Tata Consultancy Services Limited

TCS AWS Cloud Management and Reseller Services

TCS provides Managed AWS Cloud services through TCS IP and third-party tools. We also provide Amazon Web Services (AWS) reseller services as part of the offering.

Features

• Covers IaaS, PaaS /SaaS on AWS
• Self-service catalogue for provisioning workloads
• Delivery model through virtual workforce
• Centralised metering and cloud cost monitoring optimisation
• Centralised threat monitoring and dashboards
• Multi-cloud managed service
• Machine First, full stack automation enabled cloud services
• Standardised set of tools, processes - cloud economics, service transparency
• Service catalogue based modular adoption
• Five security layers introduced

Benefits

• Catalogue-based service delivery
• Automated provisioning and deployment
• Standardised reporting
• Centralised infrastructure and branch monitoring
• Security framework deployed across cloud
• Ability to accelerate journey to the cloud
• Easy to manage
• Drive cost efficiencies and savings
• Multi-cloud managed service
• Resource-unit based real-time, consumption-based service

£0.01 a unit a second

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at UK.PublicSector@tcs.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

985609982936790

Contact

Meena Meghani
07860 259091
UK.PublicSector@tcs.com

Service scope

• Service constraints: As stated by the public cloud provider. As an example for AWS, please see http://aws.amazon.com/documentation/ec2/
• System requirements: None

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: As provided by the public cloud provider. As an example for AWS, please see https://aws.amazon.com/premiumsupport/compare-plans
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Web chat
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: As provided by the public cloud provider. As an example for AWS please see https://console.aws.amazon.com/support/home#/
• Web chat accessibility testing: None
• Onsite support: Yes, at extra cost
• Support levels: As provided by the public cloud provider. As an example for AWS please see ; https://aws.amazon.com/premiumsupport/compare-plans
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: TCS provides a range of services spanning across advisory, implementation, migration and support and is detailed in our Lot 3 service offering titled - "TCS Cloud Consultancy and Support Services"
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: We will help customer migrate data using suitable interfaces and migration tools.
• End-of-contract process: As defined by the terms and conditions

Using the service

• Web browser interface: Yes
• Using the web interface: As provided by the public cloud provider. As an example for AWS please see https://console.aws.amazon.com/
• Web interface accessibility standard: None or don’t know
• How the web interface is accessible: Using the console provided by the public cloud provider. As an example for AWS please see https://console.aws.amazon.com/
• Web interface accessibility testing: None
• API: Yes
• What users can and can't do using the API: As provided by the public cloud provider. As an example for AWS please see https://aws.amazon.com/api-gateway/
• API automation tools:
  • Ansible
  • Chef
  • SaltStack
  • Terraform
  • Puppet
• API documentation: Yes
• API documentation formats: HTML
• Command line interface: Yes
• Command line interface compatibility:
  • Linux or Unix
  • Windows
  • MacOS
• Using the command line interface: Functionalities provided by the public cloud provider can be accessed via the command line interface

Scaling

• Scaling available: Yes
• Scaling type: Automatic
• Independence of resources: Environments are logically segregated and will leverage TCS design principles to drive the segregation of duties and resource utilization. Security controls and real-time monitoring by the public cloud provider ensures independence of resources.
• Usage notifications: Yes
• Usage reporting:
  • API
  • Email
  • SMS
  • Other

Analytics

• Infrastructure or application metrics: Yes
• Metrics types:
  • CPU
  • Disk
  • HTTP request and response status
  • Memory
  • Network
  • Number of active instances
• Reporting types:
  • API access
  • Real-time dashboards

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: AWS

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
  • Hardware containing data is completely destroyed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

• Backup and recovery: Yes
• Backup controls: TCS will bring the domain knowledge to design and build the respective public cloud platform in order to align to the customer needs.
• Datacentre setup: Multiple datacentres with disaster recovery
• Scheduling backups: Users schedule backups through a web interface
• Backup recovery: Users can recover backups themselves, for example through a web interface

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)
• Data protection within supplier network: Other
• Other protection within supplier network: Other

Availability and resilience

• Guaranteed availability: As provided by the public cloud provider.
• Approach to resilience: As provided by the public cloud provider.
• Outage reporting: Real time monitoring and report via dashboard, email, messaging.

Identity and authentication

• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google apps)
  • Dedicated link (for example VPN)
  • Username or password
• Access restrictions in management interfaces and support channels: As provided by the public cloud provider. In addition, TCS will design controls as per the customer compliance requirements.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Dedicated link (for example VPN)
  • Username or password
• Devices users manage the service through:
  • Dedicated device on a segregated network (providers own provision)
  • Dedicated device over multiple services or networks
  • Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: You control when users can access audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: TÜV NORD CERT GmbH
• ISO/IEC 27001 accreditation date: Initial certification: 2006. Last certification 29.03.2022
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Default will be as provided by the public cloud provider. In addition, TCS will bring industry knowledge with respect to customer's business compliance requirements.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: As provided by the public cloud provider.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: As provided by the public cloud provider.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: As provided by the public cloud provider.
• Incident management type: Supplier-defined controls
• Incident management approach: As provided by the public cloud provider.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: Yes
• Who implements virtualisation: Supplier
• Virtualisation technologies used: Other
• Other virtualisation technology used: Any of these could be applied and will be driven by the design principles
• How shared infrastructure is kept separate: As per the public cloud provider and TCS design principles

Energy efficiency

• Energy-efficient datacentres: Yes
• Description of energy efficient datacentres: As per the EU Code of Conduct and Tier 3+ Data Centres

Social Value

• Fighting climate change:

  Fighting climate change

  Fighting climate change; 1. TCS commits (and is on track) to reduce absolute Scope 1+ Scope 2 emissions by 70% by 2025, achieving Net Zero by 2030 or earlier, and to working with customers to achieve this.; 2. UK&I Carbon reduction plan signed at board level. ; 3. We shall continue this approach under G-Cloud 13, aligned with TCS corporate policies:; a. “Beyond Compliance” Environmental Sustainability Policy: proactive engagement with governmental and other agencies to design and drive environmental policy and regulation. ; b. Green Procurement Policy: all TCS consider life-cycle cost and potential environment impact of products and services.; c. Climate Change Policy: all Tata companies to set carbon footprint benchmark within their industry.; d. Sustainable Supply Chain Policy: establishing good environmental, social and governance practices within supply chain. ; 4. Our commitment is evidenced by the following:; a. Organisation-specific energy consumption reduced >60% since 2008 ; b. Reduced greenhouse gas emissions (Scopes 1 + 2) by 61.8% since 2008 (3 tCO2E/FTE/Annum to 1.15 tCO2e/FTE/Annum in FY 2020); c. Reduced specific energy consumption YoY by 11.9%; specific carbon footprint down 11.8%. ; d. 31% renewable sources electricity powering UK offices. ; e. 35% of UK properties divert all waste from landfill.; f. 100% UK properties with extensive waste recycling programmes.; g. >60% of real estate portfolio certified green building space, 80% of owned real estate IGBC/LEED-certified green infrastructure. ; h. Freshwater consumption down 5.5% (2019) and by 19.4% over baseline year.; i. Reduced business air travel carbon footprint in FY2020 by >67% over baseline year and by 19% over FY2019.; 5. We minimise non-essential travel through agile, flexible approaches, supported by “Vision 25x25” (by 2025 <25% employees will attend a TCS facility at a point in time; nobody will need to spend >25% of time at a facility to be 100% productive).
• Covid-19 recovery:

  Covid-19 recovery

  Covid-19 recovery; 1. To aid Covid-19 recovery we seek opportunities to work with local partners and training providers in our contracts.; 2. We operate in locations around the UK and are committed to supporting these local communities. We have local SME supply chains to invest in those communities.; 3. We partner qualified training organisations, local colleges and universities to offer a range of Apprenticeships from Level 2-7. Current examples of established programmes with customers include Diligenta, Scottish Power and PwC. We provide apprenticeships, placements and internships. We currently employ 95 apprentices in the UK, through a variety of education establishments and engage 5 or 6 per annum. Apprentices enjoy access to our training portal, which contains thousands of IT courses supporting developing career aspirations. On completion, participants are encouraged to apply for employment with TCS, where suitable openings are available.; 4. This provides value for the workforce, our customers, local communities and TCS. ; a. Individuals benefit from enhanced skills relevant to their role, increased job satisfaction, higher market value - in TCS and externally.; b. Customers benefit from high-quality service delivered by skilled, motivated, engaged employees.; c. Local communities benefit through employment and training schemes.; 5. We shall continue this approach for all G-Cloud 13contracts, seeking opportunities for level 2, 3 or 4+ apprenticeships for 1 year in relevant technical disciplines. This recognises the impact of Covid-19 young people seeking employment. Progress will be reviewed each term against pre-defined criteria and will include participant feedback. ; 6. We shall run other initiatives, including workshops in partnership with local Job Centres, for people unemployed due to Covid-19. This provides mentoring in IT career opportunities, training and skills suggestions, CV creation and interview preparation. We shall ensure people interested in IT opportunities receive information on forthcoming TCS vacancies.
• Tackling economic inequality:

  Tackling economic inequality

  Tackling economic inequality; 1. We have a modular and flexible approach to tackling economic inequality. Ongoing initiatives include: ; a. Recruiting long-term unemployed people and/or those facing other barriers to work, for at least one year, offering a broad-based and comprehensive training scheme to establish experience in work, develop knowledge and build confidence;; b. Providing business/IT expertise and guidance each year for local businesses with specific emphasis on overcoming inequality in the supply chain and identifying new opportunities from which they can profit;; c. Setting up Innovation Forums for local SMEs/MSMEs, start-ups and entrepreneurs to share learning and development, and consider relevant innovation in technology. TCS’ Co-Innovation Network (COIN™) brings together universities, industry experts, start-ups and entrepreneurs to conceptualise breakthrough solutions. It consists of over 2,400 start-ups globally. The Academic COIN™ programme has 67 active partnerships. ; 2. TCS will commit to the 30% threshold for SME revenue as part of this contract and will tackle inequality through a number of initiatives and approaches, including:; a. Structuring statements of work to contain flexible terms and conditions (always meeting the requirements of the main contract) that facilitate SME participation and encourage the innovation and versatility that SMEs can provide;; b. Streamlining the procurement process (whilst maintaining quality) to reduce the overheads for SMEs, ensure opportunities are available well in advance with clear requirements to allow planning;; c. Selecting suppliers from the supply chain via fair, open, transparent competition;; d. Establishing and developing relationships and contractual arrangements with our supply chain in line with PPN 01/18 Supply Chain Visibility;; e. Providing consistent and timely information on current and future opportunities, and working with SMEs to identify and engage with new opportunities;; f. Fully committing to the Government’s Prompt Payment Policy in line with Public Contract Regulations 2015.
• Equal opportunity:

  Equal opportunity

  Equal Opportunity; 1. TCS fully commits to equality. Corporate policies (Code of Conduct, Diversity and Inclusion (D&I) Strategy and Equal opportunities) drive our behaviours. We will continue this approach for G-Cloud 13 contracts.; 2. We ensure business leadership accountability for D&I. We will align actions for G-Cloud 13 contracts with our UK strategy and report progress to our Advisory Council, chaired by our Head of Legal and Inclusion Champion.; 3. We work with multiple disadvantaged groups. An ongoing success is our support for our female workforce: while the IT industry continues to attract very low numbers of women (around 17% of the workforce), TCS employs over 36% women associates across the organisation (FY21). ; 4. TCS is a Disability Confident Committed employer, working closely with the Business Disability Forum to recruit and support disabled employees. ; 5. We are committed to attracting more diverse talent through:; a. Proactive hiring strategy at junior level to create a growing pool of female talent in TCS (currently have > 40% women in junior grades); b. Gender neutral job descriptions and blind hiring to eliminate unconscious bias; c. Community engagement events to support and recruit from diverse community groups.; d. Return-to-Work programme post maternity or long leave. 92% of women return from maternity and continue to work with us.; 6. We support disadvantaged and minority groups among our staff through Employee Network Groups. These include:; a. TCS Hive: Gender Diversity network dedicated to engaging, developing, and retaining talented women. (Currently 2000 members in UK&I).; b. Enable: Disability and Allies Network; c. Culture Ambassador Network: Supporting cultural understanding and diversity; d. Generations Network: Supporting people from different generations / age groups ; e. Working Parents Network; f. UNO Parenting: Global network supporting parents who manage their work and child responsibilities single-handedly. ; g. TCS Minds: Supports mental well-being.
• Wellbeing:

  Wellbeing

  Wellbeing; 1. TCS is committed to and invests in the health and wellbeing of its employees. We were named ‘Best Big Company to Work For’ in UK in May 2021 and have very low staff attrition (7.2% in FY21). ; 2. TCS responded to Covid by establishing a team of 42 Certified Mental Health First Aiders in the UK. They:; a. Support employees experiencing a mental health crisis or emotional distress, from initial conversations through to obtaining professional help from the Employee Assistance Programme (EAP) team. ; b. Spot early signs and symptoms of mental ill health and offer support, escalating with EAP, or HR if the employee is at risk.; c. Start supportive conversations with colleagues who may be experiencing mental health issues or emotional distress.; d. Assess risk of suicide or self-harm, connect with EAP and inform HR for necessary interventions.; e. Encourage employees to access EAP, or self-help tool kits available via our UK social network.; 3. TCS provides free medical advice to all staff. Employees and dependents can access MediDoc24 (24*7 UK virtual GP support). This is free for employees and provides unlimited consultation. Medical / Physical services include:; a. Regular health screening. ; b. First aid facility in all delivery locations.; c. Ergonomics instruction pop-ups on users’ PCs every 15 mins to give advice on rest and safe use.; d. Vaccination programs e.g., COVID, seasonal flu.; e. Health insurance coverage. ; 4. We run a holistic health and wellbeing initiative for all staff, including: ; a. Awareness programmes that address physical, emotional, social and financial wellbeing. ; b. Help employees build resilience and spread awareness, understanding, acceptance and support. Topics include:; i. Stress management ; ii. Mental health awareness; iii. Work life balance; iv. Emotional Wellbeing; 5. We will continue to develop such programmes for contracts awarded under G-Cloud 13.

Pricing

• Price: £0.01 a unit a second
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: As provided by the public cloud provider.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at UK.PublicSector@tcs.com. Tell them what format you need. It will help if you say what assistive technology you use.