Kubrick Group

Cloud Finance & Security Management

Kubrick's service combines financial management with sustainability initiatives, for cloud spending optimisation and minimal environmental impact. By adopting FinOps and sustainable practices, organizations can reduce costs, and their carbon footprint. Cloud Security Management services focuses on securing cloud environments using industry best practices like Defense in Depth and Zero Trust.

Features

• Continuous integration pipeline development, integrated FinOps practices
• Environmentally sustainable FinOps
• Access management policy implementation, security and encryption mechanism implementation
• Cloud environment continuous monitoring
• Cloud usage pattern visibility, cost saving identification
• FinOps sustainability metrics, sustainability benchmarks integration
• Sustainability focused optimisation algorithms, Sustainability focused automation scripts
• Automated compliance assessment configuration, automated compliance assessment configuration
• Compliance as code policy implementation, compliance as code enforcement mechanisms
• Security information management, continuous vulnerability analysis patching, intrusion prevention

Benefits

• Financial planning improvements, ROI demonstrability
• Environmental conservation optimisation, Cloud resource efficiency
• Security risk mitigation, maintain data privacy, demonstrate security compliance
• Audit readiness, Threat preparedness
• Financial governance accountability, Business objective alignment
• Measure cloud environmental impact, Reduce cloud environmental impact
• Transparent sustainability reporting, cloud sustainability initiatives
• Regulatory requirements compliance, Industry standard compliance
• Increased audit readiness, increase compliance confidence posture
• Risk mitigation enhancements, risk readiness, threat prevention

£410 to £1,375 a unit a day

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at nickallen@kubrickgroup.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

926436223717073

Contact

Nick Allen
+447971125836
nickallen@kubrickgroup.com

Planning

• Planning service: Yes
• How the planning service works: Our service encapsulates a thorough planning component that will seek to discover the needs of the organisation in the areas of financial operations, cost management, environment and sustainability and compliance and security. This will aim to surface all aspects of the aspirational business goals as well as critical challenges or blockers that are faced. We will do this by working closely with internal stakeholders such as compliance teams, sustainability champions and security teams.; ; The outcomes of this discovery will drive the specification of environment blueprints including, but not limited to identity and access management controls, policy enforcement, cost control alerts and budgets, workload optimisation algorithms etc. All of the above will be designed with Infrastructure as Code and CI/CD based patterns in mind for the target environments.
• Planning service works with specific services: Yes
• Hosting or software services the planning service works with:
  • Microsoft Azure
  • Google Cloud Platform
  • Amazon Web Services

Training

• Training service provided: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: We approach implementation of Finops and Security controls in the same way as any type of cloud build programme. We adopt industry best practises like Infrastructure as Code and CI/CD practises in everything we do. If these approaches are new for a customer we will guide them through the delivery process and explore implementation options. Our consultants are trained across different technologies to work within a customer's existing development and CI/CD frameworks where required. The requirements identified in the planning phase are prioritised around the highest priority use-cases and built out using our agile delivery processes with regular playback and review with key stakeholders. Our business led approach is deliberate and puts stakeholders and user audiences at the centre of delivery process in order to continually demonstrate outcomes; we see technology as the means to the end, not the end in itself. The nature of this service is to deliver rigorous cost and security controls across cloud environments exhibiting high levels of observability, auditability and automated remediation where needed. In order to guarantee this we quality assure all aspects of delivery and perform rigorous testing to ensure the solutions we build are fit for purpose and meet the intended requirement.
• Setup or migration service is for specific cloud services: Yes
• List of supported services:
  • Microsoft Azure
  • Google Cloud Platform
  • Amazon Web Services

Quality assurance and performance testing

• Quality assurance and performance testing service: No

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
  • Other
• Other security services:
  • Implementation of automated vulnerability scanning and threat detection mechanisms
  • Deployment of intrusion detection and prevention systems (IDS/IPS)
  • Deployment of security information and event management (SIEM) solutions
  • Integration of security automation tools and orchestration frameworks
  • Configuration and deployment of automated compliance assessment and reporting tools
  • Implementation of compliance as code (CaC) practices and policy enforcement
  • Development of audit ready documentation, reports, and evidence artifacts
• Certified security testers: No

Ongoing support

• Ongoing support service: No

Service scope

• Service constraints: Delivery Leads and Principal Consultants can only be engaged on a part time basis. The specifics of any service depend on the client and will be discussed and agreed in full before commencing any work.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: UK working hours 8:30-17:30, typically responded to within 2 hours
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Support levels: Our consultants will work your standard business hours typically Monday – Friday 8:30 – 17:30. Commercial or performance escalations can be made to the Account manager, Account Director or respective Head of Sector. Any pastoral escalations should be made to the the Success Manager who you will be typically introduced to during the first month of the engagement. Any questions or escalations should be made to the account manager first via email or phone call who will provide the appropriate support. All of this is included as standard as part of our service for no additional costs. Ad hoc additional technical support is provided by either a Solutions Lead or Principal consultant across one of our specialisms with the appropriate skillset to provide you with additional scoping, technical Q&A sessions, workshops, or facilitation sessions.

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Social Value

• Social Value:

  Social Value

  Equal opportunity

  Equal opportunity

  We strive to bridge the technology skills-gap and are committed to playing a key role in improving diversity in the industry. Diversity over Homogeneity is a core Kubrick value: We respect the differences in others and understand the importance of diverse thoughts, experiences, backgrounds and perspectives when formulating new ideas and creating solutions. We believe in creating equal opportunities for all, pushing against barriers that have existed for too long.; Recruitment selection has always been conducted on the basis of merit, against objective criteria avoiding discrimination. ; We are committed to applying our equality, diversity and inclusion policy at all stages of recruitment. We carry out shortlisting, interviewing and selection without regard to applicant's sex, gender identity, sexual orientation, marital or civil partnership status, skin colour, race, nationality, ethnic or national origins, religion/belief, age, pregnancy or maternity leave or trade union membership.; Advertisements actively avoid stereotyping or using wording that may discourage particular groups from applying.; We never exclude candidates with a disability unless it is clear that the candidate is unable to perform a duty that is intrinsic to the role, having taken into account reasonable adjustments. Candidates are only asked questions about their health where this is directly necessary for a particular role and, in any event, only once they have been shortlisted.; To prevent any candidate from being disadvantaged because of a disability or any other factor, the individual responsible for communicating with applicants confirms with each candidate whether or not they require any reasonable adjustments. Examples of previous adjustments made:; 1.Ensuring easy access to the premises for an interview.; 2.Adapting psychometric tests for accessibility needs.; 3.Replacing psychometric tests with an alternative.; 4.Providing an alternative to a telephone interview for a deaf candidate.; 5.Providing additional time in testing stages for individuals with Dyslexia and other learning needs,

Pricing

• Price: £410 to £1,375 a unit a day
• Discount for educational organisations: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at nickallen@kubrickgroup.com. Tell them what format you need. It will help if you say what assistive technology you use.