CYBIT LIMITED

Palo Alto Prisma Services

Prisma Cloud offers the industry’s broadest security and compliance coverage for applications, data, and the entire cloud native technology stack throughout the development lifecycle across multi- and hybrid cloud environments. This include:
Prisma Cloud for cloud application security
Prisma Access (SASE) Cloud access security
Prisma SaaS for visibility and control

Features

Networking for Remote Networks/Users
Secure Access Service Edge (SASE)
Bandwidth Management
Logging
Firewall as a Service
DNS Security
Cloud based security for AI and machine learning
Cloud Secure Web Gateway
Data Loss Prevention
Cloud Access Security Broker

Benefits

Rapid deployment of scalable remote working
Connect mobile users with global protect app for optimal security
Reduce load on existing on premises infrastructure
Centralised management and reporting from automated, cloud-scalable log storage
Consistent security enforced for all remote workers
Use of predictive analytics and automation to combat DNS threats
Threat prevention combines the proven technologies to stop attacks
SWG functionality maintains visibility into all traffic while stopping evasions
DLP allow data categorisation, establishing policies that prevent data loss
FWaaS provides the security services expected from a NGFW

£50 to £150 a user a year

Education pricing available
Free trial available

Service documents

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at chris.shields@cybit.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

Contact

CYBIT LIMITED Chris Shields
Telephone: 01912380111
Email: chris.shields@cybit.com

Service scope

Software add-on or extension: No
Cloud deployment model: Public cloud

Hybrid cloud
Service constraints: No constraints
System requirements: Internet access

Modern operating system

User support

Email or online ticketing support: Email or online ticketing
Support response times: Response times to be defined with the Cybit pre-sales team
User can manage status and priority of support tickets: Yes
Online ticketing support accessibility: None or don’t know
Phone support: Yes
Phone support availability: 24 hours, 7 days a week
Web chat support: No
Onsite support: Yes, at extra cost
Support levels: Support levels can be agreed and tailored during the pre-sales engagement with the Cybit technical account manager.
Support available to third parties: Yes

Onboarding and offboarding

Getting started: Following a pre-sales engagement a free POC is established
Service documentation: Yes
Documentation formats: HTML

ODF

PDF
End-of-contract data extraction: N/A
End-of-contract process: Service extensions are offered or the services completes at end of term

Using the service

Web browser interface: Yes
Supported browsers: Internet Explorer 11

Microsoft Edge

Firefox

Chrome

Safari

Opera
Application to install: Yes
Compatible operating systems: Android

IOS

Linux or Unix

MacOS

Windows

Windows Phone

Other
Designed for use on mobile devices: Yes
Differences between the mobile and desktop service: N/A
Service interface: No
User support accessibility: WCAG 2.1 AAA
API: Yes
What users can and can't do using the API: Infrastructure egress IP addresses can be retrieved from the Prisma Access service via an API call. If the optional management system (Panorama) is implemented then full configuration is available via APIs.
API documentation: Yes
API documentation formats: Open API (also known as Swagger)

HTML

ODF

PDF

Other
API sandbox or test environment: Yes
Customisation available: Yes
Description of customisation: Once customer requirements are identified the service is highly customisable to address these needs.

Scaling

Independence of resources: Each Palo Alto Prisma Access is a private instance per client

Analytics

Service usage metrics: Yes
Metrics types: Extensive usage metrics are provided
Reporting types: Real-time dashboards

Regular reports

Reports on request

Resellers

Supplier type: Reseller providing extra features and support
Organisation whose services are being resold: Palo Alto Networks

Staff security

Staff security clearance: Conforms to BS7858:2019
Government security clearance: Up to Security Clearance (SC)

Asset protection

Knowledge of data storage and processing locations: Yes
Data storage and processing locations: United Kingdom
User control over data storage and processing locations: Yes
Datacentre security standards: Managed by a third party
Penetration testing frequency: At least every 6 months
Penetration testing approach: Another external penetration testing organisation
Protecting data at rest: Other
Other data at rest protection approach: N/A
Data sanitisation process: No
Equipment disposal approach: A third-party destruction service

Data importing and exporting

Data export approach: N/A
Data export formats: Other
Other data export formats: N/A
Data import formats: Other
Other data import formats: N/A

Data-in-transit protection

Data protection between buyer and supplier networks: TLS (version 1.2 or above)

IPsec or TLS VPN gateway
Data protection within supplier network: TLS (version 1.2 or above)

IPsec or TLS VPN gateway

Availability and resilience

Guaranteed availability: This service is provided by Palo Alto Networks.
Approach to resilience: Delivered as a cloud service from more than 100 locations, in 76 countries.
Outage reporting: Outages are reported via a dashboard and email alerts

Identity and authentication

User authentication needed: Yes
User authentication: 2-factor authentication

Public key authentication (including by TLS client certificate)

Identity federation with existing provider (for example Google Apps)

Username or password
Access restrictions in management interfaces and support channels: Access is restricted via multiple standard security controls
Access restriction testing frequency: At least every 6 months
Management access authentication: 2-factor authentication

Public key authentication (including by TLS client certificate)

Identity federation with existing provider (for example Google Apps)

Username or password

Audit information for users

Access to user activity audit information: Users have access to real-time audit information
How long user audit data is stored for: User-defined
Access to supplier activity audit information: Users have access to real-time audit information
How long supplier audit data is stored for: User-defined
How long system logs are stored for: User-defined

Standards and certifications

ISO/IEC 27001 certification: Yes
Who accredited the ISO/IEC 27001: Certification Europe
ISO/IEC 27001 accreditation date: 09/02/2018
What the ISO/IEC 27001 doesn’t cover: Cybit is fully ISO27001 certified. The Palo Alto Networks security program consists of a risk-based approach that includes administrative, technical and physical safeguards reasonably designed to protect the confidentiality, integrity and availability of customer data. Palo Alto Network's information security program is aligned to ISO 27001/2, and includes key controls from HIPAA, PCI and SOC2.
ISO 28000:2007 certification: No
CSA STAR certification: No
PCI certification: No
Cyber essentials: Yes
Cyber essentials plus: Yes
Other security certifications: No

Security governance

Named board-level person responsible for service security: Yes
Security governance certified: Yes
Security governance standards: ISO/IEC 27001
Information security policies and processes: Cybit have a dedicated Information Security Manager. This person is responsible for all security policies and processes and has responsibility to ensure compliance.

Operational security

Configuration and change management standard: Supplier-defined controls
Configuration and change management approach: Cybit's configuration and change management processes are aligned to ITIL. As part of our ISO27001 implementation all potential security risks and impacts are brought to the Cybit ISMF.
Vulnerability management type: Supplier-defined controls
Vulnerability management approach: Palo Alto Networks has an internal threat and research unit (Unit 42) that are responsible for assessing global threats. Patching and deployment is ongoing service provided by Palo Alto Networks.
Protective monitoring type: Supplier-defined controls
Protective monitoring approach: Palo Alto is a global leader in cyber security solutions with extensive capability in protecting and monitoring thousands of environments across the globe. This knowledge and expertise is deployed internally to this Prisma service.
Incident management type: Supplier-defined controls
Incident management approach: Full incident management is available on request. This can be defined during the pre-sales engagement.

Secure development

Approach to secure software development best practice: Supplier-defined process

Public sector networks

Connection to public sector networks: No

Pricing

Price: £50 to £150 a user a year
Discount for educational organisations: Yes
Free trial available: Yes
Description of free trial: 45 day proof of concept which includes multiple user defined use cases
Link to free trial: https://www.cybit.com/contact-us/

Service documents

Request an accessible format

Cookies on Digital Marketplace

Palo Alto Prisma Services

Features

Benefits

Pricing

Service documents

Framework

Service ID

Contact

Service scope

User support

Onboarding and offboarding

Using the service

Scaling

Analytics

Resellers

Staff security

Asset protection

Data importing and exporting

Data-in-transit protection

Availability and resilience

Identity and authentication

Audit information for users

Standards and certifications

Security governance

Operational security

Secure development

Public sector networks

Social Value

Pricing

Service documents