Grove Information Systems

Netography - Network Detection and Response and M-NDR

Netography's Security Platform is the only SaaS solution that provides automatic remediation and cross-network visibility to defend against a broad set of security threats in real-time. With automated threat prevention, organisations can reduce their overall mean time to detect and mean time to resolve.

Features

• Detection of Unknown Attacks
• Data Enrichment
• Visibility Across your Entire Network
• Seamless Integration
• Threat Hunting
• Dashboards & Reporting
• Response
• Storage

Benefits

• SaaS Solution
• No software or hardware required
• Quick and easy installation
• Technology deploys, runs, and scales using the cloud
• Unlimited threat detection models can be added and removed

£975 a unit

• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at pwitheridge@groveis.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

624548600991515

Contact

Philip Witheridge
+44 207 493 6741
pwitheridge@groveis.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Edge devices such as Firewalls, Routers, Core switches
• Cloud deployment model:
  • Public cloud
  • Private cloud
• Service constraints: N/A
• System requirements:
  • Needs to connect to a layer 3 device
  • Layer 3 device = firewall/router/layer 3 switch
  • Netography needs to receive VPC (Virtual Private Cloud) logs
  • Netography needs to receive flow logs

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: We have service level agreements arranged from 1 hour - 24 hours response times.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: P1; - Critical business impact or critical loss of service; - The issue must be logged via telephone; A resolution of a next-steps action plan will be relayed within four hours for all support cases received from customers during each annual support period.; ; P2; - Major or partial loss of service, where a work-around does not exist; - Issue must be logged via telephone or the support portal; A resolution or an initial next-steps action plan will be relayed within five hours, provided the customer provides all requested information in a timely manner.; ; P3; - Questions, how-to queries or minor service impact; - The issue must be logged via telephone or the support portal; - A resolution plan will be relayed within eight hours, provided the customer provides all requested information in a timely manner.; ; P4; - Documentation and enhancement requests; - Issue must be logged via telephone or the support portal; A resolution plan will be relayed within 24 hours, provided the customer provides all requested information in a timely* manner.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: We deploy the service and configure service to customers requirements.; We then provide Admin training either on site or online depending on the customers requirements.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Flow data is cut from the customer side and the data is flushed from Netography's databases.
• End-of-contract process: Included in the price is full access to the Fusion Portal and unlimited threat detection models. Onboarding is included. ; ; Additional costs include the Managed Service wraparound to the solution.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: We make available access to a portal called the 'Fusion Portal' where customers are able to interact with the collected data and analysis.
• Accessibility standards: None or don’t know
• Description of accessibility: Through the Netography portal online
• Accessibility testing: We have a comprehensive API database which is published online: https://api.netography.com/#netography-api
• API: Yes
• What users can and can't do using the API: See link: https://api.netography.com/#netography-api
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
• API sandbox or test environment: No
• Customisation available: No

Scaling

• Independence of resources: The Netography platform is designed to ensure that load is equally balanced across services.

Analytics

• Service usage metrics: Yes
• Metrics types: Monthly threat hunting and customisation.; Reactive email alerts with machine speed.; Any other metrics that are derivable from client data, for example, total flow in the service period, numbers of particular alerts triggered, time to reply remediation etc.
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Netography

Staff security

• Staff security clearance: Staff screening not performed
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Customers have access to the API and can extract all the data before the contract ends.
• Data export formats: CSV
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: 100% service uptime SLA (this is not a guarantee)
• Approach to resilience: Multiple data centres with no single point of failure.
• Outage reporting: Via the administration centre or via customer success representatives.; Email alerts.; API.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: The support link 'https://support.netography.com' is limited to active customers (requires login details).
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: Dfgdf
• Information security policies and processes: Dfgdf

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Details can be provided upon request.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Details can be provided upon request.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Details can be provided upon request.
• Incident management type: Supplier-defined controls
• Incident management approach: Details can be provided upon request.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  Tackling economic inequality

  Tackling economic inequality

  The solutions and services we offer to G Cloud procurement organisations typically require new skill sets for which we provide employment and follow on mentorship training and growth opportunities.

Pricing

• Price: £975 a unit
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: Free 30 day Proof of Value trial.; This can be set up virtually, it requires connection to a layer 3 device (router/firewall/switch).; It includes full access to the 'Fusion Portal' and all the dashboard/analytics that come with this.; It doesn't include the response aspect of the tool.

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at pwitheridge@groveis.com. Tell them what format you need. It will help if you say what assistive technology you use.