Transputec Limited

NoSQL Database

Transputec offers end-to-end NoSQL database solutions on AWS and Azure, including setup, configuration, deployment, and support. Our services ensure optimal performance, scalability, and security, tailored to public sector needs. We provide 24/7 support, data migration, and robust backup and disaster recovery strategies

Features

• Amazon DynamoDB: Fully managed NoSQL database service
• Amazon DocumentDB (with MongoDB compatibility)
• Amazon Neptune: Fully managed graph database service.
• Amazon Keyspaces (for Apache Cassandra)
• Amazon ElastiCache: Fully managed in-memory caching service.
• Azure Cosmos DB: Globally distributed, multi-model database service.
• Azure Table Storage: NoSQL key-value store service
• Azure Cache for Redis: Fully managed in-memory data store
• Azure Database for Cosmos DB: Fully managed NoSQL database service.
• Azure Database for MongoDB: Fully managed MongoDB-compatible NoSQL database.

Benefits

• Seamless scalability with high performance and low latency.
• Provides built-in security like encryption at rest
• High availability.
• Provides consistent single-digit millisecond latency.
• Globally distributed, multi-model database service
• Offers automatic scaling and multi-master replication
• Improves application performance

£0.15 an instance an hour

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at G-cloud@transputec.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

834682252035117

Contact

G-Cloud Team
0203 5886570
G-cloud@transputec.com

Service scope

• Service constraints: None
• System requirements: None

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Response times are dependant on service level procured
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Yes, at an extra cost
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: WCAG 2.1 AA or EN 301 549
• Web chat accessibility testing: None
• Onsite support: Yes, at extra cost
• Support levels: Subject to agreement a bespoke service is offered from standard to advanced such as a fully managed service. technical Account Managers and Strategic Advisors are available. Costs are based on scope of agreement
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Connect their applications to the databases via secure connection protocol.
• Service documentation: Yes
• Documentation formats:
  • PDF
  • Other
• Other documentation formats: Microsoft Word, Excel and PowerPoint
• End-of-contract data extraction: Agreement on data to be anonymised or deleted. Transfer of any data subject to the data source and destination
• End-of-contract process: When an Azure or Database service contract approaches its end, Firstly, data extraction is prioritized, involving the retrieval of work items, repositories, build artefacts, and test plans from Azure database services. Documentation of customizations, configurations, and integrations within the respective platforms is crucial for future reference and continuity.

Using the service

• Web browser interface: Yes
• Using the web interface: Manage the entire databases service via web portal
• Web interface accessibility standard: WCAG 2.1 A
• Web interface accessibility testing: AWS adheres to the Web Content Accessibility Guidelines (WCAG) 2.1; Microsoft Azure has commitments to accessibility but specific rating scores are not found
• API: Yes
• What users can and can't do using the API: All functionality is exposed via an API
• API automation tools: Other
• Other API automation tools:
  • AWS-CloudFormation
  • CodePipeline
  • AWS Lambda
  • Azure DevOps
  • Azure Automation
• API documentation: Yes
• API documentation formats: HTML
• Command line interface: Yes
• Command line interface compatibility: Windows
• Using the command line interface: Deploy, Configure and Perform some administrative tasks

Scaling

• Scaling available: Yes
• Scaling type: Automatic
• Independence of resources: Configure auto scaling
• Usage notifications: Yes
• Usage reporting: Email

Analytics

• Infrastructure or application metrics: Yes
• Metrics types: Other
• Other metrics:
  • Performance
  • Resource Utilisation
  • Security
• Reporting types: Real-time dashboards

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: Microsoft Azure and Amazon Web Services

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with another standard
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: A third-party destruction service

Backup and recovery

• Backup and recovery: Yes
• What’s backed up: Databases: Full, Point in Time & Multi Zonal
• Backup controls: Automated backups with option for user backup.
• Datacentre setup: Single datacentre with multiple copies
• Scheduling backups: Supplier controls the whole backup schedule
• Backup recovery:
  • Users can recover backups themselves, for example through a web interface
  • Users contact the support team

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: Azure guarantees SLAs of 99.999% for read and write operations on Azure Cosmos DB, while AWS commits to SLAs of 99.99% for read and write availability in Amazon DynamoDB within a single region.
• Approach to resilience: Multi zone and multi data centre replication configuration
• Outage reporting: Public Dashboard

Identity and authentication

• User authentication: 2-factor authentication
• Access restrictions in management interfaces and support channels: Role based access provisions
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Devices users manage the service through: Dedicated device on a government network (for example PSN)

Audit information for users

• Access to user activity audit information: You control when users can access audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: LRGA Limited
• ISO/IEC 27001 accreditation date: 31st May 2023
• What the ISO/IEC 27001 doesn’t cover: Nothing relevant to this framework response
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: ISO/IEC 27001:2013; CyberEssentials; All issues and suspected non-compliance and suspicious activities are reported immediately to our SoC and senior managment (Director level and above) via monitored mailbox/DL (nc@Transputec.com)

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: Configuration management - subject to agreement full lifecycle management; ; Change management - RFCs raised for Change Board Authority decision include security impacts including change to availability, integrity and confidentiality, along with rollback plan - subject to sign-off from a technical, service delivery, security and commercial decision maker
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: "AWS Security performs vulnerability scans on the host operating system, web applications, and databases in the AWS environment. Approved 3rd party vendors conduct external assessments (minimum frequency: quarterly). Identified vulnerabilities are monitored and evaluated. Countermeasures are designed and implemented to neutralise known/newly identified vulnerabilities.; ; AWS Security monitors newsfeeds/vendor sites for patches and receives customer intelligence via http://aws.amazon.com/security/vulnerability-reporting/.; ; Security and Compliance is a shared responsibility between AWS and the customer, and the customer must perform some of the vulnerability management process. See https://aws.amazon.com/compliance/shared-responsibility-model/ for more details." ; ; Microsoft Azure vulnerability management is layered across multiple services: https://learn.microsoft.com/en-us/azure/?product=security
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Supplier provides full range of security services, tools and standards which can be enabled and configured. Transputec uses multiple industry tools to monitor threats and vulnerabilities with a SOC team to assess and mitigate any threats.
• Incident management type: Supplier-defined controls
• Incident management approach: Standard approach to incident management, with users raising a support ticket to access support; Follow ISO27001 certified and ITIL processes for configuration and change management

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: Yes
• Who implements virtualisation: Supplier
• Virtualisation technologies used: Other
• Other virtualisation technology used: AWS uses the Xen hypervisor for EC2 instances and the Nitro System for hardware offloading and isolation.; Azure uses Hyper-V as its hypervisor for Azure Virtual Machines and other virtualized service
• How shared infrastructure is kept separate: Network isolation using virtual private clouds (VPCs) or network security groups (NSGs).; Resource isolation through hypervisor-based isolation for VMs or containerization for containers.; Access controls and permissions to ensure that users from different organizations cannot access each other's resources.; Data encryption and segregation to prevent unauthorized access to data.

Energy efficiency

• Energy-efficient datacentres: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  ISO 14001:2013 certified; Science Based Targets Initiative registered; Transputec is committed to managing its CO2 emissions and is focused on working with its clients and suppliers to address Scope 3 emissions; ; ISO 14001:2013 certified; Science Based Targets Initiative registered; Transputec is committed to managing its CO2 emissions and is focused on working with its clients and suppliers to address Scope 3 emissions For more information please visit https://www.transputec.com/about-us/sustainability/

  Equal opportunity

  Transputec is and always has been a non-discriminatory organisation, employing a global workforce without bias or prejudice and are supportive of gender diversity Transputec is part of the Minority Supplier Development UK (MSDUK) Ethnic Minority Business (EMB) network. As MSDUK EMB suppliers we are part of a broad network of innovative, high growth minority owned businesses, providing an important role in the UK and international IT services supply chain.. for more information please see of website.; https://www.transputec.com/about-us/social-responsibility/

  Wellbeing

  Transputec has an open approach to health and wellbeing, encouraging communication and understanding through wellbeing events delivered generally on an annual basis as well as community out reach and our international outreach programme; https://www.transputec.com/about-us/our-charity-partners/

Pricing

• Price: £0.15 an instance an hour
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: Amazon DynamoDB includes 25GB of indexed storage, 25units of write capacity, and 25units of provisioned read capacity. Uptp 25GB of data transfer; Azure Cosmos DB, includes 400 RU/s and 5GB of storage.. Azure Cosmos DB offers 25GB of storage for every month of the first year

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at G-cloud@transputec.com. Tell them what format you need. It will help if you say what assistive technology you use.