BECHTLE LIMITED

Microsoft Azure CSP

The service provides customers with added value at no extra cost by purchasing Microsoft Azure products and services via Bechtle. Benefits include, but is not limited to managed service desk support, technical presales design and validation, exclusive offers and proof of concept funding.

Features

• Experienced presales consultancy assisting the cloud journey
• The latest information on new products and technology trends
• Exclusive offers, pricing, price change foresight and planning
• First and Second line support from ITIL accredited service desk
• Cost and security optimisation reviews in line with best practice
• Enhanced manage service offerings
• Access to discounted packaged services including AVD and Sentinel Design
• Azure Insights Dashboard for monitoring Azure spend

Benefits

• Deploy the right product for your requirement
• Take advantage of new price plans
• Use the latest technology to create unique powerful applications
• Get support when and where you need it
• Monitor costs by setting limits and alerts
• Align the right resources ahead of your next project
• Enhance your environment with continuous optimisation

£1.00 a unit

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at publicsector.uk@bechtle.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

717460303010797

Contact

Public Sector
01249 467900
publicsector.uk@bechtle.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: The Azure public cloud platform has been created, is owned, operated and maintained by Microsoft, and therefore has terms and conditions of use that are mutually applicable to Cloud Service Provider and Customer. The foundational operating model is that Microsoft implement a shared responsibility model, where a varying degree of responsibility of operating a customer environment can be down to the Service Provider or Customer, subject to requirement and capability.
• System requirements:
  • The customer should have Azure tenancy created via AAD
  • Access to the Azure Portal

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Within 24 hours, Mon to Friday, excluding bank holidays.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: To be agreed with the customer, depending on requirement and budget.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: We need written consent from a customer to move over to a Bechtle CSP contract. This should include the customer email address and further contact details. Once this has been processed the customer has access to all of the above service benefits and can access them by request, email, or telephone when bespoke requirements are necessary. We provide end-to-end customer service experience to make consuming Azure cloud services as simple and productive as possible.
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: .
• End-of-contract process: .

Using the service

• Web browser interface: Yes
• Supported browsers: Microsoft Edge
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Www.portal.azure.com is the centralised management graphical user interface to control all infrastructure resources within an Azure environment. This is accessed by a supported browser.
• Accessibility standards: None or don’t know
• Description of accessibility: Www.portal.azure.com is the centralised management graphical user interface to control all infrastructure resources within an Azure environment. This is accessed by a supported browser, such as Microsoft Edge.
• Accessibility testing: We have not done any testing but the vendor, Microsoft Azure has done and continue to test the interface with assistive technologies. Upon request we can get information on the testing of specific assistive technologies for the customer.
• API: Yes
• What users can and can't do using the API: .
• API documentation: No
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: SLA's can be negotiated to better serve the user base, pricing for Azure products and services is negotiable dependent on size and length of contract. Professional service discounts available subject to length and size of requirement.

Scaling

• Independence of resources: N/A

Analytics

• Service usage metrics: Yes
• Metrics types: Bechtle UK are able provide metrics on real-time usage, historical usage data, and predicted future usage via proprietary tools and access to the Azure portal. Granular cost analysis and efficiency analysis can be provided by an additional service, the cost of which is negotiable at contract inception. The most accurate telemetry can be gathered by implementing best practice management hierarchy and naming and tagging convention.
• Reporting types:
  • Real-time dashboards
  • Regular reports

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Microsoft

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: ‘IT Health Check’ performed by a CHECK service provider
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: N/A
• Data export formats: Other
• Other data export formats: N/A
• Data import formats: Other
• Other data import formats: N/A

Data-in-transit protection

• Data protection between buyer and supplier networks: Other
• Other protection between networks: N/A
• Data protection within supplier network: Other
• Other protection within supplier network: N/A

Availability and resilience

• Guaranteed availability: https://azure.microsoft.com/en-gb/support/legal/sla/summary/
• Approach to resilience: Azure Storage always stores multiple copies of your data so that it's protected from planned and unplanned events, including transient hardware failures, network or power outages, and massive natural disasters. Redundancy ensures that your storage account meets its availability and durability targets even in the face of failures.; ; When deciding which redundancy option is best for your scenario, consider the tradeoffs between lower costs and higher availability. The factors that help determine which redundancy option you should choose include:; ; How your data is replicated in the primary region.; Whether your data is replicated to a second region that is geographically distant to the primary region, to protect against regional disasters (geo-replication).; Whether your application requires read access to the replicated data in the secondary region if the primary region becomes unavailable for any reason (geo-replication with read access).
• Outage reporting: Azure Monitor helps you maximize the availability and performance of your applications and services. It delivers a comprehensive solution for collecting, analysing, and acting on telemetry from your cloud and on-premises environments. This information helps you understand how your applications are performing and proactively identify issues affecting them and the resources they depend on.; ; Just a few examples of what you can do with Azure Monitor include:; ; Detect and diagnose issues across applications and dependencies with Application Insights.; Correlate infrastructure issues with VM insights and Container insights.; Drill into your monitoring data with Log Analytics for troubleshooting and deep diagnostics.; Support operations at scale with smart alerts and automated actions.; Create visualizations with Azure dashboards and workbooks.; Collect data from monitored resources using Azure Monitor Metrics.; Investigate change data for routine monitoring or for triaging incidents using Change Analysis.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
• Access restrictions in management interfaces and support channels: Microsoft Azure comes with a set of administrator roles that you can assign to users in your organization. Each admin role maps to common business functions, and gives those people permissions to do specific tasks the Office 365 admin center. https://support.office.com/en-gb/article/About-Office-365-admin-roles-da585eea-f576-4f55-a1e0-87090b6aaa9d?ui=en-US&rs=en-GB&ad=GB https://support.office.com/en-gb/article/Assign-admin-roles-in-Office-365-eac4d046-1afd-4f1a-85fc-8219c79e1504?ui=en-US&rs=en-GB&ad=GB
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: Between 6 months and 12 months
• Access to supplier activity audit information: Users receive audit information on a regular basis
• How long supplier audit data is stored for: Between 6 months and 12 months
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: DQS
• ISO/IEC 27001 accreditation date: 14/09/2020
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: We are Cyber Essentials and ISO 27001 certified and have a number of policies that align with these standards.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: Microsoft has developed formal standard operating procedures (SOPs) governing the change management process. These SOPs cover both software development and hardware change and release management, and are consistent with established regulatory guidelines including ISO 27001, SOC 1/SOC 2, NIST 800-53, and others. Microsoft also uses Operational Security Assurance (OSA), a framework that incorporates the knowledge gained through a variety of capabilities that are unique to Microsoft. OSA combines this knowledge with the experience of running hundreds of thousands of servers in datacenters around the world.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: In support of the Information Security Policy, Office 365 runs multiple layers of antivirus software to ensure protection from common malicious software. Servers within the Office 365 environment run anti-virus software that scans files uploaded and downloaded from the service for viruses or other malware. Additionally, all mails coming into the service run through the Exchange Online Protection engine, which uses multiple antivirus and antispam engines to capture known and new threats against the system. Microsoft has its own Security Response Center (MSRC) that also supplies information to all our customers covering the whole range Microsoft products.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: Microsoft employs sophisticated software-defined service instrumentation and monitoring that integrates at the component or server level, the datacenter edge, our network backbone, Internet exchange sites, and at the real or simulated user level, providing visibility when a service disruption is occurring and pinpointing its cause. Proactive monitoring continuously measures the performance of key subsystems of the Office 365 services platform against the established boundaries for acceptable service performance and availability. When a threshold is reached or an irregular event occurs, the monitoring system generates warnings so that operations staff can address the threshold or event.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: Please see http://aka.ms/Office365SIM

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Fighting climate change; Bechtle are actively taking steps to ensure that we operate our business with as little environmental impact as possible. As a group, we are Ecovadis Gold and ISO14001 certified, and are committed to becoming carbon net zero by 2030. We launched the Bechtle Sustainability Strategy 2030 to serve as a roadmap for how we will get there, identifying 4 areas of action as part of this strategy:; ; • Ethical business practices; • Environmental Approach; • People; • Sustainable digital future; ; Bechtle have established a database for recording Scope 1 and 2 (direct and indirect CO2 emissions) and Scope 3 (that of the Bechtle Group, such as purchased goods and services, transportation and distribution, business travel, and employee commuting) emissions. We are collecting data through group-wide sustainability software, WeSustain, and have used the data to produce a Carbon Reduction Plan (CRP) that is published on our website (Carbon-Reduction-Plan-BechtleUK-2022.pdf) and updated annually. ; Supply chain management ; We work closely with our vendor partners to broaden our portfolio of sustainable technologies, solutions, and services, and could help to minimise the future environmental impact.; ; Recycling/Asset disposal; Bechtle actively encourage our customers to make sustainable use of their resources, through secure asset disposal, refurbishment, and recycling of devices. Bechtle have recently helped facilitate a self-funding recycling program for a large local authority, who wanted to prevent their old laptops from going to landfill.; ; Green Logistics ; Bechtle design our logistics processes around an ecological efficiency criteria, both in terms of transport and packaging. ; ; Internal Sustainability team ; We have a dedicated sustainability team, who’s aim is to improve and promote sustainability within three areas: social, personal, and business. The team have defined and actioned sustainable methods, changes in practice and greener alternatives across the whole of Bechtle UK and help to drive our sustainable

  Covid-19 recovery

  Covid-19 recovery; Many organisations have had to change their operating models and ways of working following the COVID-19 pandemic. IT also became clear to a number of our customers that their infrastructure that supported old ways of working, no longer supported new hybrid or remote working models. Through a thorough infrastructure review we can not only advise our customer on what best suits their current operating models but we can also help them to be future-ready. We can help them improve productivity, utilisation and adoption, getting maximum productivity out of their investment, whilst saving costs and limiting environmental impact through cloud/ hybrid adoption.

  Tackling economic inequality

  Tackling economic inequality; Bechtle’s equal opportunities policy applies across the whole company and includes recruitment, selection, training, career development and promotion. No employee or applicant will be treated less favourably on the grounds of colour, race, religion, nationality, ethnic or national origin, gender (including gender reassignment), sex, sexual orientation, age, marital status, disability, or be disadvantaged by conditions or requirements that cannot be shown to be relevant to the job in hand.; ; Specifically the Company is committed to:; 1. Preventing any form of direct or indirect discrimination or victimisation.; 2. Promoting equal opportunities for men and women.; 3. Promoting equal opportunities for people with disabilities.; 4. Promoting equal opportunities for ethnic minorities.; 5. Promoting a good harmonious working environment where all employees are treated with respect and dignity and in which no form of intimidation or harassment will be tolerated.; 6. Fulfilling all legal obligations under relevant legislation and associated codes of practice.; 7. Taking all necessary permitted positive action including setting of goals and timetables.; ; Breaches of the Equal Opportunities Policy will be regarded as misconduct and could lead to dismissal in certain cases.; ; Equality and Diversity policy is available upon request

  Equal opportunity

  Equal Opportunities; Bechtle’s equal opportunities policy applies across the whole company and includes recruitment, selection, training, career development and promotion. No employee or applicant will be treated less favourably on the grounds of colour, race, religion, nationality, ethnic or national origin, gender (including gender reassignment), sex, sexual orientation, age, marital status, disability, or be disadvantaged by conditions or requirements that cannot be shown to be relevant to the job in hand.; ; Specifically the Company is committed to:; 1. Preventing any form of direct or indirect discrimination or victimisation.; 2. Promoting equal opportunities for men and women.; 3. Promoting equal opportunities for people with disabilities.; 4. Promoting equal opportunities for ethnic minorities.; 5. Promoting a good harmonious working environment where all employees are treated with respect and dignity and in which no form of intimidation or harassment will be tolerated.; 6. Fulfilling all legal obligations under relevant legislation and associated codes of practice.; 7. Taking all necessary permitted positive action including setting of goals and timetables.; ; Breaches of the Equal Opportunities Policy will be regarded as misconduct and could lead to dismissal in certain cases.; ; Equality and Diversity policy is available upon request

  Wellbeing

  Wellbeing; ; Bechtle believe Health & Safety and wellbeing of employees contributes to a good working environment which is key to a business.; ; Throughout the year Bechtle hold different events, this gives everyone a chance to meet one another from different office branches which lends itself to a healthy work environment, some of these events are “Summer Festival (BBQ, Music, Dancing), Christmas Party, New Year kick off, Games events” to name a few. Each branch also have a relaxing area where employees can congregate and take time out in a chilled environment.; ; Bechtle have also introduced initiatives to promote social and economic wellbeing, such as:; ; • Competitive salary, which is well above the National Minimum Wage; • Cycle to work scheme; • Hybrid working model, where employees can work from home 2 days a week to reduce commuting time; • My Bechtle Benefits discount portal, offering employees discounts via numerous retailers; • Employee Assistance Programme, providing employees with mental health and wellbeing support; • WPA Health Cash Plan; • Enhanced pension contribution; • Reduced health and gym memberships; • Paid for professional training; • Piloting an electric vehicle salary sacrifice scheme, which is being rolled out to the wider company.

Pricing

• Price: £1.00 a unit
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at publicsector.uk@bechtle.com. Tell them what format you need. It will help if you say what assistive technology you use.