Fujitsu Services Limited

Threat and Vulnerability Management Service

Fujitsu provides you with a suite of complementary services to reduce your organisation’s attack surface and, with context-rich intelligence, proactively predict, detect and manage active cyber threats, and respond more effectively to cyber incidents. Threat and Vulnerability Management Services can be subscribed to individually or in combination to meet requirements.

Features

• Vulnerability Scanning and Vulnerability Management to reduce your attack surface.
• Managed Detection and Response (MDR) providing enhanced detection and response.
• Security Information and Event Management (SIEM) for logging, analysis, alerting.
• Cyber Threat Intelligence for assessing, validating, and reporting cyber threats.
• Extended Security Orchestration, Automation and Response (XSOAR), featuring tailored playbooks.
• Splunk, LogRhythm, Microsoft Sentinel, Qualys, Tenable, IntSights, Palo Alto, Rapid7.
• CPE and SaaS for on premise, cloud and hybrid environments.
• Delivered using PRINCE2\Agile SAFe methodologies aligned to best practice
• ITIL-aligned, ISO/IEC 20000 compliant service management framework .
• Underpinned by SLAs, 24x7 from Accredited Security Operations Centres (SOCs).

Benefits

• 40 years security experience in private and public sectors.
• Experienced, vendor\industry certified and SC security cleared SOC Analysts.
• Utilising best-of-breed and Extended Detection and Response (XDR) technologies.
• Proactive, flexible, and scalable services supporting compliance and increased ROI.
• Efficient and effective security incident investigation and response.
• One-stop-shop providing a comprehensive/complementary range of services .
• Remove silos and costs via holistic security service strategy.
• Continuous service improvement to meet evolving security requirements.
• Support escalation management with all technology vendor partners.
• Cyber Essentials and Cyber Essentials Plus Accredited Supplier.

£0 a unit

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at government.frameworks@fujitsu.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

579425033926989

Contact

Sam Skinner
07867829234
government.frameworks@fujitsu.com

Planning

• Planning service: Yes
• How the planning service works: This is a Managed Service, Fujitsu will help to implement these cloud based Managed Security Services. Further details can be found in the attached Service Definition document
• Planning service works with specific services: No

Training

• Training service provided: Yes
• How the training service works: Please refer to the attached Service Definition document for details of training that can be provided.
• Training is tied to specific services: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: Please refer to the Service Definition document attached. This provides details of migration services.
• Setup or migration service is for specific cloud services: No

Quality assurance and performance testing

• Quality assurance and performance testing service: Yes
• How the quality assurance and performance testing works: Please refer to the Fujitsu Service Definition document attached

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
  • Other
• Other security services:
  • Technical Professional Services
  • Continuity & Resilience
• Certified security testers: Yes
• Security testing certifications:
  • GBEST
  • CHECK
  • CREST
  • Cyber Scheme
  • Other
• Other security testing certifications:
  • • OSCP
  • • OSCE
  • • CISSP
  • • CEH
  • • CCSP
  • • MCIIS
  • • CompTIA Security +

Ongoing support

• Ongoing support service: Yes
• Types of service supported:
  • Buyer hosting or software
  • Hosting or software provided by your organisation
  • Hosting or software provided by a third-party organisation
• How the support service works: Fujitsu has ISO27001 certification and all the Fujitsu MSS are fully managed services from our Security Operations Centres / Delivery Centres and are operated in compliance with the ISO20000 framework.

Service scope

• Service constraints: There are no specific constraints

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Dependent upon Service & Service Levels
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AAA
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Support levels: Standard support levels are as defined in the Service Definition document.; ; Technical response times for the Fujitsu Managed Security Services are outlined below:; Incident: Priority 1 is 30 minutes; Incident: Priority 2 is 1 hour

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Bureau Veritas
• ISO/IEC 27001 accreditation date: 06/01/2022
• What the ISO/IEC 27001 doesn’t cover: The specific exclusions from scope are:; • Country sales teams ; • Products business line channel sales and managed accounts ; • All Enterprise Platform services (EPS) business lines with the exception of UK VME teams ; • Services provided from offshore Fujitsu Global Delivery Centres ; • 3rd party data centres and infrastructure including cloud and technical services
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Fujitsu operates a Dual Delivery approach to Social Value (SV). Our Responsible Business Programme, developed on the principles of the Public Sector (SV Act 2013) delivers our corporate employee and community programme. Running parallel to the corporate programme, we deliver bespoke client-facing SV programmes within each call off contract. Programmes are fully aligned to the requirements of PPN06/20. Using our co-creation process, we undertake both local and national initiatives, jointly developed with clients and partners, that ensure Economic, Social and Environmental benefit to communities.

  Covid-19 recovery

  Fujitsu operates a Dual Delivery approach to Social Value (SV). Our Responsible Business Programme, developed on the principles of the Public Sector (SV Act 2013) delivers our corporate employee and community programme. Running parallel to the corporate programme, we deliver bespoke client-facing SV programmes within each call off contract. Programmes are fully aligned to the requirements of PPN06/20. Using our co-creation process, we undertake both local and national initiatives, jointly developed with clients and partners, that ensure Economic, Social and Environmental benefit to communities.

  Tackling economic inequality

  Fujitsu operates a Dual Delivery approach to Social Value (SV). Our Responsible Business Programme, developed on the principles of the Public Sector (SV Act 2013) delivers our corporate employee and community programme. Running parallel to the corporate programme, we deliver bespoke client-facing SV programmes within each call off contract. Programmes are fully aligned to the requirements of PPN06/20. Using our co-creation process, we undertake both local and national initiatives, jointly developed with clients and partners, that ensure Economic, Social and Environmental benefit to communities.

  Equal opportunity

  Fujitsu operates a Dual Delivery approach to Social Value (SV). Our Responsible Business Programme, developed on the principles of the Public Sector (SV Act 2013) delivers our corporate employee and community programme. Running parallel to the corporate programme, we deliver bespoke client-facing SV programmes within each call off contract. Programmes are fully aligned to the requirements of PPN06/20. Using our co-creation process, we undertake both local and national initiatives, jointly developed with clients and partners, that ensure Economic, Social and Environmental benefit to communities.

  Wellbeing

  Fujitsu operates a Dual Delivery approach to Social Value (SV). Our Responsible Business Programme, developed on the principles of the Public Sector (SV Act 2013) delivers our corporate employee and community programme. Running parallel to the corporate programme, we deliver bespoke client-facing SV programmes within each call off contract. Programmes are fully aligned to the requirements of PPN06/20. Using our co-creation process, we undertake both local and national initiatives, jointly developed with clients and partners, that ensure Economic, Social and Environmental benefit to communities.

Pricing

• Price: £0 a unit
• Discount for educational organisations: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at government.frameworks@fujitsu.com. Tell them what format you need. It will help if you say what assistive technology you use.