Vaultspeed
Using Vaultspeed a company can generate the loading processes and a Data Vault model based on source models and parameter setup on various target databases platforms.
Features
- Data Warehouse Automation
- Data Vault Automation
- SaaS
- No Code
- ETL Automation
Benefits
- Yes
Pricing
£3,599 to £10,999 a licence a month
- Education pricing available
- Free trial available
Service documents
Request an accessible format
Framework
G-Cloud 13
Service ID
8 2 5 8 1 4 9 2 2 7 7 5 8 5 8
Contact
Datavault
Mark Otten
Telephone: 023 92 637171
Email: mark.otten@data-vault.com
Service scope
- Software add-on or extension
- No
- Cloud deployment model
-
- Public cloud
- Private cloud
- Hybrid cloud
- Service constraints
- SaaS solution only runs on Azure to generate Automation Code, Code can be deployed on any Cloud Provider or onPrem.
- System requirements
- VM for local agent with 1 CPU, 2GB
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
- Within 24 hours (on business days)
- User can manage status and priority of support tickets
- No
- Phone support
- No
- Web chat support
- Yes, at an extra cost
- Web chat support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support accessibility standard
- None or don’t know
- How the web chat support is accessible
- Dont know
- Web chat accessibility testing
- Dont know
- Onsite support
- Yes, at extra cost
- Support levels
- Standard support included in SaaS Solution: When an incident occurs or when you have questions related to your account, we’re there to help. Our service desk will respond to your support ticket within 24 hours (during business hours). Extra paid Premium support : enhanced response times – within 4 business hours – or enhanced support hours, up to 24/7 availability.
- Support available to third parties
- Yes
Onboarding and offboarding
- Getting started
- In addition to the VaultSpeed SaaS service, VaultSpeed offers an Onboarding package (3 levels) that includes best practices, training, and guidance to streamline the onboarding process.
- Service documentation
- Yes
- Documentation formats
- HTML
- End-of-contract data extraction
- VaultSpeed generated Code is provided to the Communication Agent running on the customer Managed Infrastructure to deploy or publish the Code into GIT. Additionally, a user can download at any time the Code from the VaultSpeed console and export the VaultSpeed managed metadata.
- End-of-contract process
-
VaultSpeed does not have a runtime; VaultSpeed generates native code that runs on the customer target platforms. At the end of the subscription, the customer still has the right to run the code, which requires no VaultSpeed component.
Once the contract is terminated, new code generation to support new use cases will not be permitted anymore. However, a customer can still run the previously generated code.
As stated before, the VaultSpeed GUI supports the download of code and export of metadata at any time; we would strongly encourage our customers stopping their contract to download these artifacts from the VaultSpeed SaaS.
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Firefox
- Chrome
- Application to install
- Yes
- Compatible operating systems
-
- Linux or Unix
- MacOS
- Windows
- Designed for use on mobile devices
- No
- Service interface
- No
- User support accessibility
- None or don’t know
- API
- Yes
- What users can and can't do using the API
- Yes, all application functionalities are available through a REST API
- API documentation
- Yes
- API documentation formats
- Other
- API sandbox or test environment
- No
- Customisation available
- Yes
- Description of customisation
- In the context of customization, the VaultSpeed SaaS supports the definition of the default value of the parametrization settings to control the model and the type of Generated code. These default settings are inherited by any artifact created within the service.
Scaling
- Independence of resources
- Our Cloud Architecture fully embraces the capabilities provided by Cloud Elasticity to scale instantly to meet any demand and provide a seamless user experience.
Analytics
- Service usage metrics
- Yes
- Metrics types
- Yes, The VaultSpeed dashboard provides information about your subscription type and validity period. The VaultSpeed dashboard includes a graph showing how many of your available VaultSpeed Automation Units (VAUs) have already been consumed.
Resellers
- Supplier type
- Reseller providing extra support
- Organisation whose services are being resold
- VaultSpeed
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- Up to Security Clearance (SC)
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
- European Economic Area (EEA)
- User control over data storage and processing locations
- No
- Datacentre security standards
- Supplier-defined controls
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- Another external penetration testing organisation
- Protecting data at rest
- Other
- Other data at rest protection approach
-
Vaultspeed is deployed on Azure which implies that all data is persisted in the Azure storage layer. Azure Storage automatically encrypts all data when it is persisted into the cloud. Data in Azure Storage is encrypted and decrypted transparently using 256-bit AES encryption, one of the strongest block ciphers available, and is FIPS 140-2 compliant. The encryption keys are managed and protected by the Microsoft-managed keys module, the Microsoft KeyStore.
Yes, as stated: SSAE & ISAE - Data sanitisation process
- No
- Equipment disposal approach
- A third-party destruction service
Data importing and exporting
- Data export approach
- The VaultSpeed GUI supports the download of code and export of metadata at any time
- Data export formats
- Other
- Other data export formats
-
- Natice Code
- CSV
- Data import formats
- Other
- Other data import formats
-
- CSV
- JSON
- XML
Data-in-transit protection
- Data protection between buyer and supplier networks
- TLS (version 1.2 or above)
- Data protection within supplier network
- TLS (version 1.2 or above)
Availability and resilience
- Guaranteed availability
-
To support our customers in using VaultSpeed in an enterprise environment, we have defined a service organization to cope with eventual incidents that can be reported. The incidents will be prioritized and treated according to the defined Service Levels (see details in the table in Column 6). This way we guarantee our quality of service.
The availability is measured based on VaultSpeed not being available (downtime) during office hours, except for planned downtime due to installations and backups.
The availability is measured on the basis of Vaultspeed that is unavailable (downtime) during the office hours, with the exception of planned downtime due to installations and backups. - Approach to resilience
-
In the context of Business Continuity and Disaster Recovery, Vaultspeed fully takes advantage of the cloud provider multi data centre strategies to conceive a high available architecture. Oracle Cloud and Microsoft Azure are typically organized in regions, availability domains, and fault domains. This design provides the fault tolerance and redundancy required to ensure a robust computing environment.
An availability domain is a specific grouping of resources within a region that has redundant power, (low latency) network, (redundant) storage, and compute. An availability domain is considered as a separate data centre, with all the separate resources of an independent data centre within a specific geographical region. In example the Oracle Cloud Infrastructure Frankfurt region is composed of 3 availability domains, meaning 3 data centres interconnected with a low latency redundant network to provide maximum fault tolerance. - Outage reporting
-
The Vaultspeed “Business Continuity Plan” Framework is based around the 4 phases: Prevent, Prepare, Respond and Repair. The “Prevent” phase is mainly addressed during the conception of Vaultspeed architecture, where the main hardening concepts were introduced and Security technical controls were chosen to protect the different layers of the architecture. The focus of the “Prepare” phase is the conception of a resilience architecture in order to establish a mitigation plan to protect the Vaultspeed components against risk and exposures from different angles & vulnerabilities. The aim of the “Respond” phase is to identify as quickly as possible which systems are impacted and identify the potential root cause and convey the necessary communication. The "Respond" phase will further streamline the resolution process by activating the adequate recovery plan based on the previous analysis and assess the resolution.
Vaultspeed fault-tolerance approach is conceived by having redundant environments for both the Vaultspeed Application server node and the PostgreSQL database server node within 1 High Availability Region. There are three environments for the Application Tier and two environments for the Databases Tier. The Cloud operations team handles the service reporting and notification when needed.
Identity and authentication
- User authentication needed
- Yes
- User authentication
- Other
- Other user authentication
-
VaultSpeed support Username & Password, Identity federation with existing provider (for example Google apps) and Dedicated links (VPN)
The Authentication module of the VaultSpeed application is implemented using Oracle Identity Cloud Service (IDCS). Oracle IDCS supports Multi-factor authentication (MFA), MFA is a method of authentication that requires the use of more than one factor to verify a user’s identity.
MFA may include any of the following:
• Something that you know, like a password.
• Something that you have, like a device.
• Something that you are, like your fingerprint. - Access restrictions in management interfaces and support channels
- The Authentication module of the Vaultspeed application is implemented using Oracle Identity Cloud Service (IDCS). The support of these standards enables VaultSpeed to federate identities and enable SSO out of the box. Oracle IDS acts as a Federation hub that can be used to allow secure access to the VaultSpeed Cloud Application by exchanging identity information securely. It reduces the need to manage unnecessary accounts in your enterprise directory and lowers the cost of integrations through support of industry federation standards. The management is conveyed with the VaultSpeed Service Portal.
- Access restriction testing frequency
- At least every 6 months
- Management access authentication
- Other
- Description of management access authentication
- Management Access is implemented through a Bastion Server. The Bastion host acts as a gateway for the cloud environment, all connections from the internet to cloud machines that need to be protected (such as databases) will have to pass through this server. Access to the bastion server is protected by MFA and a One time Password.
Audit information for users
- Access to user activity audit information
- Users have access to real-time audit information
- How long user audit data is stored for
- Between 1 month and 6 months
- Access to supplier activity audit information
- Users have access to real-time audit information
- How long supplier audit data is stored for
- User-defined
- How long system logs are stored for
- Between 1 month and 6 months
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- VaultSpeed
- ISO/IEC 27001 accreditation date
- Not available
- What the ISO/IEC 27001 doesn’t cover
- Not available
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- No
- Cyber essentials plus
- No
- Other security certifications
- No
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
- ISO/IEC 27001
- Information security policies and processes
- VaultSpeed's security policy document is classified information.
Operational security
- Configuration and change management standard
- Supplier-defined controls
- Configuration and change management approach
-
The Vaultspeed code and Architecture are constantly reviewed with a strict code-review process during the deployment in every development stage (Dev, ACC, Pre-Prod, and PROD). External subject experts are involved in the Vaultspeed architecture and code review process..Vaultspeed development follows the Scrum methodology and is inspired by the Open Web Application Security Project (OWASP).
Scrum is an Agile framework that consists of one to four-week sprints. It is designed to help small self-organized teams consistently deliver concrete product features or security capabilities. - Vulnerability management type
- Supplier-defined controls
- Vulnerability management approach
-
The controls include:
VaultSpeed Security architecture
Follow Up on the Vulnerability reports on the Vaultspeed component
The conception of the Vaultspeed architecture in MS Azure
User & Access Management
Setup of MFA & Bastion Servers
In the context of Detective controls, Vaultspeed takes advantage of the Monitoring frameworks provided by the Cloud Providers, which are monitored by our Cloud Security Operations team. MS Azure Security Center prioritizes alerts and the information required to investigate the problem, enabling us to quickly understand what resources were affected and conceive the appropriate action plan and alerts. Vaultspeed Recovery Time Objective of 4 hours. - Protective monitoring type
- Undisclosed
- Protective monitoring approach
-
Vaultspeed evaluates and responds to events that create suspicion of unauthorized access. Vaultspeed ’s Information Security Incident Reporting and Response Policy defines requirements for reporting and responding to incidents. Upon discovery of an incident, Root-cause analysis is performed to identify opportunities for reasonable measures which improve security posture and defense in depth.
In the event that Vaultspeed determines that a security incident has occurred, Vaultspeed promptly notifies any impacted customers or other third parties in accordance with its contractual and regulatory responsibilities.
Information about malicious attempts or suspected incidents is Vaultspeed Confidential and is not externally shared. - Incident management type
- Supplier-defined controls
- Incident management approach
-
Vaultspeed evaluates and responds to events that create suspicion of unauthorized access. Vaultspeed ’s Information Security Incident Reporting and Response Policy defines requirements for reporting and responding to incidents. Upon discovery of an incident, Root-cause analysis is performed to identify opportunities for reasonable measures which improve security posture and defense in depth.
In the event that Vaultspeed determines that a security incident has occurred, Vaultspeed promptly notifies any impacted customers or other third parties in accordance with its contractual and regulatory responsibilities.
Information about malicious attempts or suspected incidents is Vaultspeed Confidential and is not externally shared.
Secure development
- Approach to secure software development best practice
- Supplier-defined process
Public sector networks
- Connection to public sector networks
- No
Social Value
- Fighting climate change
-
Fighting climate change
VaultSpeed is a cloud native SaaS solution that is deployed on today’s most scalable and secure IaaS and PaaS providers available in the market. This empowers VaultSpeed to use an, optimal pool of resources and inherits from these proven cloud solutions that meets the most demanding security, data protection, and compliance requirements.
Microsoft Azure, sees sustainability and humanity's response to climate change as one of the greatest challenges of our lifetime. Microsoft Azure is committed to put sustainable technologies at the heart of our innovation—to make sure they are adapting and growing along with the planet with the lowest environmental impact. - Covid-19 recovery
-
Covid-19 recovery
VaultSpeed’s management team meets continuously to assess and appropriately respond to the crisis as it evolves. No need to say, everyone’s health and welfare are a priority, as most VaultSpeed employees work from home. We are a SaaS native organization and have extensive online collaboration capabilities to help ensure business continuity. We’re working tirelessly to help everyone stay safe while at the same time continuing to serve our customers. - Tackling economic inequality
-
Tackling economic inequality
Social purpose is woven into VaultSpeed core believes. From creating new businesses and new employment opportunities, to improving education and training, VaultSpeed is committed to tackling economic inequality at root. Our overriding vision is to help lower the unequal distribution of income and opportunity between different groups in society. - Equal opportunity
-
Equal opportunity
We believe that innovation starts with inclusion and to create the future we need people with diverse backgrounds, perspectives, and abilities. That’s why we’re committed to creating a workplace where all kinds of people can do their best work. It’s when everyone’s voice is heard and valued that we’re inspired to go beyond what’s been done before. - Wellbeing
-
Wellbeing
The VaultSpeed Wellbeing programme is geared to encouraging vitality, a healthy quality of life, and a positive working environment in which people thrive.
‘My Wellbeing, My Life’ encompasses an array of initiatives, from physical and mental health, nutrition, and sleep programmes, to financial and legal support, stress management, and support during periods of home working.
Our priority is to be proactive, so employees can gain awareness, education, and support to successfully function at work and at home, free from factors which may negatively impact upon their health.
Pricing
- Price
- £3,599 to £10,999 a licence a month
- Discount for educational organisations
- Yes
- Free trial available
- Yes
- Description of free trial
- With an agreed and signed proposal, we can offer a 2 month trail at the beginning of a new contract, with a break clause.