SAPPHIRE TECHNOLOGIES LIMITED

Cloud Managed Firewall Service

Cloud based management of WAF and on-premise firewalls. 24*7 monitoring with rules review , software updates and patching with integral penetration testing. The customer owns firewall hardware this provides a cloud based management service to these assets. Includes technical authority to approve software updates on your behalf.

Features

• Patching
• Firewall rules audit
• 24*7 monitoring and alerting
• 24*7 support
• Out of hours change implementation
• Bundled adds moves and changes (subject to fair use policy)
• Multi vendor support Checkpoint Palo-alto Fortinet
• DDOS capability
• WAF and layer 7 firewall
• Optional onsite support

Benefits

• No need for in house shift or on-call teams
• Helps with compliance with cyber essentials and ISO27001
• No need to change firewall hardware to adopt this service
• Green field or brown field support of legacy assets
• Technical assurance provided as part of the service
• Ensuing that updates are relevant and technically assessed
• Reduces the need for multiple penetration tests
• Easy access to utilisation and dashboard information
• DMARC configuration and awareness

£7,000 a device

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at info@sapphire.net. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

638749400282348

Contact

Katie Smith
0845 58 27001
info@sapphire.net

Planning

• Planning service: Yes
• How the planning service works: We will provide an initial commissioning service when we onboard a green fields service and due diligence when we initiate a "brown field" site
• Planning service works with specific services: No

Training

• Training service provided: Yes
• How the training service works: We will provide user manuals and onboarding familiarisation. Tailored raining on a chargeable basis as needed
• Training is tied to specific services: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: We will perform a due diligence check before onboarding and on off boarding provide files wall rules base
• Setup or migration service is for specific cloud services: No

Quality assurance and performance testing

• Quality assurance and performance testing service: Yes
• How the quality assurance and performance testing works: We perform regular firewall rules review and integral penetration testing

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
  • Other
• Other security services:
  • Security Governance and Compliance
  • Application Security and Data Protection
  • Security Monitoring and Response
  • Digital Identity Management
  • Threat and Vulnerability Management
  • Endpoint protection
  • Threat Intelligence Analysis Platform
  • Platform Security
  • Secure Cloud
• Certified security testers: Yes
• Security testing certifications:
  • CHECK
  • CREST
  • Cyber Scheme
  • Other
• Other security testing certifications:
  • OSCP
  • OSCE
  • CISSP
  • CEH

Ongoing support

• Ongoing support service: No

Service scope

• Service constraints: The service is available remotely but optional site attendance is provided. We expect customer firewalls to be within manufacturer support. Our current constraint is only to support the following vendors :Checkpoint, Cisco, Palo alto, Forcepoint, Fortinet. NOTE the customer provides firewall and internet connection. We expect the environment for the customer equipment to have stable internet power and environment.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Within 15 minutes for P1 fault, within 4 hours for Moves adds and changes within working day
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Support levels: We provide 24 hour support . P1 support is 15 minutes to acknowledge an incident, we provide planned work and upgrades to be initiated out of hours with a target of 2 hours to remediate. P2 has 1 hour to acknowledge and 4 hours to remediate. P3 has 4 hours to acknowledge and 8 hours to remediate. Optional onsite support has a 4 hour time to attend site. P1 is defined as service outage. Adds move and changes will be committed within 24 hours subject to tech review

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Check Point

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: SGS
• ISO/IEC 27001 accreditation date: 12/09/2023
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  We make sure that we recycle where we can and take appropriate modes of transport to get to clients. Our offices in Darlington and Glasgow are easily accessible by public transport meaning that many of our colleagues go to an office by these means. For other colleagues, we offer remote working, and colleagues are able to attend an office when they need We are pricing our services to encourage customers to prefer remote access and remote working where possible. One of Sapphire staff is undertaking a part time PHD studying the carbon consequences of cyber crime and it’s mitigation which is inclusive of Sapphire customers and partners.

  Covid-19 recovery

  We have encouraged our staff back to office working especially in the SOC which runs 24*7 shift patterns. We have recently engaged in local communities by hiring space in local charity buildings for company meetings as in house face to face meetings. We have performed pro-bono work with charities to check their security status and help them move onwards from Covid in the face of increased cyber attacks on charities.

  Equal opportunity

  We have an Equal Opportunities policy which everyone in Sapphire adheres to. We are currently at 29% of females in our organisation, a number that has grown over the last few months. Our recruitment processes allow us to interview the best people for the roles we have available, and we insist on 50:50 short-lists for all roles. We value the views of others and see as a strength our openness to challenge. We employ military reservists, and are supportive of their overseas deployment commitments on behalf of HM Government. Recently we have signed documentation to join the NCSC Cyber First scheme to help young people especially women and girls to join the ranks of cyber professionals. We also mentor young people who are keen to move into cyber at some stage in their career.

  Wellbeing

  We take the wellbeing of our colleagues seriously; we offer an Employee Assistance Programme, have health cover, a pension scheme and Life Cover. We also provide opportunities for colleagues to Give Back to local projects/schemes and they can use a day a year to do this.

Pricing

• Price: £7,000 a device
• Discount for educational organisations: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at info@sapphire.net. Tell them what format you need. It will help if you say what assistive technology you use.