BCN Private Cloud - Healthcare
BCN's Private Cloud provides secure, scalable, and bespoke IT solutions for NHS Primary Care, Acute, Mental Health, Community Care, Integrated Care system, ICS, Integrated Health Board and ICB.
Features
- Secure data storage for NHS services
- Scalable NHS IT infrastructure
- Customizable solutions for NHS
- Flexible support options
- Compliance with NHS regulations
- Disaster recovery options
- High-speed network connectivity
- Advanced virtualisation technology
- Seamless migration support
- Environmentally friendly operations
Benefits
- Enhances data security for NHS services
- Facilitates IT scalability
- Offers tailored solutions for Healthcare Services and Systems
- Provides round-the-clock support
- Ensures NHS regulatory compliance
- Safeguards against disasters
- Promotes efficient connectivit
- Utilizes cutting-edge technology
- Assists in smooth migration
- Supports green initiatives
Pricing
£10.00 a unit a month
- Education pricing available
Service documents
Request an accessible format
Framework
G-Cloud 14
Service ID
9 4 2 9 2 7 6 6 4 4 3 1 2 5 8
Contact
BCN Group Ltd
Mr Ric Kelly
Telephone: 0345 095 7000
Email: ric.kelly@bcn.co.uk
Service scope
- Service constraints
- N/A
- System requirements
- Suitable internet connectivity
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
-
Standard Support Hours - Monday - Friday 08:00 - 18:00Hrs
Extended Support Hours - Monday - Friday 07:00 - 19:00Hrs
Out of Hours Support - P1 ONLY - 24/7 (Excluding Christmas Day)
Priority 1: Standard / Extended Hours - Response Within 30 minutes
Priority 1: (Out of Hours) Response Within 60 minutes
Priority 2: Standard / Extended Hours – Response Within 2 hours
Priority 3 or 4: Standard / Extended Hours – Response Within 4 hours
Priority 5: Standard / Extended Hours – Response Within 4 hours - User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- WCAG 2.1 AA or EN 301 549
- Phone support
- Yes
- Phone support availability
- 24 hours, 7 days a week
- Web chat support
- No
- Onsite support
- Yes, at extra cost
- Support levels
- Comprehensive Account Management & Support options are available. Availability BCN Managed Cloud is designed and maintained to achieve a target availability of 99.9% measured on a calendar month. Support Hours 50+ dedicated support engineers across 3 UK offices provide technical support 24 hours a day, 7 days a week, 365 days a year. * This includes proactive monitoring and alerting of core services. *Waking Hours = 7am to 7pm Monday to Friday (from manned helpdesk) Ticket Severity All tickets logged to the Service Desk will be allocated a severity level based on the following methodology. This will ensure that reporting on service levels may be achieved to the optimum format. 1 - Catastrophic business disruption 2 - Severe business disruption or user critical issue 3 - Business disruption or multiple user issue 4 - Minor business disruption or user issue 5 - Job or Task Service Desk Staff will evaluate the Incident and allocate a priority level after which it will be assigned to the appropriate staff. This will be based on the required skill set to resolve the incident in a timely manner.
- Support available to third parties
- Yes
Onboarding and offboarding
- Getting started
- BCN will engage with the customer to identify business requirements & the optimal solution required. Whether that is a migration from other data stores or development of a new solution, BCN will guide from start to finish. BCN follow the below methodology for delivering projects: Define The first step is always information. We take the time to understand your business. Build We build on our research. Your solution is designed to leverage the insights we learn. Deliver We only ever deliver once we're completely happy and fully tested. Evolve Digital solutions don't stop, they evolve. Metrics & analytics keep pushing you forward.
- Service documentation
- Yes
- Documentation formats
- End-of-contract data extraction
- The customer can initiate data extraction from BCN Managed Cloud via normal data access methods prior to the end of the contract. BCN Group can assist with data extraction under a separate professional services order, not included in the standard service.
- End-of-contract process
-
Upon terminating a cloud subscription BCN Group will store customer data for 60 days, to give you time to renew the associated contract. This data will be inaccessible to the client. After this 60-day retention period, BCN Group will delete the customer data, including any cached or backup copies.
BCN Group can assist with data extraction under a separate professional services order, not included in the standard service.
Using the service
- Web browser interface
- No
- API
- No
- Command line interface
- No
Scaling
- Scaling available
- Yes
- Scaling type
-
- Automatic
- Manual
- Independence of resources
- The BCN Managed Cloud Hosting service is highly available with ample capacity above peak user demand, balanced across multiple datacentres. Resources are allocated and reserved in advance of being required for consumption.
- Usage notifications
- Yes
- Usage reporting
Analytics
- Infrastructure or application metrics
- Yes
- Metrics types
-
- CPU
- Disk
- HTTP request and response status
- Memory
- Network
- Number of active instances
- Reporting types
-
- API access
- Real-time dashboards
- Reports on request
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- Up to Security Clearance (SC)
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
- United Kingdom
- User control over data storage and processing locations
- No
- Datacentre security standards
- Complies with a recognised standard (for example CSA CCM version 3.0)
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- Another external penetration testing organisation
- Protecting data at rest
-
- Physical access control, complying with another standard
- Encryption of all physical media
- Data sanitisation process
- Yes
- Data sanitisation type
-
- Explicit overwriting of storage before reallocation
- Deleted data can’t be directly accessed
- Equipment disposal approach
- A third-party destruction service
Backup and recovery
- Backup and recovery
- Yes
- What’s backed up
-
- Virtual Machines
- Storage
- Databases
- Office 365
- Backup controls
-
All data is protected by default, to standard BCN Group schedules. Clients can request exceptions and amendments to protection on an ad-hoc basis.
Client can also determine what they backup directly if required - Datacentre setup
- Multiple datacentres with disaster recovery
- Scheduling backups
- Supplier controls the whole backup schedule
- Backup recovery
-
- Users can recover backups themselves, for example through a web interface
- Users contact the support team
Data-in-transit protection
- Data protection between buyer and supplier networks
-
- Private network or public sector network
- TLS (version 1.2 or above)
- IPsec or TLS VPN gateway
- Data protection within supplier network
-
- TLS (version 1.2 or above)
- IPsec or TLS VPN gateway
Availability and resilience
- Guaranteed availability
- All datacenter hosting facilities and contained infrastructure components are designed with resiliency in mind, and sufficient redundancy to deliver 99.9% availability.
- Approach to resilience
- Available on request
- Outage reporting
- Email alerts
Identity and authentication
- User authentication
-
- 2-factor authentication
- Dedicated link (for example VPN)
- Username or password
- Access restrictions in management interfaces and support channels
- Fully audited RBAC with identity separation between client administrative access and internal business access. Providing two independent identity infrastructures audited in one location, access to client systems and data is provided only through the ring fenced administrative provider.
- Access restriction testing frequency
- At least once a year
- Management access authentication
-
- 2-factor authentication
- Identity federation with existing provider (for example Google Apps)
- Dedicated link (for example VPN)
- Username or password
- Devices users manage the service through
-
- Dedicated device on a segregated network (providers own provision)
- Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)
Audit information for users
- Access to user activity audit information
- Users contact the support team to get audit information
- How long user audit data is stored for
- Between 1 month and 6 months
- Access to supplier activity audit information
- Users contact the support team to get audit information
- How long supplier audit data is stored for
- Between 1 month and 6 months
- How long system logs are stored for
- Between 1 month and 6 months
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- SGS
- ISO/IEC 27001 accreditation date
- 25/06/2020
- What the ISO/IEC 27001 doesn’t cover
- BCN Group activities related to the provision of this service are covered by ISO 27001
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- Yes
- Cyber essentials plus
- Yes
- Other security certifications
- No
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
- ISO/IEC 27001
- Information security policies and processes
- BCN Group are certified as compliant with ISO27001 by a UKAS accredited certifying body.
Operational security
- Configuration and change management standard
- Supplier-defined controls
- Configuration and change management approach
- Change requests are raised by the customer or on their behalf by our support team. These are submitted to the change team for review and what-if analysis, the results of which are communicated back to the change owner for review of potential impacts and technical feedback before authorising and scheduling in the work. Upon completion and validation that the change has been successful, relevant documentation and parties are updated accordingly. The Change Advisory Board meet regularly to assess the whole change life-cycle to ensure that safeguards and security remain at the forefront of any changes made.
- Vulnerability management type
- Supplier-defined controls
- Vulnerability management approach
- Our remote monitoring and management platform provides zero-day notification and resolution across our entire customer base – ensuring that when flagged, we can respond and deploy a fix as quickly as possible.
- Protective monitoring type
- Supplier-defined controls
- Protective monitoring approach
- Potential compromises are identified via the collection and analysis of logs by multiple cloud-native security tools. Monitoring and alerting tools are configured to alert responsible personnel to potential compromises who evaluate the threat and respond appropriately. Automatically flagged critical threats will trigger isolation of the compromised object ready for remediation.
- Incident management type
- Supplier-defined controls
- Incident management approach
- Upon detection of an incident either internally or by report (telephone/email/portal) it is classified due to its impact and the number of users it affects. Where required, an escalation event is then created triggering the assignment of a Major Incident Manager, re-assignment of technical resource and team leader to provide client updates. Updates are provided throughout a major incident (P1) with an incident report provided within 1 week. Root cause analysis undertaken after the incident has been resolved to help mitigate the likelihood of recurrence.
Secure development
- Approach to secure software development best practice
- Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)
Separation between users
- Virtualisation technology used to keep applications and users sharing the same infrastructure apart
- Yes
- Who implements virtualisation
- Supplier
- Virtualisation technologies used
- VMware
- How shared infrastructure is kept separate
- The VMware vSphere hypervisor ensures separation of CPU, memory and storage affinity. Client networks are segregated to isolated VLANs, with dedicated firewalls providing WAN connectivity.
Energy efficiency
- Energy-efficient datacentres
- Yes
- Description of energy efficient datacentres
- Available from datacentre providers on request
Social Value
- Social Value
-
Social Value
- Fighting climate change
- Tackling economic inequality
- Equal opportunity
- Wellbeing
Fighting climate change
BCN are committed to working with Data Centre partners that share our values on sustainability and environmental impact. With a focus on partners that invest in energy efficient environmentally minded solutions such as battery storage technology, and intelligent cooling, regardless of the upfront costs. We will always look to host with the most energy efficiency conscious providers. End of Life (EOL) equipment is either recycled appropriately, donated to charitable causes or offered to colleagues in return for charitable donations. Eliminated landfill waste and maximising recycling All EOL equipment is disposed of via our WEEE accredited partnerTackling economic inequality
BCN will create employment and educational opportunities for people from backgrounds that typically find it hard to get employment.Equal opportunity
Women in the Workforce: We always want the right person to be in the right role for the right reasons. We’re pro-actively making changes and ensuring we are aiming to change the status quo in the tech industry and have a more balanced workforce at BCN and more women in our tech. We do this via: Changing recruitment policies Flexible working Support and development opportunities Our aim is to achieve a 50:50 workforce gender balance.Wellbeing
BCN is committed to the protection and promotion of the mental health and wellbeing of all staff. We shall continuously strive to improve the mental health environment and culture of the organisation by identifying, eliminating, or minimising all harmful processes, procedures and behaviours that may cause psychological harm or illness to its employees.
Pricing
- Price
- £10.00 a unit a month
- Discount for educational organisations
- Yes
- Free trial available
- No