ITPS Limited

Private Cloud and Dedicated Private Cloud

Hosted in our Tier 3 data centre, our private cloud and dedicated private cloud solutions are aligned to meet the secure standards of high compliance industries which handle highly sensitive data.

Features

• Private Cloud (Pool of vRAM, vCPU, and Storage)
• Dedicated Private Cloud (Hosted on Dedicated Hardware)
• Virtual Firewalls (VPN, Secure Gateways)
• Environmental Monitoring, IDS, CCTV, Strict Access Control
• N+ Design for 99.99% uptime guarantee
• Multi layered security model
• Hybrid Cloud Enabled including Edge Computing
• Advanced Energy Management System for Sustainability
• Access to Management Portal (VMWare Cloud Director)

Benefits

• Multiple Operating Systems supported and maintained
• Simple deployment, management and Operations of Networks
• Self Managed or Fully Managed by ITPS
• Fully accredited, Network, Compute and Storage Platform
• Secure build for highly sensitive data requirements
• OPES and CAPEX Options Available
• DRaaS Options available upon request
• Single and Multi-site options to provide a resilient H/A platform
• Hybrid cloud Option - On-Prem, Azure, AWS
• Direct connection into Government Networks

£1 to £200 a virtual machine a month

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at David.Warrington@itps.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

914086791504692

Contact

David Warrington
0191 442 8300
David.Warrington@itps.co.uk

Service scope

• Service constraints: None
• System requirements: None - dependent on configuration

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: We offer a number of different support and managed service options.; ; Standard Support Monday - Friday 08:00 to 18:00 - included as standard with access to a technical account manager.; ; We offer 24 hours, 7 days a week at an additional cost.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: We offer a number of different support option depending on price.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: ITPS provides, among other services, consultancy services that assist with the following:; - Cloud Readiness Assessments; - Migration; - User Training ; - Full Management of the Environment
• Service documentation: Yes
• Documentation formats:
  • HTML
  • ODF
  • PDF
  • Other
• Other documentation formats: Microsoft Office
• End-of-contract data extraction: Customisable, according to the kind of tools deployed. Bespoke in each case.
• End-of-contract process: Any end-of-contract services can either be built into the contract or paid for as additional services.

Using the service

• Web browser interface: Yes
• Using the web interface: Full on-line portal offered. Menu-based system to locate the correct service and manipulate elements of the service.
• Web interface accessibility standard: None or don’t know
• How the web interface is accessible: Supported Browsers; ; Internet Explorer 10; Internet Explorer 11 ; Firefox; Chrome ; Safari; Microsoft Edge
• Web interface accessibility testing: N/A
• API: Yes
• What users can and can't do using the API: All functions within Cloud are fully accessible via API
• API automation tools:
  • Ansible
  • Terraform
  • Puppet
  • Other
• Other API automation tools: VCloud Director
• API documentation: Yes
• API documentation formats:
  • HTML
  • ODF
  • PDF
  • Other
• Command line interface: No

Scaling

• Scaling available: Yes
• Scaling type:
  • Automatic
  • Manual
• Independence of resources: We offer two options. Option 1 is multi-tenanted and each customer is containerised within their own subscription ensuring their environment is logically separated. Option 2 is a Dedicated environment with dedicated hardware for additional security.
• Usage notifications: Yes
• Usage reporting: Email

Analytics

• Infrastructure or application metrics: Yes
• Metrics types:
  • CPU
  • Disk
  • HTTP request and response status
  • Memory
  • Network
  • Number of active instances
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a CHECK service provider
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
  • Hardware containing data is completely destroyed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

• Backup and recovery: Yes
• What’s backed up:
  • Virtual Machines
  • Clustered Servers
  • Attached Storage
  • Databases
  • Applications
• Backup controls: Users can recover backups themselves, for example through a web portal.
• Datacentre setup: Multiple datacentres with disaster recovery
• Scheduling backups: Users contact the support team to schedule backups
• Backup recovery:
  • Users can recover backups themselves, for example through a web interface
  • Users contact the support team

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Bonded fibre optic connections
  • Legacy SSL and TLS (under version 1.2)
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

• Guaranteed availability: 99.99% - Availability indication is based on an average 730 hours per month. Excludes planned and emergency maintenance.
• Approach to resilience: ITPS VCloud platform, utilises VMWare VCloud Director to ensure resilience is built into every solution and design. We also offer Private/Hybrid compute across two data centres, which are geographically separate.
• Outage reporting: All outages will be reported via the Service Status page and the notifications service within the ITPS Customer Portal. Outages are identified as Planned maintenance, Emergency maintenance, and platform issues. In addition, the designated Service Delivery Manager will proactively contact customers as appropriate.

Identity and authentication

• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google apps)
  • Dedicated link (for example VPN)
  • Username or password
• Access restrictions in management interfaces and support channels: Access is restricted through VMWare native RBAC. Other restrictions can be managed through the native firewalls for both internet facing access and internal network micro segmentation. In addition, management can leverage AD for additional direct access control to virtual machine instances.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
• Devices users manage the service through:
  • Dedicated device on a segregated network (providers own provision)
  • Dedicated device on a government network (for example PSN)
  • Dedicated device over multiple services or networks
  • Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)
  • Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: BSI
• ISO/IEC 27001 accreditation date: 20/01/2022
• What the ISO/IEC 27001 doesn’t cover: No Exclusions
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: ITPS is ISO27001 and Cyber Essentials Plus accredited and has a full suite of associated accredited information security policies that are managed and maintained by our Chief Technology Officer . We design and implement solutions which meet stringent security requirements and meet current industry standards as well as aligning with customers’ information policies and procedures to ensure we protect our customers’ systems and data from security breaches and cyber attacks. We continually monitor and review our security practices, working closely with officially appointed security advisors and accreditation bodies, and as such are very familiar with current legislation and standards, best-practice guidelines.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: We follow ITIL 4 and ISO27001 aligned Change and Configuration processes for all changes.; All changes to infrastructure and systems are managed through these processes ensuring that standardised methods and procedures are followed for all. The process ensures that all changes are formally assessed, authorised and controlled to minimise any adverse service impact. ; Our Change Advisory Board assess and validates all Changes from a business, technical, security and delivery perspective, drawing on subject matter experts when required. ; A Forward Schedule of Change is maintained.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: We work closely with officially appointed security advisors/accreditation bodies/comply with current legislation/standards e.g. NCSC guidelines. ITPS are Cyber Security Essentials Plus certified, and are recognised as a Security Architecture Specialist by Cisco Systems. We deploy automated tools for vulnerability monitoring. Alerts are immediately investigated by an engineer and any identified threats immediately removed from the network, to eliminate the risk of potential infection. Critical patches are tested on a sand-boxed device on-receipt and deployed across the infrastructure once proven to achieve maximum cover with minimum business impact.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Available on Request
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: ITPS has a documented incident management policy and process, which are implemented, maintained and assessed in accordance with the guidance from ITILv.4 and current ISO27001 standards. This activity is responsible for the progression of alerts generated by automated monitoring systems, issues identified by ITPS personnel, and incidents identified and reported to the ITPS by its customers/partners. All incidents are reported into a central ticketing system, which ensures that each is promptly assigned to an appropriate resource, and its progress tracked (and escalated, as required) to resolution. Incident Reports are provided via our Service Desk.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: Yes
• Who implements virtualisation: Supplier
• Virtualisation technologies used: VMware
• How shared infrastructure is kept separate: For our Private Cloud option, the compute/storage layer, consumers are separated via robust hypervisor controls based on VMWare VSphere. For our Dedicated Private Cloud option, we add additional separation by hosting the environment on dedicated hardware.

Energy efficiency

• Energy-efficient datacentres: Yes
• Description of energy efficient datacentres: Advanced Energy Management System/Building Management System /Condition based Maintenance Systems to ensure both high availability and low energy costs drivers are met

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  We are committed to preventing pollution and to complying with all relevant environmental legislation, regulations and other environmental requirements. ; ; We will regularly evaluate the environmental impact of our activities, products and services and we will take action to continually improve our environmental performance. ; ; It is our policy to: ; ; · Minimise the use of energy, water and natural resources ; ; · Minimise waste through prevention, re-use and recycling where possible ; ; · Dispose of waste safely and legally ; ; · Avoid the use of hazardous materials, where practical ; ; · Work with environmentally responsible suppliers ; ; · Prevent environmental damage and minimise nuisance factors such as noise and air pollution. ; ; We will define environmental objectives, targets and improvement actions that are related to this policy and to our significant environmental aspects. We will regularly evaluate progress. ; ; We are committed to providing relevant environmental training and promoting environmental awareness to employees and, where appropriate, to suppliers and to communicating our environmental performance. ; ; We will implement processes to prevent environmental non-conformities and to ensure that we are prepared to deal with potential environmental emergencies. ; ; This policy will be regularly reviewed and updated to take account of organisational priorities and changes, environmental legislation and best practice. ; ; Detailed plans of how we achieve, measure and report against environmental governance standards are contained within the following documents: ; ; Environmental Policy ; ; Carbon Reduction Plan ; ; Net Zero by 2050 Policy ; ; Health and Safety Policy

  Covid-19 recovery

  To meet the challenges posed by the pandemic, IT Professional Services Ltd had to react in agile and decisive way. As we move into the next phase, now is the time for ITPS to seek out and seize the opportunities emerging in the recovery. This involves conducting an “after-action review” to collect data and insights on lessons learned from the pandemic, and then using these to prioritise actions to enhance business value today and build strategic resilience for tomorrow. IT Professional Service Ltd has Identified three key lessons that we have adopted for long-term resilience: 1. Plan and prepare for the next inevitable disruption by designating a crisis response team, designing a crisis response plan aligned to our strategy, goals and purpose, and building an integrated resilience program. ; ; ITPS support the physical and mental health of staff by offering free fruit and healthy snacks at work, available at all times. We regularly communicate on topics including mental health in the workplace and promote the resources available via the Perkbox app. ITPS have a large team of qualified mental health first aiders. ; ; ITPS have made every effort to support COVID-19 recovery including the provision of hand sanitiser around the building and on each person’s desk, cleaning wipes available for all workstations and increase in hours available for formal cleaning within the building including touch points cleaned four times per day. ITPS have offered hybrid working since returning to work following the pandemic and encourage staff to work from home if they have any Covid symptoms. ITPS offer free lateral flow tests to all staff. ITPS are making progress towards sustainable travel targets including the provision of a company salary sacrifice scheme to buy electric cars and the fitting of additional charging points within the car park.

  Tackling economic inequality

  We aim to make a positive difference to our local community by delivering economic and social benefits, and by being a good neighbour. ; ; ITPS has built a particularly strong reputation for supporting schools, universities, charities and other good causes, many of them nominated by our staff. We strive to be a business with a heart and a real commitment to social responsibility, generating a ‘feel good’ factor among our staff and client base. ; ; Our support ranges from regular fund-raising events for our corporate charities through to sponsoring grass roots football teams in our local area. ; ; We also support various smaller good causes on an ad-hoc basis, nominated by our staff. Full details of what we do and how we measure it can be found in our Community and Charitable Governance Policy and Procedure.

  Equal opportunity

  ITPS recognises the benefits of a diverse workforce and is committed to providing a working environment that is free from discrimination. ; ; The Company will seek to promote the principles of equality and diversity in all its dealings with employees, workers, job applicants, clients, customers, suppliers, contractors, recruitment agencies and the public. ; ; All employees and those who act on the Company's behalf are required to adhere to the company policy when undertaking their duties or when representing the Company in any other guise. ; ; The Company aims to ensure that no employee or job applicant is subject to unlawful discrimination, either directly or indirectly, on the grounds of gender, race (including colour, nationality and ethnic origin), disability, sexual orientation, marital status, part-time status, age, religion or belief. This commitment applies to all aspects of employment, including: ; ; recruitment and selection, including advertisements, job descriptions, interview and selection procedures ; ; training ; ; promotion and career-development opportunities ; ; terms and conditions of employment, and access to employment-related benefits and facilities ; ; grievance handling and the application of disciplinary procedures ; ; selection for redundancy ; ; All employees will have equal access to training and other career-development opportunities appropriate to their experience and abilities. ; ; The Company will take appropriate positive action measures (as permitted by equal opportunities legislation) to provide specialist training and support for groups that are under-represented in the workforce and encourage them to take up training and career-development opportunities.

  Wellbeing

  IT Professional Services Limited is committed to providing a healthy working environment and improving the quality of working lives for all staff. The wellbeing strategy aims to support staff in their physical, mental, emotional and financial wellbeing. ; ; The wellbeing strategy’s ultimate goal is to improve the health, safety and wellbeing of the company’s staff and to prevent work associated ill health, for the overall benefit of staff and the organisation. ; ; Examples of employee wellbeing activities at IT Professional Services include: ; ; Hybrid working, three days in the office and two days at home ; ; Flexible working and family friendly flexibility ; ; Access to on line resources via the company’s Perkbox subscription which contains a huge number of well-being resources to access. ; ; Trained mental health first aiders ; ; Regular staff communications promoting good mental and physical health including signposting to NHS talking therapies contacts ; ; Generous Annual Leave allowance plus your birthday off work ; ; Enhanced sick pay, full pay up to 4 months ; ; Enhanced maternity and paternity leave ; ; Salary sacrifice schemes including tech scheme, cycle to work and electric cars ; ; Clearly defined training and development plans ; ; Freely available fresh fruit and breakfasts available ; ; An active social calendar ; ; Partnering with a recognised UK expert to meet all Health and Safety requirements ; ; Involving staff and keeping them informed by regular staff briefings

Pricing

• Price: £1 to £200 a virtual machine a month
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at David.Warrington@itps.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.