Insight

Insight - Azure Foundation Setup Service

The Insight Azure Foundation Setup Service is a standardised, repeatable, and flexible service that provides a customised Azure Landing Zone. Designed and built following Azure Best Practices onto which clients can then deploy workloads, applications, and Azure Services.

Features

• Secure environment that is designed to meet industry standards
• scalable environment that can grow with your business needs
• efficient environment helping reduce costs and improve productivity
• consistent environment ensuring compliance and reduce the risk of errors
• governance framework helping manage your resources more effectively

Benefits

• Support users improve their working processes
• Providing a standardised, automated, governed, secure, and scalable workload environment
• Support acceleration of cloud adoption journey
• Achieve business objectives through cloud application

£1,890 a unit a day

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at pstenderteam@insight.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

755878563510590

Contact

Public Sector Tender Team
0344 846 3333
pstenderteam@insight.com

Service scope

• Service constraints: No constraints, the service is available in 3 sizes, simple, medium and complex to meet rrequirements.
• System requirements: No specific requirements

User support

• Email or online ticketing support: No
• Phone support: No
• Web chat support: No
• Onsite support: No
• Support levels: N/A
• Support available to third parties: No

Onboarding and offboarding

• Getting started: N/A - Insight's service creates the infrastructure for Buyer to deploy their workloads
• Service documentation: No
• End-of-contract data extraction: N/A
• End-of-contract process: N/A

Using the service

• Web browser interface: No
• API: No
• Command line interface: No

Scaling

• Scaling available: No
• Independence of resources: N/A
• Usage notifications: No

Analytics

• Infrastructure or application metrics: No

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Microsoft Azure

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: Never
• Protecting data at rest: Other
• Other data at rest protection approach: N/A - responsibility for these aspects are held by the Buyer in Microsoft's Azure environment.
• Data sanitisation process: No
• Equipment disposal approach: A third-party destruction service

Backup and recovery

• Backup and recovery: No

Data-in-transit protection

• Data protection between buyer and supplier networks: Other
• Other protection between networks: N/A - the foundation setup will create the networking for the underlying architecture in Azure. That will be completed to best practises. The environment is handed over to the Buyer at the completion of the project.
• Data protection within supplier network: Other
• Other protection within supplier network: N/A

Availability and resilience

• Guaranteed availability: N/A - the platform is provided by Microsoft and subject to its service levels.
• Approach to resilience: N/A - the platform is provided by Microsoft and subject to its service levels.
• Outage reporting: N/A - the platform is provided by Microsoft and subject to its service levels.

Identity and authentication

• User authentication: Other
• Other user authentication: N/A - the Azure architecture is created here to the Buyer's specifics. Once created and passed over to the Buyer, responsibility then lies with the Buyer.
• Access restrictions in management interfaces and support channels: N/A - the Azure architecture is created here to the Buyer's specifics. Once created and passed over to the Buyer, responsibility then lies with the Buyer.
• Access restriction testing frequency: Never
• Management access authentication: Other
• Description of management access authentication: N/A
• Devices users manage the service through:
  • Dedicated device on a government network (for example PSN)
  • Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

• Access to user activity audit information: No audit information available
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: NQA
• ISO/IEC 27001 accreditation date: 23rd December 2021
• What the ISO/IEC 27001 doesn’t cover: Our certification includes: The supply of computer hardware, peripheral equipment, networking equipment, software, IT supplies and training courses. The configuration, test and repair of supplied computer equipment and the provision of client engineering services and technical support for computer systems and software, in accordance with Statement of Applicability V4 dated 18 March 2021.
• ISO 28000:2007 certification: No
• CSA STAR certification: Yes
• CSA STAR accreditation date: 1/29/2024
• CSA STAR certification level: Level 1: CSA STAR Self-Assessment
• What the CSA STAR doesn’t cover: Level 1: CSA STAR Self-Assessment
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: "Insight places a high level of importance on the security and protection of personal and sensitive information shared with us by customers and our teammates. To this end, we have implemented a holistic information security program, which we continuously refine, revise, and augment based on our customer needs, applicable regulatory requirements, and identified security risks. ; Our information security management system includes 41 policies with associated procedures and guidelines, and is delivered, reviewed and monitored by:; - Enterprise Risk Management Board: determines the risk appetite for our organisation based on the direction of the Board of Directors. ; - Information Security Team: provides technical oversight; reviews our risk profile and ensures risks are appropriately accepted, mitigated, or transferred; are responsible for operational coordination of security program and reporting performance; provides training and awareness to our teammates.; - Business Management Team - implements and maintains Information Security safeguards to ensure assets sustain confidentiality, integruty and availability to facilitate reliance on assets to meet business objectives."

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: N/A - This is a foundation setup service, once completed, it is handed to the Buyer to operate and manage.
• Vulnerability management type: Undisclosed
• Vulnerability management approach: N/A
• Protective monitoring type: Undisclosed
• Protective monitoring approach: N/A
• Incident management type: Undisclosed
• Incident management approach: N/A

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: No

Energy efficiency

• Energy-efficient datacentres: Yes
• Description of energy efficient datacentres: "Azure are committed to putting sustainable technologies are the heart of their innovation – to make sure they are adapting and growing along with the planet with the lowest environmental impact. ; For Azure, datacenters and sustainable cloud infrastructure are more than just business, they provide an incredible opportunity to give back to the communities where we operate. Azure are committed to 100% renewable energy by 2025, becoming water positive and zero-waste by 2030, and net zero from new construction. ; They are exploring three energy innovations for the next generation of sustainable cloud technology: ; 1. Liquid immersion cooling to help minimise environmental impact of physical datacentres, reducing energy while providing higher processing power and eliminating water consumption. ; 2. Implementing grid interactive UPS batteries, together with adding capacity and reducing the demand on the grid, can make a big difference to meet sustainability goals and reduce carbon footprint.; 3. See how a switch from traditional diesel to less-carbon-intensive fuels to run datacenter backup generators helps to reach net-zero carbon emissions.; With sustainability at the core of their business Microsoft are actively engaged in over 40 projects around the world to help make a local impact and improve environmental outcomes. "

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  "Insight’s commitment to the environment, fighting climate change, and helping our customers achieve their environmental objectives is implicit in our Environmental Policy, and ISO 14001:2015 accreditation. Which states “Insight is committed to the protection of the environment … in order to reduce the adverse environmental impacts of its products, activities, and services”. ; ; As part of our corporate responsibility commitment, and in alignment with our value of Heart, we support and deliver charity projects across the UK that support making a better environment. We will leverage this commitment to deliver activities both internally and externally to the delivered services under this framework. ; ; Our activities to fight climate change and support the environment will include minimising waste at our facilities, taking part in environmental projects for local charities, supporting knowledge development of our teams and customers. "

  Covid-19 recovery

  "Since 2019 Insight have embraced hybrid working and supporting individuals from all areas of our business to work effectively from across the UK. We have learnt and developed practices and policies that support our teammates and our supply chain partners to deliver integrated services that add value. ; ; We believe in the power of leveraging technology to drive positive changes in local communities across the globe. As such we work with suppliers that also follow this value, driving and supporting donation of devices, training, and upskilling services, and encouraging individuals from all stages of their career to work in technology.; ; Our activities to aid the recovery from the impact of COVID-19 include continuing to offer flexible hybrid remote working opportunities, providing physical and mental wellbeing services to our teammates through services such as Vitality Health, training, and skills development sessions, and offering employment opportunities through our Skills Academy."

  Tackling economic inequality

  "Insights commitment to tackling economic inequality is driven by our value of Harmony, working as a solutions integrator we combine our expertise and services with key supply chain partners to deliver the best possible solution. Through our collaborative relationships we support customer engagement with specialist SMEs, which can lead to long term growth and development of new technology.; ; Our Social Value Strategy, which is aligned to the UK Governments model, aims to develop digital skills, enabling young people to access employment opportunities, and drive the future of our industry. We currently drive skills development through: our Skills Academy which delivers a 2-year programme to empower candidates from all stages of life to carve out a successful career in technology, and our STEM Ambassador programme that support activities to encourage the next generation of tech professionals. ; ; Through delivery of work under the framework we support employment and development of skills through activities such as career advice, STEM events, work placements, and mentoring, along with continuing our partner and vendor alliance to support small upcoming specialist expert services to grow. "

  Equal opportunity

  "Insight’s commitment to providing an environment of equal opportunity is detailed in our policies and demonstrated through our accreditations, which includes: ; • Diversity, Inclusion and Equal Opportunities Policy, Global Human Rights Policy, and UK Flexible Working Policy.; • Certified Great Place to Work, Disability Confident Employer, and signatory of the UN Global Compact.; ; As a company we strive to ensure we meet, where possible exceed, the requirements of the Equality Act 2010, UK Government Social Value Model (PPN 06/20), Modern Slavery Act 2015, and any key legislative or social changes to ensure that our current and future teammates are provided with an environment that encourages equal opportunity through open accessible employment growth, skills development, and fair pay. ; ; Our activities to support equal opportunities through the framework will include open and accessible recruitment practices, skills development through training courses, webinars and development sessions, promoting diversity through our teammate resource groups, and networking with individuals from all industries to support digital transformation."

  Wellbeing

  "Wellbeing is a top priority at Insight, as such we have built and regularly promote a flexible, open, and safe culture. As a supportive community of individuals we implement our wellbeing policy, driven through our value of Heart, to provide an environment which encourages healthy communication and the long-term wellbeing of our teams. ; ; As a Disability Confident Employer, certified Great Place to Work, and signatory of the Mental Health at Work Commitment, we ensure that our standards meet or exceed the expectations of both the standards, but also our teammates across our business. ; ; Our activities to support wellbeing of all individuals providing services under this framework will include access to our online Wellbeing Hub, supporting the work of our teammate resource groups (ShesInsight, DiverseABILITY, Insight Stands Out, RESPECT), promoting wellbeing through webinars, provision of training for first aid and MHFA, implementing occupational wellness checks, and drive awareness of support available internally and externally."

Pricing

• Price: £1,890 a unit a day
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at pstenderteam@insight.com. Tell them what format you need. It will help if you say what assistive technology you use.