Contact
HSO Enterprise Solutions Limited
Michael Lonnon
Telephone: 07849087668
Email: UK-GCloud@hso.com
Service scope
- Service constraints
- None - The HSO Support Contract will state what solutions are being supported and the agreed Service Levels.
- System requirements
-
- Users typically need an Internet connection (some apps work offline).
- Access to an HTML5 Compliant Web Browser - supports BYOD.
User support
- Email or online ticketing support
- Yes, at extra cost
- Support response times
- HSO Support's Response times are dependent on severity of the case, starting from 15 minutes.
- User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- WCAG 2.1 AA or EN 301 549
- Phone support
- Yes
- Phone support availability
- 24 hours, 7 days a week
- Web chat support
- No
- Onsite support
- Yes, at extra cost
- Support levels
-
HSO provide various Support Level options, starting from an Essential Agreement which is provided by purchasing blocks of Support hours. Further offerings, both reactive and proactive, are available as fixed price agreements, with the ability to raise unlimited Incidents, with unlimited hours spent to resolve them.
All Customers will be assigned a dedicated Service Delivery Manager who will be responsible for all services delivered under the Support Agreement.
Within these agreements, there is a comprehensive Service Catalogue where customers can choose, and therefore only pay for, the services that they require. - Support available to third parties
- Yes
Onboarding and offboarding
- Getting started
- HSO can either tailor to client requirements or provide a standard, predefined solution, based on ITIL v3 processes and guidelines. Further information on request
- Service documentation
- Yes
- Documentation formats
-
- HTML
- ODF
- End-of-contract data extraction
- We agree exit terms and processes at the time of contracting. The exact format turnaround and processes related to data extraction is determined at this point. Further details on demand. Subject to security controls, data can be exported using various methods including inbuilt data export tools and various third-party solutions.
- End-of-contract process
- HSO will agree end of contract scenarios in advance with the Buyer and either tailored to client requirements or provide a standard, predefined solution, based on ITIL v3 processes and guidelines. Additional costs are determined on a case by case basis, dependent on size and complexities of activities.
Using the service
- Web browser interface
- Yes
- Using the web interface
-
"The API for Dynamics 365 is comprehensive, however, all API services are typically agreed separately with customers in line with their requirements.
Dynamics 365 unifies the capabilities of CRM business software and ERP systems by providing intelligent applications that seamlessly work together in the cloud. Please see this link for more information regarding Dynamics 365 REST API's::
https://docs.microsoft.com/en-us/rest/dynamics365/" - Web interface accessibility standard
- WCAG 2.1 AA or EN 301 549
- Web interface accessibility testing
-
"As a reseller of Microsoft products and not the author, HSO have not explicitly carried out any user accessibility tests. However, Microsoft take accessibility very seriously and have carried out tests. Further information from Microsoft re: accessibility of Dynamics 365 and other associated Microsoft products can be found here:
https://docs.microsoft.com/en-us/compliance/regulatory/offering-WCAG-2-1" - API
- Yes
- What users can and can't do using the API
-
"The API for Dynamics 365 is comprehensive, however, all API services are typically agreed separately with customers in line with their requirements.
Dynamics 365 unifies the capabilities of CRM business software and ERP systems by providing intelligent applications that seamlessly work together in the cloud. Please see this link for more information regarding Dynamics 365 REST API's::
https://docs.microsoft.com/en-us/rest/dynamics365/" - API automation tools
-
- Ansible
- Chef
- OpenStack
- SaltStack
- Terraform
- Puppet
- API documentation
- Yes
- API documentation formats
-
- Open API (also known as Swagger)
- HTML
- ODF
- Command line interface
- Yes
- Command line interface compatibility
-
- Linux or Unix
- Windows
- MacOS
- Using the command line interface
- The Azure Command-Line Interface (CLI) is a cross-platform command-line tool to connect to Azure and execute administrative commands on Azure resources. It allows the execution of commands through a terminal using interactive command-line prompts or a script.
Scaling
- Scaling available
- Yes
- Scaling type
- Automatic
- Independence of resources
- The service leverages the Microsoft Cloud Service. This is designed to meet the needs of operating a service at scale. Other key components include: robust security, scalability, performance, tenant isolation, serviceability, and monitoring.
- Usage notifications
- Yes
- Usage reporting
-
- API
- SMS
Analytics
- Infrastructure or application metrics
- Yes
- Metrics types
-
- CPU
- Disk
- HTTP request and response status
- Memory
- Network
- Number of active instances
- Reporting types
-
- API access
- Real-time dashboards
- Regular reports
- Reports on request
Resellers
- Supplier type
- Reseller providing extra features and support
- Organisation whose services are being resold
- Microsoft
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- Up to Security Clearance (SC)
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
- United Kingdom
- User control over data storage and processing locations
- Yes
- Datacentre security standards
- Complies with a recognised standard (for example CSA CCM version 3.0)
- Penetration testing frequency
- At least every 6 months
- Penetration testing approach
- Another external penetration testing organisation
- Protecting data at rest
-
- Physical access control, complying with CSA CCM v3.0
- Physical access control, complying with SSAE-16 / ISAE 3402
- Physical access control, complying with another standard
- Encryption of all physical media
- Scale, obfuscating techniques, or data storage sharding
- Data sanitisation process
- Yes
- Data sanitisation type
-
- Explicit overwriting of storage before reallocation
- Deleted data can’t be directly accessed
- Equipment disposal approach
- Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001
Backup and recovery
- Backup and recovery
- Yes
- What’s backed up
-
- Virtual Machines
- Databases
- Emails
- Configuration and Customisations
- Files and Blobs
- Backup controls
- Users can control, manually perform backups and define schedules through the Azure Portal.
- Datacentre setup
- Multiple datacentres with disaster recovery
- Scheduling backups
- Users schedule backups through a web interface
- Backup recovery
- Users can recover backups themselves, for example through a web interface
Data-in-transit protection
- Data protection between buyer and supplier networks
- TLS (version 1.2 or above)
- Data protection within supplier network
- TLS (version 1.2 or above)
Availability and resilience
- Guaranteed availability
- Microsoft guarantees High Availability - 99.9%.
- Approach to resilience
- The Microsoft datacentres adhere to the Microsoft Business Continuity and Disaster Recovery (BCDR) standard. Detailed information is available upon request.
- Outage reporting
- Outage reporting methods include, but are not limited to, Public Dashboards, APIs, Mobile App Push notifications and Email Alerts.
Identity and authentication
- User authentication
-
- 2-factor authentication
- Identity federation with existing provider (for example Google apps)
- Username or password
- Access restrictions in management interfaces and support channels
- Provided by role-based security model which allows you to control and define what actions a user can perform and what records a user has access to.
- Access restriction testing frequency
- At least every 6 months
- Management access authentication
-
- 2-factor authentication
- Identity federation with existing provider (for example Google Apps)
- Username or password
- Devices users manage the service through
- Directly from any device which may also be used for normal business (for example web browsing or viewing external email)
Audit information for users
- Access to user activity audit information
- Users have access to real-time audit information
- How long user audit data is stored for
- User-defined
- Access to supplier activity audit information
- Users have access to real-time audit information
- How long supplier audit data is stored for
- User-defined
- How long system logs are stored for
- User-defined
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- British Assessment Bureau - Certificate Number 212127
- ISO/IEC 27001 accreditation date
- Initial Certification: 23 April 2018, Latest Issue: 21 June 2021
- What the ISO/IEC 27001 doesn’t cover
- N/A - Covers ALL HSO UK trading companies: HSO Enterprise Solutions, HSO CRM Solutions & HSO Customer Service.
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- Yes
- Cyber essentials plus
- Yes
- Other security certifications
- No
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
-
- ISO/IEC 27001
- Other
- Other security governance standards
-
"Cyber Essentials Plus
Note: HSO have answered this section from an HSO (reseller and implementer) only perspective.
Microsoft also holds both these certifications plus many more." - Information security policies and processes
-
In formulating and implementing HSO security policies, HSO incorporates the following protocols
a. Identified reasonably foreseeable internal and external risks to the security, confidentiality, and/or integrity of any electronic, paper or other records containing personal information;
b. Assessed the likelihood and potential damage of these threats, taking into consideration the sensitivity of the personal information;
c. Evaluated the sufficiency of existing policies, procedures, customer information systems, and other safeguards in place to control risks;
d. Designed and implemented an Information Security Management System that puts safeguards in place to minimize those risks; and
e. Implemented regular monitoring of the effectiveness of those safeguards.
Operational security
- Configuration and change management standard
- Supplier-defined controls
- Configuration and change management approach
-
HSO has a dedicated Information Security Manager (ISM) and Information Security Management System.
Configuration and Change Management processes at HSO include, but are not limited to:
1. Published processes, and education / training- new starter induction and ongoing refresher training.
2. Use of system tools to capture request, obtain approval and record outcome / actions, e.g. DevOps registers.
3. Steering committee review and approval needed for changes.
4. Regular review and audit of our configuration and change management processes during our ISO 27001 (Information Security) and Cyber Essentials Plus audit and ongoing certification renewal. - Vulnerability management type
- Supplier-defined controls
- Vulnerability management approach
-
HSO has a dedicated Information Security Manager (ISM) who is responsible for out Information Security Management System and all underlying Policies within HSO UK.
Vulnerability Management processes at HSO include, but are not limited to:
1. Published processes and education / training - new starter induction and ongoing refresher training.
2. Regular internal vulnerability tests, e.g. through use of dummy phishing emails looking to capture user details.
3. Regular vulnerability tests by external Security specialists.
4. Regular review and audit of our vulnerability processes during our ISO 27001 (Information Security) and Cyber Essentials Plus audit and ongoing certification renewal. - Protective monitoring type
- Supplier-defined controls
- Protective monitoring approach
-
Protective monitoring processes at HSO include, but not limited to:
-Published processes and education/training - new starter induction and ongoing refresher training.
-Azure AD's security, logging and audit-related capabilities such-as Multi-factor authentication, regular review of access-logs / exceptions across applications.
-Use of various system alerts to notify IT of any unusual behaviour. HSO'S internal IT department has dedicated Incident Case types for employees/users to report all suspicious activity against, phishing emails, etc.
-Regular review/audit of our protective monitoring processes as part of ISO 27001 (Information Security) audit and ongoing certfication renewal.
-As per 4. fro Cycber Essentials Plus certification too. - Incident management type
- Supplier-defined controls
- Incident management approach
-
HSO has a dedicated Information-Security-Manager responsible for all underlying Policies, working closely with an HSO-Group ISM to share best-practices.
Protective monitoring processes include:
-Published processes and training/new-starter induction and ongoing training.
-Incidents investigated immediately, assessed and reported to appropriate internal, and/or external parties, including necessary notifications to customers/suppliers/partners.
-Once resolved, lessons-learnt review performed to ensure mitigating risk of similar incident happening again. Perform internal Risk Mitigation reviews to ensure constant review and improve resilience to accidental or malicious security and data incidents.
-Regular review/audit of proactive monitoring processes during ISO27001 (InformationSecurity) and Cyber Essentials Plus audit and ongoing certification renewal.
Secure development
- Approach to secure software development best practice
- Conforms to a recognised standard, but self-assessed
Separation between users
- Virtualisation technology used to keep applications and users sharing the same infrastructure apart
- Yes
- Who implements virtualisation
- Third-party
- Third-party virtualisation provider
- Microsoft are responsible for hosting in their Azure cloud.
- How shared infrastructure is kept separate
-
Microsoft runs and operates a large number of global datacentres, each located in different geographical regions. The customer can choose which is their primary datacentre, e.g. for most of HSO's UK-based customers, this is one of the UK datacentres.
Each customer has their own Microsoft Tenant and can specify and control what environments they need to have available within this, whether Production or Non-Production (e.g. for test, data migration, or other purposes).
Through the use of virtual servers, hardware and servers within the chosen datacentre are shared, including for Disaster Recovery capabilities.
Energy efficiency
- Energy-efficient datacentres
- Yes
- Description of energy efficient datacentres
- Microsoft’s datacentres in the UK and EU are designed to yield major gains in efficiency and sustainability in accordance with their commitment to the EU Code of Conduct for Energy Efficient Datacentres.
Social Value
- Fighting climate change
-
Fighting climate change
HSO take responsibility for their social, economic, and environmental impact and in 2021 were awarded the Carbon Footprint Standard; an internationally recognised standard for demonstrating low carbon credentials as an organisation. We are actively engaged by investing in projects that reduce or store carbon including UK tree planting and a Wind Power Project in Thailand. This engagement can be seen at an employee level as a number of our staff volunteered to plant nearly 400 trees at two schools. It of course poured down but was still a fabulous day!
All our initiatives are shared with partnerships, and we encourage using best practice within the client sites, to increase and enhance our Corporate Social Responsibility.
In a global context, adopting greener new technologies such as Microsoft Azure Cloud based SaaS (D365) can promote a greener economy which is linked to decarbonisation and global climate emergencies. - Covid-19 recovery
-
Covid-19 recovery
HSO is committed to supporting Covid 19 recovery. Our solutions and services can support local communities to manage and recover from the impact of COVID-19 faster. We facilitate hybrid working, allowing remote working where agreed and possible, and provide support for returning to work in a safe and balanced environment. We recognise that doing business remotely and returning to work safely will help drive economic growth and support jobs to build an innovative economy that is viable and resilient. - Tackling economic inequality
-
Tackling economic inequality
HSO believe economic opportunity can and must be inclusive. That's why we invest to help individuals, organisations and communities access pathways to growth and opportunity. When each of us succeeds, we all succeed. Social Value is core to our business. Through our Digitisation Projects, HSO helps develop a skilled and well-educated population in an economy which generates wealth and provides employment opportunities without barriers, allowing people to take advantage of the wealth generated through securing decent work.
• The digital skills gap and shortages across the UK can be addressed through the upskilling in latest Microsoft technologies with recognised qualifications and knowledge sharing elements of our Project and Support services
• HSO are keen to support local initiatives such as Enterprise 4 Education (E4E) and commit to activities to help improve employability and provide a larger pool of home-grown talent for local employers
• We seek to hire apprentices from local areas to participate in the projects and build a career
• HSO will incorporate employment and training opportunities as part of our contract delivery, particularly at entry levels. To this end, HSO has a dedicated Learning & Development (L&D) team focussed on delivery of functional, technical, industry and soft skills training, made available to Buyer teams including:
o HSO Masterclasses - Our Learning Management System provides access to over 120 online training courses
o HSO Academy – A 3-week bootcamp provide focuses on both soft and technical skills
o Certifications – HSO are regarded by Microsoft as one of the most certified partners in the channel
o Training Conference - Annual two-day Learning & Development conference for all our employees and open to Buyer Teams
o We also run lunch-and-learn sessions on D365 and other relevant topics for Buyer employees and local third sector organisations. - Equal opportunity
-
Equal opportunity
HSO actively seeks to promote a society that enables people to fulfil their potential no matter what their socio-economic background and circumstances.
• HSO operate by an equal opportunities policy
• We monitor our diversity and work on improving this with our Diversity and Inclusion team initiatives
• Our employees and management work within the HSO Mental Health Policy
• We are passionate about how digital transforms lives, mitigating challenges that the less privileged in society face.
Working with Microsoft we are innovators in Accessibility. We will assist the Buyers to fulfil their legal requirements in Accessibility, by offering guidance, expertise, and delivering IT services that enable inclusion and reduce the digital skills gap for those with physical (e.g., visual, auditory) or neurological (e.g., cognitive, learning, behavioural) impairments. Furthermore, our solutions support those for whom English is not their first language, using, e.g., LinguaSkin (www.linguaskin.com) to work seamlessly with our Microsoft solution and provide multi-language access. - Wellbeing
-
Wellbeing
HSO actively promote improved health and wellbeing for a society in which people’s physical and mental wellbeing is maximised and in which choices and behaviours that benefit future health are understood.
HSO currently have an extensive wellbeing program, focussing on Mental and physical wellbeing which we can also extend to Buyer teams.
HSO employees and management work within the HSO Mental Health Policy.
HSO will work with Buyer teams to support improved community cohesion. We seek to do this through our project solutions, approach, and methodology as an enabler for a well-connected ecosystem supporting the community. Throughout Project engagements, HSO will positively challenge the Buyer’s program team to ensure the solution design is simple and easy to use (user first approach), adheres to the highest level of data protection in line with GDPR and is accessible in an 'always on' connected state for seamless operations across the organisation.
Pricing
- Price
- £600 to £1,600 a unit a day
- Discount for educational organisations
- No
- Free trial available
- No