vcl gcloud10 platform as a service description · 2018. 7. 27. · vcl gcloud10 platform as a...
Post on 01-Oct-2020
12 Views
Preview:
TRANSCRIPT
GCloud10 ServicesService Descriptions
Platform as a ServiceJune 18
V1.1
VCL GCloud10 Platform as a Service Description
Introduction
Business demands change at an ever increasing rate placing expectations on ICT todeliver services to respond and keep pace. Whilst demanding fast controlled change,business does not expect any compromise on security and assumes that data will besecure despite rapid system adaptation to new processes and business initiatives.
Viewdeck offer a suite of Platform as a Service (PaaS) services to help meet thischallenge. Viewdeck is an experienced secure change provider in complex andsensitive environments. Our range of PaaS services can be selected to help with thechallenge of aligning and keeping up with business objectives whilst ensuring securityand integrity of the data at all times.
Secure PaaS Delivery ServicesThe following set of PaaS services provide a range of building blocks for cloud basedservices.
Platform as a Service • Secure Application Server Service. • Gateway and Firewall Router as a Service. • Management Domain as a Service. • Secure Continuous Integration/ Continuous Delivery Platform Service (VCSI). • Secure LAMP Application Server Service. • Version Control Server (GIT) Service. • Resilient Database Server as a Service. • DevOps Build Automation and Continuous Delivery Server. • Web Proxy Server as a Service (VWPS). • Secure Java Application Server Service. • Content Proxy as a Service. • Secure Github as a Service.
Additional Information • Service Detail • Related Service Specifications • Support • Terms and Conditions • Viewdeck Cloud Software Catalogue • Why Viewdeck?
Document: VCL-Gcloud10-Platform-as-a-ServiceJune18-V1.1Date: June 18Status: Final ReleaseTitle: GCloud10 Cloud Hosting PaaS Services
● Secure Application Server Service - Secure managed application hosting,providing management and delivery of an extensive range of native or 3rdparty applications in a patched, secured, contained service. Supports a widerange of technologies under a fully configured DevOps environment, withintegrated Monitoring, Event Management, Monitoring etc
● Gateway and Firewall Router as a Service - A virtualised Interzone,Boundary or Domain, Gateway and virtual Firewall service, suitable inproviding separation between services. Supports VPN / secure IPSEC routingfor remote connections. Plus a wide range of infrastructure supportfunctions including DHCP, DNS, NTP etc.
● Management Domain as a Service - Complete range of infrastructureManagement Domain Services, covering Build Server, Log Server, EventServer, Monitoring Solution, Patch Server, as well as a Remote AccessWorkstation. Includes a mail service, for alerting and reporting management,and a backup service. Complete Virtual solution.
● Secure Continuous Integration/Continuous Delivery Platform Service(VCSI) - The Viewdeck Secure Cloud Continuous Integration/ ContinuousDelivery Service VCSI is a Container management Virtualisation solution foragile continuous delivery. Using industry leading components, Docker®, itprovides Infrastructure optimisation, agility, control and portability. It helpsautomate the deployment of applications through software containers,using DevOps techniques, providing abstraction and agility.
● Secure LAMP Application Server Service - Secure managed Web Softwareservice, delivering a LAMP (Linux, Apache, MySQL, Php) application Service.Supports a wide range of web based applications (php, or perl based) in apatched, secured container service. Provides a range of security features
©Viewdeck Consulting Limited 2018 Page 2 of 45
VCL GCloud10 Platform as a Service Description
providing a resilient platform, plus managed, monitored and backup services.● Version Control Server (GIT) Service - Private distributed version control
service for software and DevOps development and configurationmanagement . Provides a fully distributable secure private GIT service,suitable for agile, rapid delivery of digital services.
● Resilient Database Server as a Service - Secure Application DatabaseServices for your Cloud solutions. Choice of Mysql®. MariaDB®,PostgreSQL®, MongoDB®, Apache Cassandra® and Apache CouchDB® intraditional and High Availability configurations, provided either as a fullymanaged service or to be self administered via a web interface. Ideal cloudmigration path for DR, Resilience or License Fee optimisation.
● DevOps Build Automation and Continuous Delivery Server - Our BuildAutomation and Continuous Delivery Service provides a DevOps buildsolution for Automation, Configuration Management, Quality Assurance, andrepeatable build and delivery of Windows and Linux based servers. Itprovides a service to manage and deploy 'recipes' for servers, configured andpersonalised to environments and server roles. Provides repeatabledeployment patterns.
● Web Proxy Server as a Service (VWPS) - Secure managed Web Proxyservice, delivering reverse proxy capabilities and separation for webapplications. Provides load balancing, resilience, and HA in n-tierarchitecture. Security enforcing through separating Application Hosts fromdirect user connections. Supporting a range of security features providing aresilient platform, including optional security enhancing configuration.
● Secure Java Application Server Service - Secure managed Java Softwareservice, delivering a production application Service. Supports a wide range ofjava based applications in a patched, secured container(s). Wide range ofsecurity features to provide a resilient platform, Integrates to Monitoring,Alerting, and Service Management functions.
● Content Proxy as a Service – Virtualised Cloud based Content inspectionfor your browser traffic to ensure access only to authorised sites. Antivirusscanning of content. Wide range of varied filtering to provide differentcontrolled access to user groups. Regular Updated banned site list(s) toensuring ongoing control. Full Audit feed for event logging.
● Secure Gitlab as a Service – Secure distributed cloud based enterprise codedevelopment environment that supports code management andconfiguration control in a DevOps implementation using Git Repository. Alsoprovides capability to plan and manage code development, test and assure,package releases and monitor releases.
©Viewdeck Consulting Limited 2018 Page 3 of 45
VCL GCloud10 Platform as a Service Description
GC10-PAS-SAS1:Secure Application Server Service - PaaS
Secure managed application hosting, providing management and delivery of anextensive range of native or 3rd party applications in a patched, secured, containedservice. Supports a wide range of technologies under a fully configured DevOpsenvironment, with integrated Monitoring, Event Management, Monitoring etc.
Features A fully configured, managed software hosting service. DevOps based Build service, to ensure simple, repeatable, secure
deployments. Secured, audited, managed, and under configuration control to reduce
threats. Flexible and Elastic to provide quality and performance. Resilience and Highly Available configurations, to support service levels. Self administer via Web interface, or via a managed service. Service monitoring, Event Logging, Security auditing providing a fully
managed service. Patched, Secured Debian/Ubuntu or Fedora/RedHat Linux based platform. Works with UKCloud, AWS, Azure and private cloud architectures. Support packaged, Archive, or configured deployments of standard service. Wide range of applications.
Benefits Using DevOps to Ensure repeatability in deployment of your application. Enables the move of deployment through Development, Test and
Production. Supports Digital Service delivery process (Discovery, Alpha, Beta, Live). Suitable as a migration path, and IT estate rationalisation. Available for Web and Tier 1 services. Scaled to meet business needs, flexible and elastic. Swift and simple roll-out of server changes to multiple servers. Simplifies and ensures consistency in solution through automated Build,
Test & Deploy. Standardised Secure Server build, using DevOps to meet compliance needs. Suitable for Public, Private and Shared Cloud environments.
Service DescriptionThe Secure Application Server Service is a fully managed virtual software solution toprovide an environment for your applications to run in a managed, secured, audited,patched environment. During the on-boarding process, application components that
©Viewdeck Consulting Limited 2018 Page 4 of 45
VCL GCloud10 Platform as a Service Description
are suitable are added to the Build service, and integrated into a controlledenvironment to provide a simple and managed application delivery capability. TheService includes 2nd or 3rd line support of the service and integrates the service deskfunction into any third party resolver group (i.e. application related support tickets aremanaged/handed off to your nominated application provider/maintainer).
The service supports standard packages either in auto-configuration, scripted/tarballs, apt/yum Package formats, etc. This enables them to be easily integrated intothe auto deployment services. Integration and auto deployment from GIT basedservices is also supported. Services based on Perl, PHP, Python, Ruby, Python and GOare supported.
©Viewdeck Consulting Limited 2018 Page 5 of 45
VCL GCloud10 Platform as a Service Description
GC10-PAS-GFR1:Gateway and Firewall Router as a Service - PaaS
A virtualised Interzone, Boundary or Domain, Gateway and virtual Firewall service,suitable in providing separation between services. Supports VPN / secure IPSECrouting for remote connections. Plus a wide range of infrastructure support functionsincluding DHCP, DNS, NTP etc.
Features Optional different technology options to provide defence in depth. Based on the the leading Open Source pfSense® platform. Or IPTables Linux firewall solution. Self-administer via the web interface or fully managed service available. Handles many different domains/subnets easily, and many Tunnels/VPNs. Sophisticated load balancing, Fail-over, HA and routing possible. Wide range of supported plugins covering dhcp, dns, OpenVPN, IPSEC. Secured DevOps based deployment, for managed, audited capability. Full integration with monitoring, alerting, event logging, system
management etc. Works with UKCloud, AWS and private cloud architectures.
Benefits Integrates with wider management domain functions. Easily deployed and managed in a complete virtual environment. Provides segregation between services, teams, and projects at same Tier. Full audit and log reporting, integrating to Event Management tooling. Automated lock-down in the event of certain attacks. Managed, Patched, Supported Service, Backed up. Suitable for Public, Private and Shared Cloud environments. Supports Digital Service delivery process (Discovery, Alpha, Beta, Live). Large range of security enforcing measures to support boundary/host
integrity.
Service DescriptionThe Gateway and Firewall Router product provides two alternative Open Sourcevirtualised firewall packages to provide separation and access control between virtualor real networks. The two alternatives provide choice and defence in depth, to ensurediffering technologies are used at each level. Each product can be self administeredvia a web interface, or fully managed, and provides a wide range of capabilities andservices (e.g. DNS, DHCP, OpenVPN Server, IPSEC tunnel, etc).
Options for the service are: pfSense, BSD based firewall router virtual appliance. Shorewall IPTables/Netfilter solution based on an secured Debian/Ubuntu
©Viewdeck Consulting Limited 2018 Page 6 of 45
VCL GCloud10 Platform as a Service Description
Host. OpenVPN Server additional Configuration. IPSEC Tunnel. DHCP. DNS Server.
This service includes an initial standard set-up configuration and support to help getyour starting requirements up and running. This is designed to support 3-zone (Web,DMZ, Application), traditional Web application design and system administrationaccess to enable management and configuration (further details available onrequest). Other set-ups are available as your need requires.
Standard features available: Connection tracking facilities for stateful packet filtering. Zone based management. Masquerading/SNAT. Port Forwarding (DNAT). One-to-one NAT. Proxy ARP. NETMAP. Multiple ISP support. Blacklisting. IPSEC, GRE, IPIP and OpenVPN Tunnels. PPTP clients and Servers. IPV6. Support for Traffic Control/Shaping.
These services are suitable for Private, Community or Public Cloud hosting, on theInternet, and in Tier 1 or higher environments.
©Viewdeck Consulting Limited 2018 Page 7 of 45
VCL GCloud10 Platform as a Service Description
GC10-PAS-MDS1:Management Domain as a Service - PaaS
Complete range of infrastructure Management Domain Services, covering BuildServer, Log Server, Event Server, Monitoring Solution, Patch Server, as well as aRemote Access Workstation. Includes a mail service, for alerting and reportingmanagement, and a backup service. Complete Virtual solution.
Features Complete Management Domain for a virtually hosted environment. Designed to provide infrastructure support to a solution. Build Server and workstation provides configuration management,
automated deployment. Log Server and Event Management, for log shipping and alerting. Server Monitoring and Alerting service, confirming service status, host
resources. Patch Server, to support Repository, PPA, and adhoc patch management. Backup Service, for application services, as well as management services. Mail Server to manage alerting and reporting. Either Fully managed or Self Administered. Available as complete solution, or a series of plugin services.
Benefits Suitable for Public, Private and Shared Cloud environments. Simple and efficient Open Solution. Linux based platform for ease of management, configuration and flexibility. Works with UKCloud, AWS, Azure and private cloud architectures. Optional High Available, resilient deployments. Capable of managing number of services across multiple hosting
environments. Industry Leading components Chef®, Zabbix®, Graylog2®, Rsyslog®. Secure server platform, production ready for Public, Tier1 Services. Web based management. Dashboards, Reporting, Alerting, Cloud
Management. Supports Digital Service delivery process (Discovery, Alpha, Beta, Live).
Service DescriptionThe Viewdeck Management Domain as a Service, is a complete hosting supportservice for virtual cloud environments. Providing key infrastructure services, itsupports Monitoring and alerting, System Build, Event and Log Management, Backup,and messaging/alerting. Using best of breed, Open Source solutions, this combinedcapability can be utilised either as a single service, or as independent components.Either Self Administered or Fully Managed, we provide a secure remote accessdesktop, to control and manage access across the estate. All services are built to
©Viewdeck Consulting Limited 2018 Page 8 of 45
VCL GCloud10 Platform as a Service Description
NCSC standards. Zabbix: Core of the host monitoring and performance solution. Graylog: Log Collection, Event Management. Chef Server: Configuration Management, and Build/Automated deployment. Mail Server: Postfix, SpamAssassin, ClamAV, Amavisd etc.
This service includes an initial standard set-up configuration and support to help getyour initial requirement up and running.
These services are suitable for Private, Community or Public Cloud hosting, on theInternet, and in Tier 1 or higher environments.
©Viewdeck Consulting Limited 2018 Page 9 of 45
VCL GCloud10 Platform as a Service Description
GC10-PAS-DOC1:Secure Continuous Integration/Continuous Delivery Platform Service
The Viewdeck Secure Cloud Continuous Integration/ Continuous Delivery ServiceVCSI is a Container management Virtualisation solution for agile continuous delivery.Using industry leading components, Docker®, it provides Infrastructure optimisation,agility, control and portability. It helps automate the deployment of applicationsthrough software containers, using DevOps techniques, providing abstraction andagility.
Features Industry leading Docker® component Virtualisation service. Run-anywhere application virtualisation to provide deployment flexibility. Enables continuous integration and continuous agile delivery of applications. Great portability and scalability, supporting the complete software delivery
lifecycle. Ideal for delivering digital ulitising microservices architectures. Secure managed service ideal across Development, test and Production
environments. Works with UKC, AWS, Azure, and internal private cloud architectures. Integrates with DevOps Technologies: Chef, Puppet, Ansible, Gitlab.
Benefits Part of your DevOps solution to automate, simplify and orchestrate. Easy to move infrastructure deployment from Development, Test to
Production. Virtualisation technology's provides software , infrastructure and service
components. Wraps software and service configurations into single packages for
automatic deployment. Service provides 'Infrastructure as Code' and Full Application stack
automatically. Rapid deployment and duplication of development resources. Built on secure production ready platforms that meet security needs. Swift simple roll-out of server changes to multiple instances. Public or Private Cloud, Capable for tier1/tier2. Supports full Digital Service / delivery process (Discovery, Alpha, Beta, Live).
Service DescriptionThis service provides a component virtualisation, continuous delivery continuousintegration service that enables the development team to control the deployment. Byabstracting from system dependencies, it provides simplicity, increased virtualisationand optimisation in agile solution delivery.
©Viewdeck Consulting Limited 2018 Page 10 of 45
VCL GCloud10 Platform as a Service Description
As part of your Agile delivery, it enables you to package an application and itsdependencies in a virtual container, that can run on any Docker Linux server.
Docker can be integrated into various infrastructure tools, including Amazon WebServices, Ansible, CFEngine, Chef, Jenkins, Microsoft Azure,OpenStack Nova,Puppet,Salt, Vagrant, and VMware vSphere Integrated Containers.
Hence you can have a consistent delivery target from local, to development, to test,and then to live, while moving across different cloud solutions.It also helps simplify the deployment update cycle by using lightweight images, withonly layer updates need to be propagated. It also provides a high level API to supportlightweight containers that run processes in isolation.
Why Continuous Delivery? “Delivery at Velocity”: Continuous Delivery enables the “Agile Organisation”,
and “Compliance at Pace”. Continuous Delivery is not just about agility in delivery, but an ethos across
the delivery lifecycle. Organisational transformation, that provides a step change in Change
delivery, speed and accuracy. Knowledge sharing and transfer: Part of the “Infrastructure as Code”
practice, it simplifies and reduces the effort needed to meet delivery goals.
The DevOps Space There is a wide collection of Continuous Delivery/ Continuous Integration toolingavailable these days. We support an extensive range of popular and stable tools,deployed into either Public or Private Cloud environments. Working with our clientswe help you to embed these enablers into your development, project and serviceteams, to help break down the blockers, and greatly improve the efficiency of theservice provisioning lifecycle (including key areas such as elasticity, assurance etc.) aswell as the deployment/ delivery chain.
©Viewdeck Consulting Limited 2018 Page 11 of 45
VCL GCloud10 Platform as a Service Description
GC10-PAS-SLA1:Secure Linux, Apache, MySQL and Php (LAMP) Application Service - PaaS
Secure managed Web Software service, delivering a LAMP (Linux, Apache, MySQL,Php) application Service. Supports a wide range of web based applications (php, orperl based) in a patched, secured container service. Provides a range of securityfeatures providing a resilient platform, plus managed, monitored and backup services.
Features A complete configured, managed LAMP based application service. Build Server/DevOps configuration, to ensure simple, repeatable, secure
deployments. Provides additional Apache2 hardening including modsecurity, modevasive. Range of sizes and configurations to support Development, Test, production. Resilience and Highly Available configurations, to support service levels. Self administer via Web interface, or via a managed service. Debian/Ubuntu based platform for easy management, configuration and
flexibility. Service includes regular patches, daily backups, support. Includes optional Mysql or MariaDB databases support. Works with UKCloud, AWS, Azure and private cloud architectures.
Benefits Ensures repeatability in deployment of your application. Easy to move infrastructure deployment through Development, Test and
Production. Remove repeated manual steps from Infrastructure build, test and
deployments. Enables easy to scale up and out of Cloud services. Secure Server platform, production ready for Public, Tier1 Services. Swift, simple roll-out of changes to multiple servers through DevOps. Available for Web, Tier1 services and Tier2 via private clouds. Suitable for Public, Private and Shared Cloud environments. Hardened Tested stable platform. Supports the full digital delivery process (Discovery, Alpha, Beta, Live).
Service DescriptionThe Secure LAMP (Linux, Apache, MySQL, Php) Application Server Service is a fullymanaged virtual software solution to provide a service for your applications, in amanaged, secured, audited and patched environment. During the on-boardingprocess, your application will be added to the Build service, and integrated into acontrolled environment to provide a simple, managed application delivery capability.The Service includes 2nd or 3rd line support integration of the service and integratesthe service desk function into any third party resolver groups (i.e. application related
©Viewdeck Consulting Limited 2018 Page 12 of 45
VCL GCloud10 Platform as a Service Description
support tickets are managed/handed off to your nominated applicationprovider/maintainer).
The service supports standard web package (html, php, perl) sites. Integration andauto deployment from GIT based services is also supported.
©Viewdeck Consulting Limited 2018 Page 13 of 45
VCL GCloud10 Platform as a Service Description
GC10-PAS-VCS1:Version Control Server (GIT) Service - PaaS
Private distributed version control service for software and DevOps development andconfiguration management. Provides a fully distributable secure private GIT service,suitable for agile, rapid delivery of digital services.
Features Secure managed Git Server designed to bring together development teams. Designed to support distributed code, configuration management, DevOps
or deployments. Resilient and High Availability Solutions, deployable in Master/Slave formats. Includes simple Web-based interface for browsing of versions/updates. SSH integration into wide range of development or service workstations. Works with wide range of Open Source Client software. Capable of self administration through Web interface. Service includes regular patches, daily backups, support. Easy management, configuration and flexibility. Works with UKCloud, Azure, AWS etc. Also internal private cloud
architectures.
Benefits Provides the full range of Git version control. Keeping remote teams aligned, test versions managed. Part of the Agile development solution, continuous delivery of infrastructure. Integrates into Change, Test and Release management processes. Greatly reduced development time, by co-ordinating teams. Secure Server environment, suitable for Public or Secure environments. Available for Web, Tier 1 or Tier 2 services. Suitable for Public, Private and Shared Cloud environments. Supports Digital Service delivery process (Discovery, Alpha, Beta, Live).
Service DescriptionGit is a free and open source distributed version control system designed to handleeverything from small to very large projects with speed and efficiency. It supportsnon-linear development, widely compatible with existing products, (http, Hpi, rsync)and provide assurance and quality during the build process.This solution provides aprivate/managed and secure version of the github service.
Git is easy to learn and has a minimal footprint with lightning fast performance, withfeatures like cheap local branching, convenient staging areas, and multiple workflows.
This solution is based on the Viewdeck Secure Server, a hardened NCSC compliant'Gold' build, providing lockdown, compliant hosting platform for cloud deployment.
©Viewdeck Consulting Limited 2018 Page 14 of 45
VCL GCloud10 Platform as a Service Description
These services are suitable for Private, Community or Public Cloud hosting, on theInternet, and in Tier 1 or higher environments.
©Viewdeck Consulting Limited 2018 Page 15 of 45
VCL GCloud10 Platform as a Service Description
GC10-PAS-RDS1:Resilient Database Server as a Service - PaaS
Secure Application Database Services for your Cloud solutions. Choice of Mysql®.MariaDB®, PostgreSQL®, MongoDB®, Apache Cassandra® and Apache CouchDB®in traditional and High Availability configurations, provided either as a fully managedservice or to be self administered via web interfaces. Ideal cloud migration path forDR, Resilience or License Fee optimisation.
Features Mysql, MariaDB (Mysql Open-Source), PostgreSQL, MongoDB & CouchDB or
Apache Cassandra (noSQL). Scalable and resilient, Backup service. Web interface to provide data management and manipulation. Optional Synchronous or Asynchronous High Availability Configurations. Master Slave, Master Master, Star Structure, Fan out or In. Resilient distributed database solutions. Self-administer or fully managed service available. Service includes regular patches, daily backups, support. Linux based platform for ease of management, configuration and flexibility. Works with UKCloud, AWS, Azure and private cloud architectures.
Benefits Suitable for Public, Private and Shared Cloud environments. Simple and efficient Open Solution. Provides database license consolidation. Suitable as a migration path, and IT estate rationalisation. Simple, straight forward data serving, working well with other components. Scaled to meet business needs, flexible and elastic. Cost Efficient, flexible scalability, use as you need.
Service DescriptionThe service includes the optional use of a licensed Mysql installation, Open-SourceMariaDB (plug compatible to Mysql), Postgres, MongoDb, Apache Cassandra orCouchDB. It also includes an optional web-based Management and databasemanagement interface.
You have the use of third party tools like MySQL Workbench to manipulate andadminister the service which can be used in a wide range of architectures, includingmaster slave, multi - master, Fan In or Fan Out. It provides for an unlimited Numberof databases/data sets and users etc.
We provide a standard API access to allow integration with client tools and otherhosting components. The service is capable of providing a distributed resilient data
©Viewdeck Consulting Limited 2018 Page 16 of 45
VCL GCloud10 Platform as a Service Description
service across remote locations.
This service includes an initial standard set-up configuration and support to help getyour initial requirement up and running.
These services are suitable for Private, Community or Public Cloud hosting, on theInternet, and in Tier 1 or higher environments.
©Viewdeck Consulting Limited 2018 Page 17 of 45
VCL GCloud10 Platform as a Service Description
GC10-PAS-RDS1:DevOps Build Automation and Continuous Delivery Server - PaaS
Our Build Automation and Continuous Delivery Service provides a Webops/Couldopsbuild solution for Automation, Configuration Management, Quality Assurance, andrepeatable build and delivery of Windows and Linux based servers. It provides aservice to manage and deploy 'recipes' for servers, configured and personalised toenvironments and server roles. Provides repeatable deployment patterns.
Features Secure Linux based Open Source Chef® Server. Scalable to support from 1 to 1000's of production servers. Resilient and High Availability Solutions, deployable in Master Slave formats. Simple Web based interface for each remote management and use. Works with Chef Workstation to develop and deploy automation Services. Server 'healing' capability to ensure servers remain patched, secured
designed. Regular server reports on compliance/build status. Service includes regular patches, daily backups, support. Debian/Ubuntu based platform for easy of management, configuration. Works with UKCloud, Azure, Rackspace, Memset, internal private cloud
architectures.
Benefits Ensures repeatability in deployment of large scale cloud based solutions. Easy to move infrastructure deployment from Development, Test to
Production. Remove repeated manual steps from Infrastructure build, test and
deployments. Easy scaling up/out of Cloud services, continuous deployment/delivery. Simplifying and Self Documenting infrastructure build instructions. Greatly reduced build time through re-use of 'cookbooks'. Secure Server environment, suitable for Public or Secure environments. Swift simple roll-out of server changes to multiple servers. Online, for tier1/tier2 via PC, Public/Private, Shared Cloud. Supports Digital Service delivery process (Discovery, Alpha, Beta, Live).
©Viewdeck Consulting Limited 2018 Page 18 of 45
VCL GCloud10 Platform as a Service Description
Service DescriptionChef® is a powerful DevOps automation platform that transforms complexinfrastructure into code. It delivers agile continuous delivery to secure governmentinfrastructures by codifying application, deployment and delivery.
Chef® is a configuration management tool written in Ruby and Erlang. It uses a pure-Ruby, domain-specific language (DSL) for writing system configuration "recipes". Chefis used to streamline the task of configuring and maintaining a company's servers,and can integrate with cloud-based platforms such as Rackspace, Internap, AmazonEC2, Google Cloud Platform, OpenStack,SoftLayer, and Microsoft Azure toautomatically provision and configure new machines. Chef contains solutions forboth small and large scale systems.
The Chef server acts as a hub for configuration data, storing cookbooks and policiesthat are applied to nodes. It also holds the metadata that describes each registerednode (Virtual Host/Machine) that is being managed by the chef-client. Nodes use thechef-client to ask the Chef server for configuration details, such as recipes, templates,and file distributions. The chef-client then does as much of the configuration work aspossible on the nodes themselves (and not on the Chef server). This scalableapproach distributes the configuration effort throughout the data centres andinfrastructure.
The DevOps Build Automation and Continuous Delivery Service is a securedeployment and configuration of a managed Chef Server environment of one ormore chef servers across an environment. Using the Viewdeck Secure ServerPlatform as a base, it provides a patched, secured cloud based solution to repeatablesystem build, configuration and deployment.
©Viewdeck Consulting Limited 2018 Page 19 of 45
VCL GCloud10 Platform as a Service Description
GC10-PAS-SLA1:Web Proxy Server as a Service - PaaS
Secure managed Web Proxy service, delivering reverse proxy capabilities andseparation for web applications. Provides load balancing, resilience, and HA in n-tierarchitecture. Security enforcing through separating Application Hosts from directuser connections. Supporting a range of security features providing a resilientplatform, including optional security enhancing configuration.
Features A configured, managed Apache or Nginx based reverse proxy service. Build Server configuration, to ensure simple, repeatable, secure
deployments. Provides additional security hardening including modsecurity, modevasive. Available in a range of sizes and configurations. Resilience and Highly Available configurations, to support service levels. Self administer via Web interface, or via a managed service. Debian/Ubuntu based platform for easy management, configuration and
flexibility. Service includes regular patches, daily backups, support, monitoring and
management. Includes optional Mysql or MariaDB databases support. Works with UKCloud, AWS, Azure and private cloud architectures.
Benefits Ensures repeatability in deployment of your application. Easy to move infrastructure deployment through Development, Test and
Production. Remove repeated manual steps from Infrastructure build, test and
deployments. Enables easy to scale up and out of Cloud services. Secure Server platform, production ready for Public, Tier1 Services. Swift and simple production support through DevOps/WebOps. Available for Web, Tier1 services and Tier2 via private clouds. Suitable for Public, Private and Shared Cloud environments. Hardened Tested stable platform.
Service DescriptionThe Secure Web Proxy Service is a fully managed virtual software solution to providea service for your web solution, in a managed, secured, audited, patchedenvironment. The reverse proxy service provides a DMZ solution to separate yourapplications from your front end, in a secure n-tier architecture. The Service includes2nd or 3rd line support integration of the service and integrates the service deskfunction into any third party resolver groups (i.e. application related support tickets
©Viewdeck Consulting Limited 2018 Page 20 of 45
VCL GCloud10 Platform as a Service Description
are managed/handed off to your nominated application provider/maintainer).
It can also support: Additional authentication or access control to individual pages, URLs and
services. Caching and performance improvement. Load Balancing, Resilience and HA implementation, through a range of
optimisation techniques. Filter and Transform Web Content. Supports HTTP, HTTPs and FTP. Port redirect from Web to AJP based services (like Tomcat etc.).
These services are suitable for Private, Community or Public Cloud hosting, on theInternet, and in Tier 1 or higher environments.
©Viewdeck Consulting Limited 2018 Page 21 of 45
VCL GCloud10 Platform as a Service Description
GC10-PAS-SLA1:Secure Java Application Service - PaaS
Secure managed Java Software service, delivering a production application Service.Supports a wide range of java based applications in a patched, secured container(s).Wide range of security features to provide a resilient platform, Integrates toMonitoring, Alerting, and Service Management functions.
Features Configured, managed production Java based application service. Build Server DevOps configuration, to ensure simple, repeatable, secure
deployments. Secured, audited, managed, and under configuration control to simplify
management. Flexible sizes and configurations to meet capacity and demand. Resilience, scaled and Highly Available configurations, to support service
levels. Self administer via Web interface, or via a managed service. Debian/Ubuntu based platform for easy management, configuration and
flexibility. Managed Development, Test and Production environments. Optional Tomcat or JBOSS. Oracle or OpenJDK Java. Works with UKCloud, AWS, Azure and private cloud architectures.
Benefits Ensures repeatability in deployment of your application. Easy to move infrastructure deployment through Development, Test and
Production. Remove repeated manual steps from Infrastructure build, test and
deployments. Enables easy to scale up and out of Cloud services. Secure Server platform, production ready for Public, Tier1 Services. Swift and simple production support through DevOps/WebOps. Available for Web, Tier1 services and Tier2 via private clouds. Suitable for Public, Private and Shared Cloud environments. Hardened Tested stable platform.
Service DescriptionThe Secure Java Application Server Service is a fully managed virtual softwaresolution to provide an environment for your Java applications to run in a managed,secured, audited, patched environment. During the on-boarding process, yourapplication will be added to the Build service, and integrated into a controlledenvironment to provide a simple and managed application delivery capability. TheService includes 2nd or 3rd line support of the service and integrates the service desk
©Viewdeck Consulting Limited 2018 Page 22 of 45
VCL GCloud10 Platform as a Service Description
function into any third party resolver group (i.e. application related support tickets aremanaged/handed off to your nominated application provider/maintainer).
The service supports Tar File, WAR based & Redhat rpm or Debian PKG distributions.Java version can be chosen to suit, although it needs to be a supportable platform.Optional local Mysql or MariaDB Database Integration and auto deployment of yourcode from GIT based services is also supported.
©Viewdeck Consulting Limited 2018 Page 23 of 45
VCL GCloud10 Platform as a Service Description
GC10-PAS-CPS1:Content Proxy as a Service - PaaS
Virtualised Cloud based Content inspection for your browser traffic to ensure accessonly to authorised sites. Antivirus scanning of content. Wide range of varied filteringto provide different controlled access to user groups. Regular Updated banned sitelist(s) to ensuring ongoing control. Full Audit feed for event logging.
Features Virtualised Service for deployment to Private or Public environments. Provides Cloud based control of all incoming traffic. Includes Anti-Virus scanning of all allowed filetypes. Optional User authentication to provide RBAC to internet. Supports multiple filter groups, allowing different access to different users. Banned Site update service, based on categories, full User Auditing. Can work with a VPN to provide cloud access to internet. Metered, Measured, Fine control to acceptable and unacceptable Sites. Open source solution, deployable to AWS, UKCloud, and other hypervisors. Easily self administered or fully managed service.
Benefits Simple solution to meet compliance and regulation needs. Can provide remote / alternative country hosting/access. Supports wide range of client platforms. Can be used with reverse proxy to provide Highly available internet. Elastic capability that can scale with your business needs. Can be deployed either on-premises on in the cloud. Simple to add, remove or change rules to support needs. Event log to feed Log Server and SOC. Secure service ideal for Development, Test, Live, and operations.
Service DescriptionViewdeck’s Content Proxy as a Service provides a virtualised content inspectionservice ensuring access from your browser traffic to only authorised sites. The serviceprovides a cloud-based control of all incoming traffic delivering a simple solution toensure compliance with regulatory requirements. The Service supports multiplefiltering arrangements and has an elastic capability that enables it to scale as yourbusiness grows and requirements and regulations change.
The service is fully audited and includes a banned site service, based on a range ofcategories. The rules are simple to change as requirements change. It can also beused with a VPN to provide cloud access to the internet.
This service includes an initial standard set-up configuration and support to help get
©Viewdeck Consulting Limited 2018 Page 24 of 45
VCL GCloud10 Platform as a Service Description
your initial requirement up and running. It can be operated as a fully managed serviceor easily self-administered through a web interface.
These services are suitable for Private, Community or Public Cloud hosting, on theInternet, and in Tier 1 or higher environments.
©Viewdeck Consulting Limited 2018 Page 25 of 45
VCL GCloud10 Platform as a Service Description
GC10-PAS-SGS1:Secure Gitlab as a Service - PaaS
Secure distributed cloud based enterprise code development environment thatsupports code management and configuration control in a DevOps implementationusing Git Repository. Also provides capability to plan and manage code development,test and assure, package releases and monitor releases.
Features Agile Project configuration management, test automation, and CDCI tool. Designed to support digital and infrastructure teams. Resilient and High Availability Solutions, deployable in Master/Slave formats. Includes simple Web-based interface for browsing of versions/updates. SSH integration into wide range of development or service workstations. Works with wide range of Open Source Client software. Capable of self administration through Web interface. Works with UKCloud, Azure, etc. Also internal private cloud architectures. Ability to support Continuous Integration/Continuous Delivery through the
Development lifecycle. Based on leading Open Source Gitlab solution.
Benefits Provides the full range of Git version control. Web based version control , enabling remote teams aligned. Integrates into Change, Test and Release management processes,
continuous delivery. Agile, delivering greatly reduced development time, by co-ordinating teams. Great web based visibility of code progress. Automated testing, Automated deployment, Continuous Integration
Deployment platform. Secure Server environment, suitable for Public or Secure environments. Available for Web, Tier 1 or Tier 2 services. Suitable for Public, Private and Shared Cloud environments. Supports Digital Service delivery process (Discovery, Alpha, Beta, Live).
Service DescriptionThis service provides a component virtualisation, continuous delivery continuousintegration service that enables the development team to control the deployment. Byabstracting from system dependencies, it provides simplicity, increased virtualisationand optimisation in agile solution delivery.
As part of your Agile delivery, it enables you to package an application and itsdependencies in a virtual container, that can run on any Docker Linux server.
©Viewdeck Consulting Limited 2018 Page 26 of 45
VCL GCloud10 Platform as a Service Description
Docker can be integrated into various infrastructure tools, including Amazon WebServices, Ansible, CFEngine, Chef, Jenkins, Microsoft Azure,OpenStack Nova,Puppet,Salt, Vagrant, and VMware vSphere Integrated Containers.
Hence you can have a consistent delivery target from local, to development, to test,and then to live, while moving across different cloud solutions.It also helps simplify the deployment update cycle by using lightweight images, withonly layer updates need to be propagated. It also provides a high level API to supportlightweight containers that run processes in isolation.
Why Continuous Delivery? “Delivery at Velocity”: Continuous Delivery enables the “Agile Organisation”,
and “Compliance at Pace”. Continuous Delivery is not just about agility in delivery, but an ethos across
the delivery lifecycle. Organisational transformation, that provides a step change in Change
delivery, speed and accuracy. Knowledge sharing and transfer: Part of the “Infrastructure as Code”
practice, it simplifies and reduces the effort needed to meet delivery goals.
The DevOps Space There is a wide collection of Continuous Delivery/ Continuous Integration toolingavailable these days. We support an extensive range of popular and stable tools,deployed into either Public or Private Cloud environments. Working with our clientswe help you to embed these enablers into your development, project and serviceteams, to help break down the blockers, and greatly improve the efficiency of theservice provisioning lifecycle (including key areas such as elasticity, assurance etc.) aswell as the deployment/ delivery chain.
©Viewdeck Consulting Limited 2018 Page 27 of 45
VCL GCloud10 Platform as a Service Description
Service Details
OverviewOur services have evolved from many years experience in secure environments,undergoing transformation projects in particular aimed at utilising cloud services inDigital Delivery. Designed to operate in secure environments rapid change is ofparamount importance but where security assurance cannot be compromised
DevOps and Secure Delivery for Cloud ServicesDevOps is a strategy for infrastructure change delivery that brings an organization'soperations, development, testing, and support teams together to facilitate workingcollaboratively for a common delivery aim. When done properly; it can be efficient atreducing time to deliver, allowing greater flexibility to change and providing rapiddevelopment and release cycles
DevOps relies on significant automation to work effectively. It utilises the principle of“infrastructure as code” and relies on languages such as Ruby under ConfigurationTools such as Chef. Viewdeck have worked extensively with Chef and havedeveloped a number of their services utilising Chef as a key building block.
The principle of undertaking continuous delivery of change is initially daunting to anIT Department. It immediately throws up the risk of security flaws emerging throughinsufficient time to test and check implementation. However DevOps responds tothis by allowing security to be considered much earlier in the change cycle. Byundertaking security tests in an automated way on a staging environment allows thesecurity integrity to be thoroughly assessed.
Automation is the key to secure continuous delivery and many organisations arerecognising its potential and are embracing the technology. The benefits fromcontinuous delivery are many such as:
More efficient change undertaken, less time, less manual effort. Better security , more thorough testing, fewer issues. Better alignment with business objectives. More reactive and Agile to change. Better collaborative working of operational teams. More reliable infrastructure. More resilient infrastructure. Better reactivity to serious incidents. Ability to restore infrastructure settings.
Viewdeck services allow an organisation to embark on the DevOps journey, orstrengthen their already implemented capability. Viewdeck can offer assistance indesigning, implementing and supporting the go live of these services for the client ifrequired.
©Viewdeck Consulting Limited 2018 Page 28 of 45
VCL GCloud10 Platform as a Service Description
Appendix 1Related Service Specifications
©Viewdeck Consulting Limited 2018 Page 29 of 45
Secure Application Server ServiceSASS-01 Secure Application Server ServiceDescription Secure Application Server as a Service - Dedicated Server
Locked Down Application SaaS Server, supporting Shell, Perl, Python, PHP application.
Notes 20Gb Limit, up to 10 concurrent sessions/threads. Host & Application Environment Only.
Service 3rd Line Support only, Monday-Friday 9am-5:30pmUnit Dedicated ServiceInitial This service has an initial setup fee of £2685Range From £367 to £367 per month Key Software Component ApacheOrder Minimum 1Related ServicesLAMP-01 Secure Web/LAMP Server as a Service - Dedicated Server
WPSS-01 Web Proxy Server as a Service Secure Web Proxy Server as a Service - Dedicated ServerJASS-01 Secure Java Application Server Service Secure Java Application Server as a Service - Dedicated Server
Gateway and Firewall Router as a ServiceSASS-01 Gateway and Firewall Router as a ServiceDescription Virtualised Firewall, Gateway Router Service - Dedicated Host
pfSense or IPTables based firewall router gateway service for security enforcing, zone separation and routing
Notes 0
Service 3rd Line Support only, 24 Hours Day x 7 Days WeekUnit Dedicated ServiceInitial This service has an initial setup fee of £895Range From £671 to £671 per month Key Software ComponentOrder Minimum 1Related ServicesSGIT-01
GFRS-01 Management Domain as a Service
GFRS-02 Content Proxy as a Service Proxy, Content Checking and AV for incoming web Traffic
Management Domain as a ServiceSASS-01 Management Domain as a ServiceDescription Complete Management Domain As a Service for Secure, Project and Operational Environments
Software Build Server, Admin Workstation, Monitoring, Event/Log Management, Patch Server, Backup Server.
Notes 500Gb Max total Storage
Service 3rd Line Support only, 24 Hours Day x 7 Days WeekUnit Dedicated ServiceInitial This service has an initial setup fee of £8950Range From £2819 to £2819 per month Key Software ComponentOrder Minimum 1Related ServicesRMDB-03 Gateway and Firewall Router as a Service Virtualised Firewall, Gateway Router Service - Dedicated HostGFRS-02 Content Proxy as a Service Proxy, Content Checking and AV for incoming web Traffic
0 Event Monitoring and Alerting Security Event Monitoring and Alerting Service - Dedicated Host
Secure Linux, Apache, MySQL & Php Application Server Service
Cloud VPN as a Service Software Based VPN Server and Router Service - Dedicated Host
Complete Management Domain As a Service for Secure, Project and Operational Environments
VCL GCloud10 Platform as a Service Description
©Viewdeck Consulting Limited 2018 Page 30 of 45
Resilient MySQL® Database Server as a ServiceRMDS-01 Resilient MySQL® Database Server as a ServiceDescription Relational Database as a Service - Dedicated Mysql Server
Database Server, ideal for project, small community sized workloads
Notes Single Instance, up to 50Gb, up to 20 Connections. Multiple instances needed for Clustering & HA Architectures
Service 2nd or 3rd Line Support options, Monday-Friday 9am-5:30pmUnit Dedicated ServiceInitial This service has an initial setup fee of £2685Range From £803 to £1251 per month Key Software Component Mysql Enterprise EditionOrder Minimum 1Related ServicesRMDD-01 Relational Database as a Service - Dedicated MariaDB Server
RPDS-01 Resilient PostgreSQL® Database Server as a ServiceERAS-01 Enterprise Reporting as a Service
RMDS-01Description Relational Database as a Service - Dedicated MariaDB Server
Database Server, ideal for project, small community sized workloads
Notes Single Instance, up to 50Gb, up to 20 Connections. Multiple instances needed for Clustering & HA Architectures
Service 2nd or 3rd Line Support options, Monday-Friday 9am-5:30pmUnit Dedicated ServiceInitial This service has an initial setup fee of £2685Range From £470 to £917 per month Key Software Component MariaDbOrder Minimum 1Related ServicesDBSS-03 Resilient MySQL® Database Server as a Service Relational Database as a Service - Dedicated Mysql Server
RMDS-06 Resilient PostgreSQL® Database Server as a Service
ERAS-01 Enterprise Reporting as a Service
Resilient PostgreSQL® Database Server as a Service
RMDS-01 Resilient PostgreSQL® Database Server as a ServiceDescription Relational Database as a Service - Dedicated PostgreSQL Server
Database Server, ideal for project, small community sized workloads
Notes Single Instance, up to 50Gb, up to 20 Connections. Multiple instances needed for Clustering & HA Architectures
Service 2nd or 3rd Line Support options, Monday-Friday 9am-5:30pmUnit Dedicated ServiceInitial This service has an initial setup fee of £8055Range From £470 to £917 per month Key Software Component PostgresqlOrder Minimum 3Related ServicesERAS-01 Enterprise Reporting as a ServiceDBSS-03 Resilient MySQL® Database Server as a Service Relational Database as a Service - Dedicated Mysql Server
SCIS-03 Relational Database as a Service - Dedicated MariaDB Server
Resilient MariaDB® Database Server as a Service
Relational Database as a Service - Dedicated PostgreSQL ServerWeb Reporting Server as a Service - Dedicated Community Server
Resilient MariaDB® Database Server as a Service Resilient MariaDB® Database Server as a Service
Relational Database as a Service - Dedicated PostgreSQL Server
Web Reporting Server as a Service - Dedicated Community Server
Web Reporting Server as a Service - Dedicated Community Server
Resilient MariaDB® Database Server as a Service
VCL GCloud10 Platform as a Service Description
©Viewdeck Consulting Limited 2018 Page 31 of 45
Resilient MongoDB® Database Server as a Service
RMDB-01 Resilient MongoDB® Database Server as a ServiceDescription NoSQL Database as a Service - Dedicated MongoDB Community Server
Database Server, ideal for project, small community sized workloads. Single Instance
Notes Up to 50Gb Single Instance, up to 20 Connections. 3 Instances Needed for a Cluster
Service 2nd or 3rd Line Support options, Monday-Friday 9am-5:30pmUnit Dedicated ServiceInitial This service has an initial setup fee of £8055Range From £470 to £917 per month Key Software Component Mongo CommunityOrder Minimum 3Related ServicesSIWP-01 Secure Ionic Web Platform Secure Ionic Web Server as a Service - Dedicated Server
SNMP-01 Secure Nodejs Microservices PlatformJASS-01 Secure Java Application Server Service Secure Java Application Server as a Service - Dedicated Server
Resilient Apache Cassandra (NoSQL)® Database Server as a Service
RMDB-01 Resilient Apache Cassandra (NoSQL)® Database Server as a ServiceDescription CSQL Database as a Service - Dedicated Cassandra Server
Database Server, ideal for project, small community sized workloads.
Notes Up to 50Gb Single Instance, up to 20 Connections. 3 Instances Needed for a Cluster
Service 3rd Line Support only, Monday-Friday 9am-5:30pmUnit Dedicated ServiceInitial This service has an initial setup fee of £13425Range From £604 to £604 per month Key Software Component CassandraOrder Minimum 3Related ServicesRPDS-02 NoSQL Database as a Service - Dedicated CouchDB Server
SASS-02 Secure Ionic Web Platform Secure Ionic Web Server as a Service - Dedicated Server
LAMP-02 Secure Nodejs Microservices Platform
Resilient CouchDB (NoSQL)® Database Server as a Service
RMDB-01 Resilient CouchDB (NoSQL)® Database Server as a ServiceDescription NoSQL Database as a Service - Dedicated CouchDB Server
Database Server, ideal for project, small community sized workloads.
Notes Up to 50Gb Single Instance, up to 20 Connections. 3 Instances Needed for a Cluster
Service 3rd Line Support only, Monday-Friday 9am-5:30pmUnit Dedicated ServiceInitial This service has an initial setup fee of £13425Range From £604 to £604 per month Key Software Component CassandraOrder Minimum 3Related ServicesRMDD-06 CSQL Database as a Service - Dedicated Cassandra ServerSASS-02 Secure Ionic Web Platform Secure Ionic Web Server as a Service - Dedicated Server
LAMP-02 Secure Nodejs Microservices Platform
Secure Nodejs Microservices Server Platform - Dedicated Server
Resilient CouchDB (NoSQL)® Database Server as a Service
Secure Nodejs Microservices Server Platform - Dedicated Server
Resilient Apache Cassandra (NoSQL)® Database Server
Secure Nodejs Microservices Server Platform - Dedicated Server
VCL GCloud10 Platform as a Service Description
©Viewdeck Consulting Limited 2018 Page 32 of 45
DevOps Build Automation and Continuous Delivery Service
DBAC-01 DevOps Build Automation and Continuous Delivery ServiceDescription Continuous Delivery SaaS Service - Dedicated Server
Continuous Delivery SaaS Service, provided by Chef
Notes
Service 2nd or 3rd Line Support options, Monday-Friday 9am-5:30pmUnit Dedicated ServiceInitial This service has an initial setup fee of £2685Range From £470 to £917 per month Key Software Component Chef-ServerOrder Minimum 1Related ServicesCCAS-01 Continuous Compliance as a Service Continuous Compliance SaaS Service - Dedicated Server
CDAS-01 Continuous Delivery as a Service Private Gitlab CD/CI ServiceDBSS-01 DevOps Build Server as a Service DevOps Build SaaS Service - Dedicated Server
Web Proxy Server as a ServiceDBAC-01 Web Proxy Server as a ServiceDescription Secure Web Proxy Server as a Service - Dedicated Server
Locked Down Apache2 reverse Proxy SaaS Server,
Notes up to 40 concurrent sessions/threads. Host & Application Environment Only.
Service 3rd Line Support only, Monday-Friday 9am-5:30pmUnit Dedicated ServiceInitial This service has an initial setup fee of £2685Range From £358 to £358 per month Key Software Component ApacheOrder Minimum 1Related ServicesSASS-02 Secure Ionic Web Platform Secure Ionic Web Server as a Service - Dedicated Server
MFVB-02 Secure Application Server Service Secure Application Server as a Service - Dedicated Server
MFVH-02 Secure Web/LAMP Server as a Service - Dedicated Server
Secure Java Application Server ServiceDBAC-01 Secure Java Application Server ServiceDescription Secure Java Application Server as a Service - Dedicated Server
Dedicated Locked Down Java Tomcat Server.
Notes 20Gb Limit, up to 10 concurrent sessions/threads. Host & Application Server Environment Only. Options around Tomcat 6, 7 or
Service 3rd Line Support only, Monday-Friday 9am-5:30pmUnit Dedicated ServiceInitial This service has an initial setup fee of £4475Range From £590 to £590 per month Key Software Component TomcatOrder Minimum 1Related ServicesMFVB-02 Secure Application Server Service Secure Application Server as a Service - Dedicated ServerSASS-01 Web Proxy Server as a Service Secure Web Proxy Server as a Service - Dedicated Server
SASS-02 Secure Ionic Web Platform Secure Ionic Web Server as a Service - Dedicated Server
Secure Linux, Apache, MySQL & Php Application Server Service
VCL GCloud10 Platform as a Service Description
©Viewdeck Consulting Limited 2018 Page 33 of 45
Content Proxy as a ServiceCPAS-01 Content Proxy as a ServiceDescription Proxy, Content Checking and AV for incoming web Traffic
Dedicate Host to support up to 20 Concurrent Clients
Notes Includes 20Gb Log Storage, Subscriptions
Service 2nd or 3rd Line Support options, Monday-Friday 9am-5:30pmUnit Dedicated ServiceInitial This service has an initial setup fee of £4475Range From £481 to £929 per month Key Software Component E2GuardianOrder Minimum 1Related ServicesCVAS-01
GFRS-01 Gateway and Firewall Router as a Service Virtualised Firewall, Gateway Router Service - Dedicated HostWPSS-01 Web Proxy Server as a Service Secure Web Proxy Server as a Service - Dedicated Server
Secure Gitlab as a ServiceCPAS-01 Secure Gitlab as a ServiceDescription Private Gitlab Service
Gitlab Community Server for Private project Control ( Up to 100Gb )
Notes Per User Service, 5Gb per User
Service 2nd or 3rd Line Support options, Monday-Friday 9am-5:30pmUnit Dedicated ServiceInitial This service has an initial setup fee of £4475Range From £47 to £92 per month Key Software Component #N/AOrder Minimum 10Related ServicesDBAC-01 Continuous Delivery as a Service Private Gitlab CD/CI Service
VSMS-02 Secure DevOps Build Workstation as Service Secure DevOps Build Workstation for Managed Environments
JASS-02 Continuous Delivery SaaS Service - Dedicated Server
Cloud VPN as a Service Software Based VPN Server and Router Service - Dedicated Host
DevOps Build Automation and Continuous Delivery Service
VCL GCloud10 Platform as a Service Description
Appendix 2Terms and Conditions
1. In all products Support is calculated on the basis of a remote (ie not on site)basis, and where necessary, a secure access service to the services isrequired at additional cost. For UKCloud Tier 1 Elevated services, the SecureRemote Access solution provides such a service.
2. Change Requests, Change Boards, and Change Management are notincluded and will be calculated at normal SFIA rates. As a service, patchingand updates will be managed and coordinated by Viewdeck and unless thereis an impact to service, no notification will be provided. Regular, pre-approved change windows for minor outages will be agreed to upfront.
3. Rates do not include ITHC activity. Most components have been checkedpreviously, and where possible information will be made available. Wherepossible, and as required, supporting an ITHC and the outcomes of the ITHCwill be managed as a fixed price (the size depending on your accreditationrequirements).
4. Regular Service Reviews are not included, but can be added as a fixed costpackage, depending on the integration required. Standard 'out of the box'reporting from service management tools will be provided for 2nd and 1stline support packages only. 3rd line support functions are not included(assumed to be part of a 2nd line support function). Where tailored oralternative reporting is required, these will be provided as an additional item.
5. Inline with our Security Policy, Patches will be applied when appropriate, andunless of High Priority (CESG or other body), at the discretion of Viewdeck.We aim to patch all systems within 30 days for Repository or packagedapplications. Third party application software will only be upgraded if majorfailures or issues exist, impacting usability, or on annual renewals. Upgradescan be done at the client's request as a chargeable item.
6. 1st Line support assumes clients can self serve via the Support Portal, andwill always be directed towards email/online support functions.
7. 2nd Line support assumes interfacing and triage is handled by a separate(client) Service desk, with Viewdeck acting as a Resolver Group. Email andOnline Service portal will help manage and coordinate.
8. 3rd Line support assumes all end user management, and investigation isprovided by client’s ICT support function/organisation, and liaison isrestricted to technical, authorised and available resources.
9. Additional Support tasks that are passed down to Viewdeck inappropriatelywill be charged at the normal SFIA Rates.
10. Viewdeck takes no responsibility for the functionality or the performance ofthese applications, open source solutions or their components. Wherepossible, software functionality will be baselined and agreed atcommissioning. Downstream operational issues will be fixed, and bestendeavours used to maintain service, but responsibility for third party
©Viewdeck Consulting Limited 2018 Page 34 of 45
VCL GCloud10 Platform as a Service Description
software does not lie with Viewdeck. Liability is limited to the Value of theTermination of the Contract.
©Viewdeck Consulting Limited 2018 Page 35 of 45
VCL GCloud10 Platform as a Service Description
Appendix 3Viewdeck Support
The Viewdeck Support and Service desk provides a range of options to meet yourspecific needs, based upon the service and business need. Our support channelsinclude telephone, web, Slack and email support to users of the service. This providesan ITIL aligned help desk, with standard reporting, incident management andproblem management processes using an application tool-set, with an SLA reportingback to the customer. Our support helpdesk is available, during normal workinghours, to log support calls for any incidents. Standard support hours can be extendedby agreement. Each customer call is logged, in our remote management system, andthat provides a unique call reference number track the incident, to enable you totrack your issue, providing ease of exchange during incident resolution.
Our fully trained team work directly with our clients to manage and resolve supportqueries using telephone support, remote access and on-site were requested.
Our Standard Support provides clients with monthly reports, remote problemmanagement enquiries and monthly client engagement to provide integration intothe client’s service architecture and federated service models.
Incident ManagementViewdeck follows a traditional P1-P5 problem management prioritisation andresponse model, providing integration and escalation as you would expect to deliverto the agreed service levels.
P1 Total loss of service. P2 Some loss of service. P3 Small loss of service or work around. P4 Tasks are made more difficult, but are not impossible to complete. P5 Interferes with non-operational use.
Urgency of responsePriority
codeUrgency of response Target response (within
core hours)Target
resolution(within core
hours) (M-F x 9-5)
P1 Immediate, sustained effort using all necessary and available resources until service is restored.
Immediate response, actionwithin 15 Mins (Enterprise 24x7) , 1 hour (Outside Support Hours)
4 hours
P2 Immediate response to assess the situation, staff
Immediate response (withincontracted Service Hours),
1 working day
©Viewdeck Consulting Limited 2018 Page 36 of 45
VCL GCloud10 Platform as a Service Description
may be interrupted and taken away from low or medium priority jobs.
action within 2 hour
P3 Response using standard procedures and operatingwithin the normal frameworks
Email notification of call being logged (within contracted Service Hours) 1 hour. Response by email or phone within 1 working day.
2 working days
P4 Response using standard procedures and operatingwithin the normal frameworks as time allows.
Email notification of call being logged (within contracted Service Hours) 1 hour. Response by email or phone within 1 working day.
5 working days
P5 Response using standard procedures and operatingwithin the normal frameworks as time allows
Email notification of call being logged (within contracted Service Hours) 1 hour. Response by email or phone within 1 working day.
10 working days
Our Service Level Objective aims to resolve 90% of incidents within the targetresolution time.
All P1 and P2 events are allocated an Incident Manager to see and manage incidentsthrough to successful resolution. Where necessary, client help desks will be informedand updated as the incident resolution evolves. The Incident Manager will provideSPOC for the client, provide regular reporting back, and coordinate activity betweenvarious resolver groups as necessary to ensure successful resolution.
©Viewdeck Consulting Limited 2018 Page 37 of 45
VCL GCloud10 Platform as a Service Description
Appendix 4Viewdeck Cloud Software Service Catalogue
Code SaaS Summary Notes PerSASS-01 Secure Application Server
ServiceSecure Application Server as a Service - Dedicated Server
Locked Down Application SaaS Server, supporting Shell, Perl, Python, PHP application.
20Gb Limit, up to 10 concurrent sessions/threads. Host & Application Environment Only.
SASS-02 Secure Application Server as a Service - Large Dedicated Server
Locked Down Application SaaS Server, supporting Shell, Perl, Python, PHP application.
20Gb Limit, up to 25 concurrent sessions/threads. Host & Application Environment Only.
LAMP-01 Secure Linux, Apache, MySQL & Php Application Server Service
Secure Web/LAMP Server as a Service - Dedicated Server
Secure Web, PHP, Database SaaS Server, PHPwith MariaDB.
20Gb Limit, up to 8 concurrent sessions/threads. Host & Application Environment Only.
LAMP-02 Secure Web/Lamp Server as a Service - Large Dedicated Server
Larger Secure Web, PHP, Database SaaS Server, PHPwith MariaDB.
20Gb Limit, up to 20 concurrent sessions/threads. Host & Application Environment Only.
JASS-01 Secure Java Application Server Service
Secure Java Application Server as a Service - Dedicated Server
Dedicated Locked Down Java Tomcat Server.
20Gb Limit, up to 10 concurrent sessions/threads. Host & Application Server Environment Only. Options around Tomcat 6, 7 or 8, Oracle Java or OpenJDK
JASS-02 Secure Java Application Server as a Service - Large Dedicated Server
Larger Dedicated Locked Down Java Tomcat Server.
20Gb Limit, up to 20 concurrent sessions/threads. Host & Application Server Environment Only. Options around Tomcat 6, 7 or 8, Oracle Java or OpenJDK
WPSS-01 Web Proxy Server as a Service
Secure Web Proxy Server as a Service - Dedicated Server
Locked Down Apache2 reverse Proxy SaaS Server,
up to 40 concurrent sessions/threads. Host & Application Environment Only.
SIWP-01 Secure Ionic Web Platform Secure Ionic Web Server asa Service - Dedicated Server
Locked Down Ionic Application SaaS Server, with optional npm and full
20Gb Limit, up to 10 concurrent sessions/threads. Host &
©Viewdeck Consulting Limited 2018 Page 38 of 45
VCL GCloud10 Platform as a Service Descriptionstack services. Application Environment
Only.
SIWP-02 Secure Ionic Web Server asa Service - Large DedicatedServer
Locked Down Ionic Application SaaS Server, with optional npm and full stack services.
20Gb Limit, up to 25 concurrent sessions/threads. Host & Application Environment Only.
GFRS-01 Gateway and Firewall Router as a Service
Virtualised Firewall, Gateway Router Service - Dedicated Host
pfSense or IPTables based firewall router gateway service for security enforcing, zone separation and routing
Dedicated
GFRS-02 Virtualised Firewall, Gateway Router plus IPSec or Openvpn Service - Dedicated Host
pfSense or IPTables based firewall router gateway service for security enforcing, zone separation and routing. Plus Openvpn or IPSec Support
IPSec/ OpenVpn
GFRS-03 Virtualised Firewall, Gateway Router plus IPSec or Openvpn, and DNS/Bind9 DNS Service - Dedicated Host
pfSense or IPTables based firewall router gateway service for security enforcing, zone separation and routing. Plus Openvpn or IPSec, and BIND9/DNS Support
DNS Service
GFRS-04 Virtualised Domain Firewall,Gateway Router Service - Dedicated Host
IPTables based firewall router gateway service for security enforcing, zone separation and routing. HA/Resilience Configuration
Dedicated
GFRS-05 Virtualised Domain Firewall, Gateway Router plus IPSec or Openvpn Service - Dedicated Host
pfSense or IPTables based firewall router gateway service for security enforcing, zone separation and routing. Plus Openvpn or IPSec Support. HA/Resilience Configuration
IPSec/ OpenVpn
GFRS-06 Virtualised Domain Firewall,Gateway Router plus IPSec or Openvpn, and DNS/Bind9 DNS Service - Dedicated Host
pfSense or IPTables based firewall router gateway service for security enforcing, zone separation and routing. Plus Openvpn or IPSec, and BIND9/DNS Support. HA/Resilience Configuration
DNS Service
©Viewdeck Consulting Limited 2018 Page 39 of 45
VCL GCloud10 Platform as a Service DescriptionSCIS-01 Secure Continuous
Integration/Continuous Delivery Platform Service - Docker®
Secure Docker Platform forCD/CI - Dedicated Host
Deployed Docker Containerin Secured Host for CD/CI deployments.
50Gb Storage/Limit, 4Gb host, Approx 10 Concurrentthreads/users
SCIS-02 Secure Docker Platform forCD/CI - Larger Dedicated Host
Deployed Docker Containerin Secured Host for CD/CI deployments.
50Gb Storage/Limit, 8Gb host, Approx 20 Concurrentthreads/users
SCIS-03 Secure Docker Platform forCD/CI - Scaled Dedicated Host
Deployed Docker Containerin Secured Host for CD/CI deployments.
50Gb Storage/Limit, 16Gb host, Approx 40 Concurrent threads/users
RMDS-01 Resilient MySQL® Database Server as a Service
Relational Database as a Service - Dedicated Mysql Server
Database Server, ideal for project, small community sized workloads
Single Instance, up to 50Gb, up to 20 Connections. Multiple instances needed for Clustering & HA Architectures
RMDS-02 Relational Database as a Service - Larger Dedicated Mysql Server
Larger Database Server, ideal for Heavier Workloads, Single Instance
Up to 150Gb, up to 50 Connections. Multiple instances needed for Clustering & HA Architectures
RMDS-03 Relational Database as a Service - High Availability Mysql (Sync) Server
Synchronous HA Database Server
Single Instance, up to 50Gb, up to 20 Connections. Multiple instances needed for Clustering & HA Architectures
RMDS-04 Relational Database as a Service - Larger High Availability Mysql (Sync) Server,
Larger Synchronous HA Database Server
Up to 150Gb, up to 50 Connections. Multiple instances needed for Clustering & HA Architectures
RMDS-05 Relational Database as a Service - Distributed High Availability Mysql (ASync) Server
ASynchronous/WAN basedHA Database Server Inc Tungsten
Single Instance, up to 50Gb, up to 20 Connections. Multiple instances needed for Clustering & HA Architectures
RMDS-06 Relational Database as a Service - Larger DistributedHigh Availability Mysql (ASync) Server
Larger ASynchronous/WAN HA Database Server Inc Tungsten
Up to 150Gb, up to 50 Connections. Multiple instances needed for Clustering & HA Architectures
RMDD-01 Resilient MariaDB® Database Server as a Service
Relational Database as a Service - Dedicated MariaDB Server
Database Server, ideal for project, small community sized workloads
Single Instance, up to 50Gb, up to 20 Connections. Multiple instances needed for
©Viewdeck Consulting Limited 2018 Page 40 of 45
VCL GCloud10 Platform as a Service DescriptionClustering & HA Architectures
RMDD-02 Relational Database as a Service - Larger Dedicated MariaDB Server
Larger Database Server, ideal for Heavier Workloads, Single Instance
Up to 150Gb, up to 50 Connections. Multiple instances needed for Clustering & HA Architectures
RMDD-03 Relational Database as a Service - High Availability MariaDB (Sync) Server
Synchronous HA Database Server
Single Instance, up to 50Gb, up to 20 Connections. Multiple instances needed for Clustering & HA Architectures
RMDD-04 Relational Database as a Service - Larger High Availability MariaDB (Sync) Server,
Larger Synchronous HA Database Server
Up to 150Gb, up to 50 Connections. Multiple instances needed for Clustering & HA Architectures
RMDD-05 Relational Database as a Service - Distributed High Availability MariaDB (ASync) Server
ASynchronous/WAN basedHA Database Server Inc Tungsten
Single Instance, up to 50Gb, up to 20 Connections. Multiple instances needed for Clustering & HA Architectures
RMDD-06 Relational Database as a Service - Larger DistributedHigh Availability MariaDB (ASync) Server
Larger ASynchronous/WAN HA Database Server Inc Tungsten
Up to 150Gb, up to 50 Connections. Multiple instances needed for Clustering & HA Architectures
RPDS-01 Resilient PostgreSQL® Database Server as a Service
Relational Database as a Service - Dedicated PostgreSQL Server
Database Server, ideal for project, small community sized workloads
Single Instance, up to 50Gb, up to 20 Connections. Multiple instances needed for Clustering & HA Architectures
RPDS-02 Relational Database as a Service - Larger Dedicated PostgreSQL Server
Larger Database Server, ideal for Heavier Workloads, Single Instance
Up to 150Gb, up to 50 Connections. Multiple instances needed for Clustering & HA Architectures
RMDB-01 Resilient MongoDB® Database Server as a Service
NoSQL Database as a Service - Dedicated MongoDB Community Server
Database Server, ideal for project, small community sized workloads. Single Instance
Up to 50Gb Single Instance, up to 20 Connections. 3 Instances Needed for a Cluster
RMDB-02 NoSQL Database as a Service - Larger Dedicated Community MongoDB
Larger Database Server, ideal for Heavier Workloads, Single Instance
Up to 150Gb,up to 50 Connections, 3 Instances Needed for a Cluster
©Viewdeck Consulting Limited 2018 Page 41 of 45
VCL GCloud10 Platform as a Service DescriptionServer
RMDB-03 NoSQL Database as a Service - Dedicated MongoDB Enterprise Server
Database Server, ideal for project, small community sized workloads. Single Instance
Up to 50Gb Single Instance, up to 20 Connections. 3 Instances Needed for a Cluster
RMDB-04 NoSQL Database as a Service - Larger Dedicated Enterprise MongoDB Server
Larger Database Server, ideal for Heavier Workloads, Single Instance
Up to 150Gb,up to 50 Connections, 3 Instances Needed for a Cluster
RACD-01 Resilient Apache Cassandra(NoSQL)® Database Serveras a Service
CSQL Database as a Service - Dedicated Cassandra Server
Database Server, ideal for project, small community sized workloads.
Up to 50Gb Single Instance, up to 20 Connections. 3 Instances Needed for a Cluster
RACD-02 CSQL Database as a Service - Larger Dedicated Cassandra Server
Larger Database Server, ideal for Heavier Workloads, Single Instance
Up to 150Gb,up to 50 Connections, 3 Instances Needed for a Cluster
RCDS-01 Resilient CouchDB (NoSQL)® Database Serveras a Service
NoSQL Database as a Service - Dedicated CouchDB Server
Database Server, ideal for project, small community sized workloads.
Up to 50Gb Single Instance, up to 20 Connections. 3 Instances Needed for a Cluster
RCDS-02 NoSQL Database as a Service - Larger Dedicated CouchDB Server
Larger Database Server, ideal for Heavier Workloads, Single Instance
Up to 150Gb,up to 50 Connections, 3 Instances Needed for a Cluster
SGIT-01 Secure Gitlab as a Service Private Gitlab Service Gitlab Community Server for Private project Control (Up to 100Gb )
Per User Service, 5Gb per User
VCSS-01 Version Control Server (GIT) Service
Private Git Service Git Server for Private project Control (Up to 100Gb)
Private
MDAA-01 Management Domain as a Service
Complete Management Domain As a Service for Secure, Project and Operational Environments
Software Build Server, Admin Workstation, Monitoring, Event/Log Management, Patch Server,Backup Server.
500Gb Max total Storage
CPAS-01 Content Proxy as a Service Proxy, Content Checking and AV for incoming web Traffic
Dedicate Host to support up to 20 Concurrent Clients
Includes 20Gb Log Storage,Subscriptions
CPAS-02 Proxy, Content Checking and AV for incoming web Traffic - Large
Dedicate Host to support up to 50 Concurrent Clients
Includes 40Gb Log Storage, Subscriptions
DBAC-01 DevOps Build Automation and Continuous Delivery Service
Continuous Delivery SaaS Service - Dedicated Server
Continuous Delivery SaaS Service, provided by Chef
Dedicated
DBAC-02 Continuous Delivery SaaS Service - Large Dedicated
Larger Resource Server for additional/High work loads
Large Dedicated
©Viewdeck Consulting Limited 2018 Page 42 of 45
VCL GCloud10 Platform as a Service DescriptionServer
DBAC-03 Continuous Delivery SaaS Service - Per Managed Physical/Virtual Host
Additional Per Host Price Managed Physical
©Viewdeck Consulting Limited 2018 Page 43 of 45
VCL GCloud10 Platform as a Service Description
Appendix 5
About UsWhy is Viewdeck Different?
Value - As a specialist SME, we can bring big company/ex Big 4 consultancy experience with niche specialist value.
Insight - Having delivered across the Public Sector, Client Side and Supplier Side, our senior team bring more than just delivery capability, they bring insight and a network of relationships.
Experience - Wide range of technical delivery support to MOD, SIA, Cabinet Office, NCA, Home Office, DVLA.
Win - Our team have delivered £100m’s of savings to HMG in the past few years by re-negotiating ICT contracts.
Diligence - Our team worked regularly in secure government agencies. Our people, processes and capabilities support secure quality and assurable deliveries. ISO 27001 certified.
Energy - Uplift your programme with new skills, new experiences and new insight.
Collaboration - Proven client support, skills transfer. Delivery through client/Viewdeck joint collaborative working.
Knowledge - Specialist in Architecture, Cloud Solutions, HMG Transformation, and Leaders in HMG ICT programmes.
Offering Value for MoneyApproach Outcome
Our team have provided skills and advice to awide range of public and private sector clients.Here is a small selection of them.
Expert skills and resources, Real world experience.
Efficient coherent delivery, with less time reworking or ‘learning on the job’
Strong domain knowledge.
Swift subject understanding, minimise learning and false assumptions
Buddy/duplication of services/capabilities.
Risk reduction of delays through single points of knowledge and absence
Utilise existing staff, skills transfer, embed, upskill,.
Minimise Consultant spend, ensuring timely efficient handovers to client.
Iterative/Agile, rapid reaction to changes
Speedy product creation, less time pursuing wrong directions
Re-use where applicable Less time re-inventing capabilities, best value for money in delivery
Strong Comms, lasting legacy, easy to adopt, real artifacts.
Investments reused create more downstream value for the client
New Ways of working Enthused and interested workforce, more able to rapidly accommodate change and hence increased efficiency
©Viewdeck Consulting Limited 2018 Page 44 of 45
VCL GCloud10 Platform as a Service Description
©Viewdeck Consulting Limited 2018 Page 45 of 45
Viewdeck Consulting Limited 3rd Floor, 207 Regent Street,London,W1B 3HH+44(0)203 384 3350www.viewdeck.comgcloud@viewdeck.com
top related