ZERO PLUS LTD

Continuous Network Assessment (CNA)

CNA is the monitoring solution for all your digital services. It unifies monitoring across the multiple stacks of your digital environments, from infrastructure to applications and user experience. Capable of monitoring office connectivity, end user computing, servers, virtual machines, cloud services (AWS, Azure, GPC), and 3rd party services performance.

Features

• 24/7 Availability and performance monitoring of IT services
• Fast integration with no change required to existing infrastructure
• Fully managed solution with no burden to your team
• Fast deployment with pre-built dashboards
• Flexible deployment in both private and public cloud

Benefits

• Single view of cloud infrastructure and business critical services
• Maximise your investment with continuous assessment of the consumed resources
• Service management:provide "2nd option" for 3rd party service review
• Service improvement:identify deficiencies before they become incidents
• Fault escalation:ease identification of faults with holistic view
• Retention of results for historical reference and trend analysis

£33.60 a unit a month

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at david.twynham@zero-plus.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

947075399004354

Contact

David Twynham
07469754262
david.twynham@zero-plus.co.uk

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Hybrid cloud
• Service constraints: No constraints - the service aims to report online user experience which requires sensors to be positioned at the user locations and/or agent to be installed on end user devices, servers/ virtual machines.
• System requirements:
  • CloudUnit virtual-machines(Private or public), unless consumed as cloud-service
  • Sensors require connection to WiFi/ LAN, and power supply
  • CNA agent installation for End-user computing
  • Sensor and agent need to communicate with the cloud Unit
  • Details of IT Services to be monitored

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 8hour response time, 9am to 6pm Mon-Fri
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AAA
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Standard support will include:; Service Review per quarter; Performance and availability dashboard; Graphic representation of IT services network performance (eg response time and packet loss); Alerting with email notification; Data retention for 3 months; Premium support is modeled around clients needs and includes:; Sensor onsite installation; Monthly/ Weekly service review; Development of specific use case probing; Dashboard customisation; Complex graphical visualisation; Tuning of threshold and alerts; Alert analysis and triaged with support; Consultancy for planning and implementing architectural changes to rectify and/or evolve the IT environment (Network, cloud, application)
• Support available to third parties: No

Onboarding and offboarding

• Getting started: The onboarding process is provided with online training and demonstrations.Documentation and reference manuals are also provided. Service is specifically configured and delivered to cater for your needs. Pre-configured dashboards will be used for initial set-up and will be further customised to fit to the specific services to be monitored.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Data is collected on the back-end system. Extraction of any data at any time is available via a support request.
• End-of-contract process: At end of contract, our process is to engage with the customer and agreee what data they wish to retain. On an agreed date, having shared all requried data the customer access to the service will be terminated. Customer can return the sensors that are no longer active for free of charge disposal.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: Yes
• Compatible operating systems:
  • Linux or Unix
  • MacOS
  • Windows
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: The portal is accessible on mobile devices and graphics will scale to the reduced screen size. This is offered with limited support.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: CNA portal visualises the data collected from the sensors and presents as Graphs. Graphs are arranged in dashboards that can be customised to best fit the service monitored. The graphs represent the performance of your IT services. A threshold can be configured on a graph to alert you when a certain value is exceeded. Alerts can be configured to trigger notifications.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: The content has been evaluated by the developer of the portal. Manual testing is being performed regularly for all major browser and operating systems, plus the following screen readers: Voice Over on MacoS with Safari, Chrome, and Edge NVDA on Windows with Chrome and Firefox Orea on Linux Automated evaluation
• API: Yes
• What users can and can't do using the API: The portal backend exposes an HTTP API, which is the same API that is used by the frontend to do everything from saving dashboards, creating users, and updating data sources.
• API documentation: Yes
• API documentation formats: HTML
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: Users can change their profile theme, homepage and language.

Scaling

• Independence of resources: Sizing of the Cloud Unit is based on the number of sensors and agents deployed and probing configured. Resource consumption is reviewed every quarter.

Analytics

• Service usage metrics: Yes
• Metrics types: The service provides insights into availability and performance of IT services consumed by your organisation. Metrics are relative to the service monitored (e.g. cpu, memory, disk, response time, successful resolution, signal strength, etc.)
• Reporting types:
  • Real-time dashboards
  • Reports on request

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: Rossi Networks Ltd

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: Less than once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: No user data is collected. Dashboards and graphs can be saved as snapshots. Export is in JSONformat.
• Data export formats: Other
• Other data export formats:
  • Json
  • Snapshot
  • Screenshot
• Data import formats: Other
• Other data import formats: Json

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • Other
• Other protection between networks: IP source white-listing. Optional (at extra cost): Firewall, static/dynamic VPN, micro­ segmentation.
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
• Other protection within supplier network: Firewall, IP source White-listing, micro­ segmentation.

Availability and resilience

• Guaranteed availability: Cloud Unit Target Availability/Month (during service hours): 99.50% Sensors availability is Best Endeavours given they are controlled by customers and their staff on sites.
• Approach to resilience: CNA service is delivered by a fleet of sensors and with CNA agent installed on end-users computing and servers/VMs. The monitored target (Wifi scan frequency, URLs, IP destinations, etc.) are orchestrated by the CloudUnit (CU). Resilience for sensors is achieved by duplication (e.g. multiple sensors to­ monitor the wifi service in a specific area). The CU is formed by the back-end system collecting the sensor and agent feeds, a management station and a front-end for the portal. CU can run on public and private clouds. Resilience is achieved using cloud-native constructs (availability zones, autoscaling, kubernetes etc.)
• Outage reporting: Alert notifications via the selected channel i.e. email, Slack, MS Teams etc. Also available withing the provided dashboard.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Dedicated link (for example VPN)
  • Username or password
• Access restrictions in management interfaces and support channels: IP Source whitelisting, security-group. The solution can be complemented with additional services such as NGFW, ZTNA, micro­ segmentation which will be quoted separately.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Dedicated link (for example VPN)
  • Username or password

Audit information for users

• Access to user activity audit information: No audit information available
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications: IASME IoT CYBER ASSURANCE - Level 1

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: Service is built and managed in alignment with Security industry standards, NCSC guidance, Risk assessment Frameworks to design IT and security infrastructure up-to-date cyber security skill.
• Information security policies and processes: NCSC Guidance and Cyber Essentials

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Changes are introduced with 6 steps process: ; ; 1. Planned with details on the specific part modified ; and risk associated ; 2. Tested in the development environment ; 3. Documented with findings and any deviation from the plan ; 4. Scheduled with each deployed environment separately ; 5. Implemented according to agreed schedule using blue/green approach ; 6. Observed and accepted or reverted
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Potential threats are assessed from design through implementation and operational support for each element of the solution. The deployment is built with minimal exposure resulting in strong security posture - for example, sensors have no inbound connectivity. SLA Sensors/CU Patching Routine: Monthly outside Service Hours Critical Security Patches: Next working day.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Sensors are managed and monitored 24/7. Central Unit Cloud service is hosted in AWS Virtual Private Cloud (unless private cloud is required) where instances and traffic are monitored for performance, availability,and threat detection. The response is activated by the alerting mechanism and customer informed.
• Incident management type: Supplier-defined controls
• Incident management approach: Incident escalation is via the support team. Incidents are managed by classification: Application or Infrastructure. Application: service not available, data issue, application bug, Report not coming up.Infrastructure: system-down (CU server issue), Sensor not responding. Report will be provided on request.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Our approach to all that we do includes environmental considerations and reduction of the impacts that our work has. We fundamentally ensure that our solutions and services require the least amounts of power and our remote first working aims to remove any dependence on transport that pollutes. We also ensure that any waste generated by our services is properly disposed of through engagement with the appropriately certified recycling specialists. Details of environmental impact mitigation will always be detailed in any solution or service proposal we provide in order to ensure our clients are able to recognise the benefits to themselves and the environment.

  Covid-19 recovery

  The COVID-19 pandemic led to an immediate change to not only the way we deliver our services but also the level of protection and support we give to our staff and associates. We established, and have since maintained, what has proven to be effective communications and support structures to all whether it is themselves or their families and ensured that their physical and mental health is prioritised above all else. We have actively sought to prioritise recruitment of any appropriately skilled resources who have been adversely impacted by the pandemic when opportunities have availed themselves.

  Tackling economic inequality

  As a business our ethos is to ensure that providing opportunities to all enhances our offering and performance. We recognise and appreciate that in order to expand our business in the most ethical and beneficial way we must invest in the people we employ and provide opportunity to develop skills and qualifications. Our recruitment policy has a particular emphasis on assisting those who find themselves having difficulty in finding work and particularly those leaving the Armed Forces in order to allow them to follow in the footsteps of a number of the founders of the business and attain the same achievements that they have. The nature of our work removes geographical dependencies for the majority of roles and therefore we are not limited to prime areas for recruitment and will actively try to attract those from more deprived areas where possible. We promote our ethos in all our proposals and seek to demonstrate the benefits to the Company and the people it employs in all our engagements.

  Equal opportunity

  Our Company is committed to ensuring an inclusive workplace that embraces and promotes diversity. Our focus is on ensuring that we have the best people for the roles we fulfil in terms of skills and aspiration. We encourage the empowering of individuals and work to enable everyone to reach their full potential. We are fortunate as the nature of our work allows us to provide differently able employees with the opportunity to develop their career while preventing any negative impact on their health, career sustainability or self-sufficiency. Our ethos is one of mutual respect for all and we have no tolerance for any discrimination against any other person.

  Wellbeing

  We are committed to being recognised as a responsible an attractive employer that is recognised for ensuring a dedication to the support and wellbeing of all its people. Our interpretation of the Wellbeing of our people is good mental, physical, financial and social health. We therefore work and adopt policies to ensure that we create a workplace culture where employees feel comfortable to talk, seek help and support, and where wellbeing is recognised and embedded into all of the work we do and interactions we have. Our leadership have the experience to recognise and acknowledge that events that take place in the workplace have potential to negatively impact on their health, personal or domestic situation as well as their ability to perform their roles which allows us to put in place all appropriate measures to prevent them happening.

Pricing

• Price: £33.60 a unit a month
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: Demonstration equipment is available for customer trial at no cost. This includes a minimum of 2 sensors and access to a demo portal with all the available features.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at david.twynham@zero-plus.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.