Centerprise International Ltd

Centerprise CiCloud Infrastructure as a Service (IaaS)

Cloud computing service that offers essential compute, storage, and networking resources on demand, where you only pay for what you use.

Features

• No set VM sizing
• Supports both public and virtual private cloud
• Enables users to provision resources using tools their familiar with
• Delivers simplified, transparent and predictable billing
• Based on open standards architecture
• Based on open standards architecture

Benefits

• Offers users full control over their environment
• Flexible, Scalable & Predictable
• No upskilling required
• You only pay for what you use
• No vendor lock-in
• Off-board applications and data as easily as you on-board them
• Choice of Hypervisor

£0.01 a virtual machine a minute

• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tendersteam@centerprise.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

706273457809807

Contact

Tenders Team
01256 378 000
tendersteam@centerprise.co.uk

Service scope

• Service constraints: Scheduled maintenance will be carried out in agreement with the customer, of which notification will be given 30 days in advance. ; In the case of emergency maintenance, the customer will be informed as soon as the issue has been detected.
• System requirements: None

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Target response times are subject to the contracted level of Centerprise Service. Typically, these will be: Standard - Target 90 minutes initial response Comprehensive - Target 90 minutes initial response
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Web chat
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: From within the Web portal
• Web chat accessibility testing: None
• Onsite support: No
• Support levels: We provide a first line email ticketing support and online ticketing support - all of which are supported by our second and third line resolver groups. Questions are responded to on a priority basis. Our user can manage status and priority of support tickets as well as accessing our technical support team via email or online portal. All our support levels are charged at the same rates. Our architects, consultants and technical support teams are wholly dedicated to ensuring the infrastructure supporting your applications and data are implemented and maintained to ensure peak performance
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Demonstrations and online training is available
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: All data can be exported by the user using the CiCloud Portal interface
• End-of-contract process: At the end of the contract Centerprise will cease the service. ; All data stored including backups will be securely deleted using industry standard best practise methods.; On termination of the Agreement we will give you a reasonable opportunity to migrate your environment out of our Services in an orderly fashion, where possible.; Optionally, on contract initiation, Centerprise will work with the Customer to create an exit plan within 3 months of the start of service. The exit plan will define what happens at the end of the contract.; For option costs, please refer to the price card.

Using the service

• Web browser interface: Yes
• Using the web interface: Once logged in has full access to the IaaS font end
• Web interface accessibility standard: None or don’t know
• How the web interface is accessible: Via login portal
• Web interface accessibility testing: Tested against the 13 compliance guidelines, where applicable, depending on the browser, including plug-ins, used.
• API: No
• Command line interface: No

Scaling

• Scaling available: Yes
• Scaling type: Automatic
• Independence of resources: 7x24x365 remote monitoring and management
• Usage notifications: Yes
• Usage reporting: Email

Analytics

• Infrastructure or application metrics: Yes
• Metrics types:
  • CPU
  • Disk
  • HTTP request and response status
  • Memory
  • Network
  • Number of active instances
• Reporting types: Real-time dashboards

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: In-house
• Protecting data at rest: Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

• Backup and recovery: Yes
• What’s backed up:
  • All data
  • All VMs
  • All Networking configurations
• Backup controls: The control of the backups is contained in the CiCloud portal. These can be set to backup automatically or on-demand. The backups can be defined to the periods, the file types and folders and to the location of the backup.
• Datacentre setup: Multiple datacentres with disaster recovery
• Scheduling backups: Users schedule backups through a web interface
• Backup recovery: Users can recover backups themselves, for example through a web interface

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • IPsec or TLS VPN gateway
• Data protection within supplier network: IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: Centerprise guarantees 100% availability of virtual servers in any given calendar month.; Centerprise guarantees 100% network availability in any given calendar month.; Centerprise guarantees a network latency of 1ms or less for data packets between servers within Centerprise’s services and network. ; If we fail to meet the guarantees detailed above, you will be able to request a credit as detailed below up to a maximum of 100% of your fee for capacity used during the previous 30 calendar days. ; Details of the definitions of the above are defined in our terms and conditions for the service.
• Approach to resilience: CiCloud is built on Enterprise class infrastructure from HPE with rack-scale efficiency delivering just the right amount of performance, adaptability and availability where needed. ; With no single point of failure from compute to disk to networking node all the way though to multiple power supplies and cooling fans. Hosted in two government approved Tier 3 plus Datacentre.; Full details are available on request.
• Outage reporting: Centerprise's CiCloud's systems and services are proactively monitored for availability and system health by the event management process.; System events and alerts of threshold breaches are detected by CiCloud’s system management tools and these alert our Customer Support team of state changes, including service outages in any of CiCloud Cloud service offerings. ; Customer Support are responsible for informing service affecting outages to customers and these are tailored to match the business needs of the customer. ; The form of the communication can be either email or telephone to the customer’s service desk or preferred service contacts. ; The alert to the customer contains information on which service has failed, the likely effect it will have on customers IT service along with reference information for follow up. CiCloud Customer Support then maintain regular updates to affected customers on the expected service restore time until de-escalation.

Identity and authentication

• User authentication: 2-factor authentication
• Access restrictions in management interfaces and support channels: When a ticket is raised via phone, customers will always be asked to authenticate themselves using a series of security questions unique to them. ; Usernames, passwords and 2 factor authentication is used to restrict access to customer facing portals for Centerprise systems. ; Role based access control (RBAC) is used to define user access rights within Centerprise systems.
• Access restriction testing frequency: At least every 6 months
• Management access authentication: 2-factor authentication
• Devices users manage the service through: Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Alcumus ISOQAR
• ISO/IEC 27001 accreditation date: 24/06/2008
• What the ISO/IEC 27001 doesn’t cover: The certification covers all Centerprise products and services
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: Yes
• Who accredited the PCI DSS certification: SecurityMetrics
• PCI DSS accreditation date: 10/11/2018
• What the PCI DSS doesn’t cover: PCI DSS certification applies to all Centerprise services.
• Cyber essentials: No
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: The Information Security Management System (ISMS) is intended to be an enabling mechanism for information sharing, for electronic operations, and for reducing information-related risks to acceptable levels. The scope of the ISMS covers all Centerprise information assets associated with the provision of the service. The ISMS is subject to continuous, systematic review and improvement. Centerprise has established a top-level Information Systems Management Forum (ISMF), chaired by the CEO that includes the Information Security Officer and other management staff or roles to support the ISMS framework and to periodically review the information security policy. This policy and all changes to this policy are subject to approval by the Centerprise CEO.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Centerprise have a strict Change management control policy in line with our ISO20k certification. The change process workflow can be summarised as follows: - 1 - Change creation; 2 - Two Stage Change Approval (Quality / Technical); 3 - Identification of affected customers 4 - Customer notification. 5 - Implementation
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Information regarding potential threats comes from a variety of sources primarily relating to our underlying operating system.; Critical vulnerabilities can be patched via a hot-fix process pushed to all servers automatically. Typically the time frame between identifying and remediation with 72 hours.
• Protective monitoring type: Undisclosed
• Protective monitoring approach: Centerprise have a defined protective monitoring process with includes a number of different methodologies and techniques. Due to the sensitive nature of the details of this process Centerprise do not make these details publicly available but they can be discussed on request. When a potential compromise is found it is reported to the Information Security Manager as set out in Centerprise's incident management policy. The Centerprise ISM is responsible for coordinating and managing the response within 24 hours.
• Incident management type: Supplier-defined controls
• Incident management approach: Centerprise's Incident Management process is based on ITIL principles, and provides 1st Line service desk support via phone and email. Standard resolution templates are used for common issues, and an ITSM tool provides audit trails and log of ticket volumes, categories etc. Due to the sensitive nature of the details of this process Centerprise do not make these details publicly available but they can be discussed on request.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: Yes
• Who implements virtualisation: Supplier
• Virtualisation technologies used: VMware
• How shared infrastructure is kept separate: The CiCloud virtual machines are not shared between customers, and each virtual machine is operated within a VPC dedicated to a single client.; Provision of virtual machines and their separation at the hardware level is managed by CiCloud

Energy efficiency

• Energy-efficient datacentres: Yes
• Description of energy efficient datacentres: All our Data Centres are ISO14001 accredited with robust environmental management systems and adhere to EU Code of Conduct for Data Centre Energy Efficiency for SQ17, P1, and A9; Consumed energy is consumed from sustainable energy sources wherever possible; We ensure the use of hot/cold aisle cooling design, which reduces energy consumption as the cooling is more efficient and helps our customers to reduce their carbon footprint

Social Value

• Fighting climate change:

  Fighting climate change

  Centerprise is committed to working towards ‘Carbon Neutral’ status with an ambition to be carbon neutral by the end of 2050. Scope 1 and Scope 2 emissions have reduced by 32.51% from our baseline in 2020/21 year. Centerprise’s strategy expands beyond its internal business operations by ensuring the changes implemented flow into our product strategies. In this way, the organisations and communities in which Centerprise operates will also benefit. For example, today, Centerprise’s customers benefit from solutions: ; • that reduce resource requirements and associated office and transportation costs, such as cloud based services working from home; • Replacing petrol/diesel vehicles with electric vehicles; • Using electronic communications replacing printed and posted materials and face to face meetings ; • utilising technologies such as Artificial Intelligence and Machine Learning to improve efficiency and lower the carbon intensity of operations; • Procuring from low carbon suppliers
• Covid-19 recovery:

  Covid-19 recovery

  Centerprise recognise the impact that Covid has made on the UK economy and have made investments to help support job seekers and local growth stimulants.; Centerprise has started a new Apprenticeship scheme to help provide young people with a career path in Sales. Each year, new apprentices will be added with a planned process of educating the individual with a combination of formal study and on-the-job training in different parts of the organisation, leading to a recognisable qualification. ; In South Wales, Centerprise has invested £5m in extending their premises to another 5,000 square feet to expand the recycling capability. This action has provided work to more people in a high unemployment area by utilising local contractors for the building work and providing new employment opportunities as the site starts operation.
• Tackling economic inequality:

  Tackling economic inequality

  Centerprise is helping to level the playing field regarding economic inequality by ensuring that all employment is on the basis of pure ability to perform, regardless of any other factor. This will include the provision of any aids needed to ensure that those with disabilities, or other factors, can contribute equally.; Centerprise is happy to state that all employees are paid in excess of the basic living wage.
• Equal opportunity:

  Equal opportunity

  Centerprise is helping to level the playing field regarding economic inequality by ensuring that all employment is on the basis of pure ability to perform, regardless of any other factor. This will include the provision of any aids needed to ensure that those with disabilities, or other factors, can contribute equally.
• Wellbeing:

  Wellbeing

  Centerprise care for the welfare of all staff. The following is sample of the services offered:-; • Subsidised Gym membership; • Free fruit distributed weekly; • Anonymous AI based Mental Welfare service – AMY; • 2 Wellbeing days for all staff

Pricing

• Price: £0.01 a virtual machine a minute
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: Request a 7 day free trial on the portal
• Link to free trial: https://cicloud.centerprise.co.uk/

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tendersteam@centerprise.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.