MICRO FOCUS

Micro Focus - Voltage SecureData - SaaS

Voltage SecureData provides an end-to-end data-centric approach to enterprise data protection, enabling you to protect data over its entire lifecycle, from the point at which it’s captured. Voltage protects and secures data to and from and in the cloud with its format-preserving encryption.

Features

• Data Security, Encryption, Format-Preserving Encryption
• Next Gen, Stateless Tokenisation, Stateless Tokenization
• Role-Based Access Control, Data Masking, Test Data Management
• Protects data stored at rest, in motion within cloud
• Scalable, de-identify data, policy management
• De-identifies PII, maintains value and referential integrity
• Data Discovery and Data Classification
• Stateless Key Management, Next Gen PKI
• Secure Analytics, Cloud BI
• Protection

Benefits

• Reduce compliance cost protecting data in place and extend value
• Format-preserving encryption and hashing avoids breaking applications and processes
• Total platform coverage extending to legacy and hybrid IT
• Minimise disruption: Protection without disruption to existing applications and processes
• Centrally manage data-centric protection across the environment
• Supports on-premises, cloud and hybrid environments and deployments
• Provide access to only data someone needs, minimising risks
• Automate discovery and protection of sensitive structured data
• Robust reporting enables monitoring and audit of all protection
• Enable new use cases secure cloud & big data analytics

£156,727.76 a licence a year

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at publicsectoruk@microfocus.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

725787204337227

Contact

Micro Focus, now OpenText - Public Sector Team
01635 565330
publicsectoruk@microfocus.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
• Service constraints: No constraints
• System requirements:
  • Internet Access
  • Web Browser

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Please see target response times outlined in Ts&Cs document attached.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Standard support 24 x 7 FlexCare support available at additional cost. This can be used to align additional resources such as a Technical Account Manager, Named Advance Support Engineer or pre-paid points to provide additional onsite or remote support
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Onsite or online training is available for the solution and a full set of documentation is provided with an online Help Center. Online training is provided by the Microfocus ART product, available also on G-cloud.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: N/A data under buyer's control
• End-of-contract process: This will be negotiated between the customer and hosting partner as part of the service scoping exercise.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: The solution has a REpresentational State Transfer (REST) API.
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Solution can be customised to integrate with virtually any platform or data flow.

Scaling

• Independence of resources: The solution is scale-able. A scoping exercise between the customer and chosen hosting partner will identify the different workloads over time and required resources required to support those workloads.

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Scale, obfuscating techniques, or data storage sharding
  • Other
• Other data at rest protection approach: Format preserving encryption.
• Data sanitisation process: No
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: N/A data under buyer's control
• Data export formats: Other
• Data import formats: Other

Data-in-transit protection

• Data protection between buyer and supplier networks: Other
• Other protection between networks: Solution is designed to protect buyer's data in transit and at rest.
• Data protection within supplier network: Other
• Other protection within supplier network: Solution is designed to protect buyer's data in transit and at rest.

Availability and resilience

• Guaranteed availability: This guarantee will be negotiated between the customer and chosen hosting service delivery partner.
• Approach to resilience: Service resilience will be negotiated between the customer and chosen hosting service delivery partner.
• Outage reporting: Outage reporting will be provided by the chosen hosting partner.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
  • Other
• Other user authentication: To be arranged with chosen hosting provider.
• Access restrictions in management interfaces and support channels: Restrictions will be negotiated with and provided by the customers chosen hosting partner.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
  • Other
• Description of management access authentication: To be arranged with chosen hosting provider.

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: The Certification Body of Schellman & Company LLC
• ISO/IEC 27001 accreditation date: 15/12/2020
• What the ISO/IEC 27001 doesn’t cover: This certification is for Software support services.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: Security Governance will be a topic to be covered by the chosen hosting supplier.
• Information security policies and processes: Security policies and processes will be a topic for discussion with the chosen hosting partner.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: These facilities will be provided by the chosen hosting partner.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Vulnerability management will be provided by the chosen hosting partner.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: These facilities will be provided by the chosen hosting partner.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: The incident management process will be provided by the chosen hosting partner.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Fighting climate change:

  Fighting climate change

  At Micro Focus, we are committed to reducing our environmental footprint and supporting the transition to a low carbon business. We encourage our employees to live and work sustainably – and help our customers and partners address their carbon footprint by implementing carbon-friendly IT strategies, which deliver greater efficiency and extend the life of their existing technology and equipment.; Through our support of the United Nations Sustainable Development Goals (UN SDGs), we are working to adopt and inspire sustainable actions across everything we do to help shape a more sustainable, inclusive and equitable future for all.
• Covid-19 recovery:

  Covid-19 recovery

  Micro Focus continues to manage the evolving situation and monitor closely how COVID-19 is affecting our communities, our team, our customers, and our partners.; Nearly two years since the start of global lockdowns, we continue to keep focused on helping you by making it easier to ensure business continuity for your remote workers and your organization. ; Micro Focus continues to maintain a state of full operational readiness. Given the unprecedented dynamics of the COVID-19 pandemic, our dedicated COVID-19 Steering Group, comprised of leaders from across our organization, continues to operate and collaborate to adapt our plans as needed.; The COVID-19 Steering Group is actively monitoring the evolving situation, working closely with our teams, customers, and partners locally to ensure that business continues to operate without disruption. Our own business continuity plans are robust, focused on maintaining the delivery of services and support to customers and partners worldwide while supporting our local team.; Having 40 years of experience helping customers navigate the need to build, operate, secure, and analyse their systems – the systems that keep important business and social functions running and optimized. COVID-19 has reinforced the importance of using that knowledge and experience to help our customers and partners. Our goal is to continue to be there for all customers and colleagues in whatever way they need.; We will continue to make content and resources available to all of customers and partners to help you keep your business plans progressing and ensure you have what you need for your own business continuity. We remain confident in the power of our people and of our collective ability to come out stronger. Please know that the entire Micro Focus community is continuing to do our part and are here to serve when and where needed.
• Equal opportunity:

  Equal opportunity

  At Micro Focus, we are committed to actions that support diversity and inclusion (D&I) in everything we do. We believe in the power of a diverse and inclusive workforce that reflects the many aspects of the customers, suppliers, and communities we serve around the world, and promotes equal opportunity for all. We seek to enable the needs of our customers, drive new business, fuel innovation, and attract, engage, and retain our employees.; We are committed to creating and maintaining an inclusive culture where every employee feels a sense of belonging, has opportunities to grow, express themselves, exchange ideas, and feel heard. This commitment includes providing fair and equal opportunities to both employees and prospective employees throughout their career journeys. We are actively striving to identify and eliminate biases and barriers (seen or unseen) that could delay or prohibit full participation by any individual or group. D&I also means we provide an ethical and safe workplace environment where we treat each other with dignity and respect, creating a culture free of harassment, bullying, and hostility. This is underpinned by our Code of Conduct.; We recognise that each person brings a unique set of qualities, attributes, backgrounds, skills, and perspectives to work. We aim to not only accept but to value and harness those unique differences. Our intention is to achieve our broad business goals by increasing representation of underrepresented people groups, including at the leadership level.
• Wellbeing:

  Wellbeing

  At Micro Focus, we are committed to actions that support diversity and inclusion (D&I) in everything we do. We believe in the power of a diverse and inclusive workforce that reflects the many aspects of the customers, suppliers, and communities we serve around the world, and promotes equal opportunity for all. We seek to enable the needs of our customers, drive new business, fuel innovation, and attract, engage, and retain our employees.; We are committed to creating and maintaining an inclusive culture where every employee feels a sense of belonging, has opportunities to grow, express themselves, exchange ideas, and feel heard. This commitment includes providing fair and equal opportunities to both employees and prospective employees throughout their career journeys. We are actively striving to identify and eliminate biases and barriers (seen or unseen) that could delay or prohibit full participation by any individual or group. D&I also means we provide an ethical and safe workplace environment where we treat each other with dignity and respect, creating a culture free of harassment, bullying, and hostility. This is underpinned by our Code of Conduct.; We recognise that each person brings a unique set of qualities, attributes, backgrounds, skills, and perspectives to work. We aim to not only accept but to value and harness those unique differences. Our intention is to achieve our broad business goals by increasing representation of underrepresented people groups, including at the leadership level.

Pricing

• Price: £156,727.76 a licence a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at publicsectoruk@microfocus.com. Tell them what format you need. It will help if you say what assistive technology you use.