Cloudsoft Corporation Ltd.

Cloudsoft AMP

Makes resilient workload management simple for complex hybrid IT and cloud environments; providing control, governance & visibility ensuring disparate and heterogeneous technology environments function in harmony.
Enables I&O, SRE, Platform and DevOps teams to deploy, manage and recover applications with observability leveraging Terraform, Kubernetes, Ansible, AWS CloudFormation, service catalogues etc.

Features

• Service orchestration and automation platform for critical applications
• Orchestrates workflows across multiple applications; on-premises and cloud
• Composability and blueprinting with design and run-time models
• Event-driven or policy-based automation with sense-respond capabilities
• Observability and Day2 operations monitoring health and healing failures automatically
• Multi-cloud failover
• Integration with infrastructure-as-code (Terraform, Ansible) and ServiceNow
• Underpinned by open source technology (Apache Brooklyn)
• Implements Oasis CAMP and TOSCA standards

Benefits

• Manages hybrid IT complexity across heterogeneous estates
• Productivity savings due s to increased automation
• Improved and demonstrable operational resilience
• Risk avoidance: compliance can be demonstrated easily
• Improved stability: less downtime, cost savings and reputational benefit
• Ensure critical services are 'always up' with no downtime
• Centralised control, governance, visibility and observability
• Extract maximum value from ITSM and other tool/technology investments
• Cloud (and other) vendor resilience

£0.75 a unit an hour

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ross@cloudsoft.io. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

608945184096132

Contact

Ross Gray
+447795570563
ross@cloudsoft.io

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: AMP allows a consistent approach to design-time and run-time fitting neatly into devops processes and business processes, targeting all major clouds, platforms, and services; and leveraging common tools:; ; Infrastructure-as-Code (e.g. Terraform), ; configuration management (e.g. Ansible),; containers (e.g. Kubernetes), ; CI/CD (e.g. git-ops), ; monitoring (e.g. Dynatrace), and ; ITSM & CMDB (e.g. ServiceNow).
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
• Service constraints: Service requires a license for the software
• System requirements:
  • The size of server required by Cloudsoft AMP is determined
  • By a variety of factors:
  • Minimum one vCPU,
  • 3.75GiB RAM
  • And a 4GB disk
  • Requires Java 8.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: We base responses on ticket severity levels as follows: ; Severity Level 1 - Within 15 minutes Updates hourly thereafter; Severity Level 2 - Within 1 Support Hours Updates every two hours; Severity Level 3 - Within 4 Business Hours; Severity Level 4 - Within 8 Business Hours
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: Our website CMS has a native SEO tool, which includes scanning for Accessibility. We run this scan monthly and act on any issues that are highlighted.
• Web chat accessibility testing: Our website CMS has a native SEO tool, which includes scanning for Accessibility. We run this scan monthly and act on any issues that are highlighted.
• Onsite support: Yes, at extra cost
• Support levels: Our support solution comes with an optional Support Service Level Agreement including the provision of a self service portal with ticketing solutions and help desk. - Services can include the provision of dedicated and expert consultants to support the customer through the agreed engagement period
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Users are provided with self learning material and demos; specific tailored training packages are also available
• Service documentation: Yes
• Documentation formats:
  • HTML
  • ODF
  • PDF
• End-of-contract data extraction: All existing and created data in relation to the services in question will remain the property of the customer. All data submitted by a user to Cloudsoft software is accessible and deletable by them in easily usable formats and mechanisms. Data shared with Cloudsoft via other means will be extracted in an agreed format and within agreed timescales as specified in the exit plan issued at the start of each project.; "
• End-of-contract process: Upon service commencement, Cloudsoft provides an agreed and complete Exit Plan as required by each individual customer and tailored to their specific requirements, including details of any additional costs and payment principles. All costs associated with the specified services will be articulated and approved with the customer upon project commencement.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: Yes
• Compatible operating systems:
  • Linux or Unix
  • MacOS
  • Windows
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: The service interface is a console based interface "In general, best practices for accessible UI design is followed, including:; ; ARIA specification and attributes used; Navigation methods: Product uses consistent navigation methods ; Image Tagging, text alternatives: Images are textually tagged or otherwise available to Assistive text;; Image Consistency: Cloudsoft is actively working on bringing consistency ; Links: Cloudsoft products mostly contain links which which indicate purpose in context,; Speech and Hearing Alternatives: Cloudsoft products do not contain features that specifically require user speech or hearing
• Accessibility standards: WCAG 2.1 AAA
• Accessibility testing: Cloudsoft have not completely tested directly with users but use specialist commercial off-the-shelf product to aid with testing
• API: Yes
• What users can and can't do using the API: All API Services are agreed separately with customers in line with their specific requirements
• API documentation: Yes
• API documentation formats: HTML
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: All customisation requirements are agreed separately with customers inline with their requirements

Scaling

• Independence of resources: Cloudsoft services are flexible and scalable service in order to meet the fluctuations in demand for each individual service. These services are underpinned by a set of pre-agreed SLAs with each individual customer, ensuring continuity of the services being provided.

Analytics

• Service usage metrics: Yes
• Metrics types: Service has a wide range of metrics reported including load, requests, disk and memory usage. Further specific service metrics and reporting are agreed with customers in line with their individual requirements. Service also can integrate with many market-leading tools
• Reporting types:
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: All data is easily available via the UI. In addition standards-based formats and API calls are supported and documented for automated export. All customisation requirements for data export are agreed separately with customers according to their defined requirements
• Data export formats: ODF
• Data import formats:
  • CSV
  • ODF

Data-in-transit protection

• Data protection between buyer and supplier networks: IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

• Guaranteed availability: A full SLA is agreed with customer as part of contract - with a guaranteed service level of 99.99%
• Approach to resilience: AMP is designed to be highly resilient and is created for high availability. Customers define where they implement the software - in a completely secure on premises environment or in cloud infrastrcuture such as AWS or Azure which meets the relevant resilience requirements. AMP is highly customisable and has been approved for use in some of the worlds largest and most regulated organisations including financial and defence organisations
• Outage reporting: Service Outages are reported to customers in a number of ways. This includes alerts and notifications to users or notification through a customers chosen service management platform.

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: By default service users have to authenticate with a username and password. This can be configured locally or using an LDAP-style environment, or OAuth can be configured, all as standard. Alternatives are also available by arrangement including SAML or JWT
• Access restriction testing frequency: At least every 6 months
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: You control when users can access audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: Cloudsoft security governance approach is broadly aligned to NIST guidelines focussing on areas including:; - Organisational Structure;; - Roles and Responsibililties;; - Strategic Planning;; - Policy;; - Compliance;; - Risk Management ; - Measuring and Reporting Performance
• Information security policies and processes: Cloudsoft have a range of Information Security Policies including for:; - Change Management; - Incident Response; - Remote Access; ; - Vendor Management; Acceptable Use;; -Security Awareness and Training Policy;; ; Cloudsoft closely aligns with the ISO/IEC 27001:2013 requirements for establishing, implementing, maintaining and continually improving an information security management system. This involves ensuring that requisite and appropriate security controls are in place as defined in the ISO/IEC 27001 standard. Cloudsoft adhere to ITIL principles and practices for managing and supporting our SaaS environment. Cloudsoft are GDPR compliant. Risk assessments are carried out annually with senior management taking direct responsibility for the execution, development and implementation of remediation programs and the policies and controls governing our ISMS ; ; Where specific certifications are required for specific projects, Cloudsoft are normally willing and able to obtain these.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Cloudsoft Configuration Management and Change Management Process are aligned to ITIL best practices
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Cloudsoft Vunerability Management process is aligned to ITIL Security management best practices
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Cloudsoft Protective Monitoring Process is aligned to ITIL security management best practice
• Incident management type: Supplier-defined controls
• Incident management approach: Cloudsoft Incident Management Process is aligned to ITIL security management best practice

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  As a responsible software and cloud consultancy business we operate with a minimum carbon footprint, and are actively working towards our own net zero goals. With this in mind we will work in partnership Public Sector Organisations to ensure contracts are managed in such away to meet customer zero carbon emissions targets; ; With respect to efficient use of resources, Cloudsoft works in the following ways which will have positive environmental consequences;; ; Recycling and waste management - by implementing effective waste management practices to minimise waste and promote recycling and reusing materials whenever possible. Our contract with ChangeWorks Recycling gives us a monthly report on our waste and how much we recycle versus companies of similar size as ours - this data can be provided.; Hybrid working policies - which lead to lower travel carbon footprints.; Transportation - Minimising emissions related to transportation by using low-carbon transportation options where possible, such as bus, tram or cycle to place of work (noting we do not require employees to be in the office) or meetings. ; Energy efficiency - encouraging teams to be aware of and improving their energy consumption by providing energy-efficient equipment, technologies, and materials. ; Innovate and collaborate: Encourage innovation within the project team and collaborate to share knowledge and best practices for reducing emissions.; ; We also encourage employees to act sustainably via many perks and benefits: cycle to work scheme, Pawprint app helping to calculate individual carbon footprint and providing advice on how to reduce it.

  Equal opportunity

  Cloudsoft recognises that commercial enterprise can contribute to Equal Opportunities through contribution to fair work practices as these impact employees and the working culture within our industry. ; ; Equal Work Practices ; Cloudsoft supports fair work practices across the board. All resources, permanent or otherwise, are subject to standard working practices. These practices are actively practised across the business and documented in Company Handbooks. The Handbooks provide information related to the business, all benefits staff are entitled to, and policies such as Health & Safety, Equality and Diversity etc. ; ; Fairness and Diversity ; Cloudsoft is an equal opportunities employer and we aim to ensure that no-one receives less favourable treatment because of their identified gender, age, disability, religion, belief, sexual orientation, marital status, or race. We believe that diversity drives value and we actively work to promote equality across the workforce.

  Wellbeing

  As a responsible employee business we believe we can best contribute to well being in our industry through ensuring the well being of Cloudsoft employees. To this end we invest in:; ; Skills and Training to Fulfil Potential ; Commitment to the development of people and skills, providing all staff with an annual budget for relevant external training. Staff are actively supported who wish to achieve relevant professional certifications; covering supporting materials and exam fees and providing time off for exams/preparation.; ; Flexible working and Career Breaks ; Cloudsoft supports special and flexible working conditions to meet the needs of staff. The companies recognise that staff benefit from flexible working hours or working from home, and offer flexible and hybrid working options, including compressed or reduced working weeks. Enhanced maternity and paternity leave is made available for all employees, as are career breaks. Staff can take time off work to deal with situations affecting their dependents by compassionate leave. Employees are supported by a comprehensive sickness policy as well as access to occupational health and other health support. ; ; Wellbeing online courses and Mental Health Support; Employees are encouraged to make the most of Wellbeing online courses via our perks membership - employees can learn how to reduce stress, sleep better and gain focus whilst maintaining a healthy work life balance. As part of our Private Health insurance, Mental Health support is being offered to support employees who would have trouble. Our dedicated HR partner team are also Mental Health first-aiders shall the employee wish.

Pricing

• Price: £0.75 a unit an hour
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: Free versions of software are available to customers upon request.; ; Trials are customised to specific customer requirements. Time limits for free trials are defined and agreed based on customer requirements

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ross@cloudsoft.io. Tell them what format you need. It will help if you say what assistive technology you use.