SARACEN CONSULTANCY LIMITED

Cyber Security

Saracen Consultancy Cybersecurity Service is designed to help businesses to identify and protect sensitive and business-critical information assets from unauthorised access, exposure, malware attacks and other cyber threats. We also identify technologies and design solutions and processes for maintaining operational continuity and recovery from potential threats and attacks.

Features

• Cyber Strategy: Strategy definition and alignment to organisational goals
• Security Architecture & Design
• Cyber Risk Management
• AI Security & Ethics
• Compliance and Regulation: Data Privacy and data security controls design
• Testing: ITHC, Red and Blue Team engagement scoping, testing reporting
• Identity and Access Management across cloud and on-premise directory services
• Cyber Program Management
• Applications Security: Aligning solutions design with policies and standards

Benefits

• Strategy customised to business objectives, risk profile and, appetite.
• Defence and strategic controls tailored and built into solutions
• Prevent cyber incidents, reduce impact of risks, ensure recovery
• Ethical and responsible use of AI technologies through strong governance
• Privacy by design, compliance with data residency, security, ethics requirements.
• Detect and respond to emerging threats, manage attack surface management
• Secure Identities and reduce risks of unauthorised access and incidents.
• Ensure programs deliver on the security vision, goals, and objectives
• Applications are secure by design, meet security and compliance objectives.

£500 to £1,500 a user a day

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at lara.oladapo@saracenconsultancy.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

572491545209572

Contact

Lara Oladapo
+44 (0)7887751835
lara.oladapo@saracenconsultancy.com

Planning

• Planning service: Yes
• How the planning service works: We conduct the discovery and analysis phase to document cloud service requirements by understanding business goals, technology & scalability requirements, current infrastructure, compliance and security requirements, and budget constraints. ; We will collaboratively assess client's cloud adoption readiness in areas such as technical expertise, data migration requirement complexity, and impact on business process and change management.; We conduct a cost/ risk/ benefits assessment and advise on the right options and approach. ; Using the output from the options assessment, we recommend and help clients to identify the right cloud service provider by evaluating service offerings, pricing, support options and service levels.; We also offer migration strategy design, planning and support to assure security and prevent data loss during any migration.; We offer a range of cloud migration and post-implementation support including service management, security design and monitoring, automation, continuous integration and continuous development. ; We create documentation throughout the process including Cloud Readiness Gap and Maturity Assessment, Cloud Options Assessment, Risk Assessments, Resource, Pricing and Cost Assessments, Migration Design, Process Flows, Technical and Security Design and Knowledge Articles. We offer cloud services training and knowledge transfer where required, and our guidance and services are tailored to clients' requirements.
• Planning service works with specific services: No

Training

• Training service provided: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: Our cloud architects and engineers work with organisations to scope and identify services, data and workloads that are included in the migration project. We propose and agree on the migration strategy and identify the network and capacity requirements based on the specific scenario including greenfield migration of services from legacy datacentres to the public or private cloud, migration of workloads between cloud services, or a hybrid cloud migration solution. We support the following migration: ; Rehost services using cloud infrastructure; Replace services with cloud-native equivalent ; Refactor to take advantage of cloud capabilities.; ; We work with the business to evaluate the best migration approach considering factors including complexity, business impact, ; cost estimation and time. ; ; We take all necessary steps and precautions to ensure that the cloud infrastructure is set up and configured securely. ; We also ensure that controls are in place to ensure migrations meet requirements for data confidentiality, integrity and availability. Cloud workloads are scanned for vulnerabilities before and after migration and tests are conducted to validate service functionality and performance post migration.; Our migration SMEs create migration Runbooks to ensure smooth execution and minimize disruption to the business. ; We offer post migration services including ongoing support of your cloud services.
• Setup or migration service is for specific cloud services: Yes
• List of supported services:
  • Azure
  • AWS
  • Google Cloud
  • Private Clouds

Quality assurance and performance testing

• Quality assurance and performance testing service: Yes
• How the quality assurance and performance testing works: We work with client organisations to establish migrating workloads' functional and performance baseline and identify all integration and cross-platform requirements.; Saracen consultancy will prepare the Test Strategy and Test Plan documents in partnership with client representatives. We will document testing requirements, timelines and success criteria and agree the test strategy and plan with client representatives. ; We will then test a non-production version of the migrating service in a non-production cloud environment to test the load process; and measure latency, throughput and response times. ; We test all integration points and validate scaling assumptions.; We also monitor system capacity and usage during the pre-live testing and conduct iterative quality assurance and performance assurance of migrating workloads.; We will produce Test Reports, Issue Management Reports and Defect logs classified according to severity. Draft reports will be shared for client review and final reports will be in line with the success criteria defined and agreed with the client. Issue resolution, retesting, and any escalation will follow the pre-agreed process and we work with representatives to ensure all issues are resolved to clients' satisfaction. The client will be expected to issue a Test Acceptance Certificate when we submit the final test report.

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security incident management
  • Security audit services
  • Other
• Other security services:
  • Identity and Access Management
  • Data Protection Services
  • Artificial Intelligence (AI) Ethics
  • Threat and Vulnerability Management
  • Security Engineering
  • Cyber Program Management

Ongoing support

• Ongoing support service: Yes
• Types of service supported:
  • Buyer hosting or software
  • Hosting or software provided by a third-party organisation
• How the support service works: Our SMEs are experienced in design, implementation and support for major public and private cloud architecture, networks and virtual infrastructure service models including infrastructure as a service, platform as a service, software as a service, security as a service and software-defined networks. ; We also have the expertise and support hosting of business applications on public and /or private cloud and legacy data center infrastructure. ; We work with clients to optimize the cost of cloud services, implement guardrails and processes for setting up and managing cloud workloads and services to ensure organisations realise the cost-benefits of cloud services. Our security experts will work with our clients to ensure services are configured to ensure compliance with legislative, compliance and organisations' security requirements and policies. ; We work to industry best practices for change control and management. We ensure that all changes are documented, impact assessed, agreed by the client organisation's change management board, and tested before being deployed on the production service.; ; We monitor services and can integrate event logs with organisations' service management and security incident and event management tools where available. Where there are no existing service management or SIEM tooling, we are able to implement these solutions for organisations.

Service scope

• Service constraints: There are no constraints.

User support

• Email or online ticketing support: Yes, at extra cost
• Support response times: Standard service hours are 9am - 5pm Monday to Friday.; ; We offer tailored support up to 24 hours, seven days a week if required by client organisations.
• User can manage status and priority of support tickets: No
• Phone support: No
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: WCAG 2.1 AAA
• Web chat accessibility testing: None at the present time.
• Support levels: We provide the following levels of support:; Documentation: This includes documenting the design, procedures and ways of working; Service Level Driven Support. This involves agreed levels of support and performance measures. This improves the consistency and effectiveness of the support agreement.; Active Management and Governance. This would require collaborative working with the client where the client's representative oversees the process to ensure consistent outcomes.; ; We can provide technical account managers and service support managers at the client's request.; We can integrate with clients' centralised ITIL support processes with defined service level agreements and integrated toolset.

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • CISSP
  • CISM
  • CRISC
  • CIISEC
  • CITP

Social Value

• Social Value:

  Social Value

  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Tackling economic inequality

  As a SME, we aim to reduce economic inequality through several approaches. We will promote equal opportunities in hiring based on the merit of applicants' demonstrated ability to do the job; encourage diversity by actively promoting vacancies on platforms that are open to everyone; ensure that different perspectives are represented at every level of our organisation and staff feel valued and included.; We currently provide mentoring and training to young people in the local community and will expand into apprenticeship programs and offer work placements to college and university students. This will increase the opportunities for hands-on training and mentorship to young people from diverse backgrounds who may not necessarily have these same opportunities at bigger firms.; We believe that we can make a difference by reaching young adults and those returning to work after time out by our positioning and links to communities that are underserved by bigger firms.

  Equal opportunity

  As a small organisation, we are well aware of the impact of our recruitment practices on the local community. We have mandatory training on Saracen Consultancy Equality, Anti-Discrimination and Diversity policies and code of conduct. ; We are committed to expanding opportunities to career returnees and groups that are historically underrepresented in the workplace. We do this by valuing, encouraging and rewarding behaviours that benefit the individual, our clients and our business. ; We recruit and reward staff based on experience and their ability to contribute. We ensure our recruitment practices reflect our values of merit, inclusion and diversity without biases. ; We offer work experience placements and apprenticeships to young people to encourage an interest in IT and, positively impact communities.; We pay equal remuneration for equal work and do not support any form of discrimination in our workforce. We are fully committed to fairness and equity and have an inclusive policy that is race, gender and age blind. We use neutral job descriptions in job advertisements to prevent the exclusion or discrimination of applicants with protected characteristics.; We have a process to investigate situations that do not meet our equal opportunities, diversity and equality and anti-discrimination policies.; Employees are supported if they wish to join, advocate for, support or share their experiences of any of the inclusion networks and support groups.

  Wellbeing

  We understand our people, both staff and clients, are the key to the success of our organisation and work hard to promote the well-being of our workforce. We work hard to establish a work environment where everyone feels included and valued and promote this culture in our client engagements.; We respect every individual and encourage an open mindset where any interaction is seen as an opportunity to learn and broaden experiences. ; We work to identify and remove biases anywhere it is encountered and have a zero tolerance for workplace bullying. ; Being a SME, we take employee wellbeing seriously and encourage our staff to take their paid time off and support time off for personal development and family commitments.

Pricing

• Price: £500 to £1,500 a user a day
• Discount for educational organisations: Yes

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at lara.oladapo@saracenconsultancy.com. Tell them what format you need. It will help if you say what assistive technology you use.