Google Cloud Platform Marketplace Solutions

Google Cloud Marketplace offers a robust, enterprise-tailored, and vetted set ... Terms and conditions ... Gold - for production services on Cloud Platform Skiptomaincontent Canwestoreanalyticscookiesonyourdevice? Analyticscookieshelpusunderstandhowourwebsiteisbeingused. Yes,DigitalMarketplacecanstoreanalyticscookiesonyourdevice No,DigitalMarketplacecannotstoreanalyticscookiesonyourdevice HowDigitalMarketplaceusescookies Youcanchangeyourcookiesettingsatanytime. Hide beta HelpusimprovetheDigitalMarketplace-sendyourfeedback DigitalMarketplace Cloudhosting,softwareandsupport Cloudhosting GoogleCloudPlatformMarketplaceSolutions NetpremacyLimited GoogleCloudPlatformMarketplaceSolutions GoogleCloudMarketplaceoffersarobust,enterprise-tailored,andvettedsetofbusinesssolutionsSpendstrategicallywithoptionsthatcandrawdownyourGCPcommittedspend,andenableyourdeveloperstoprocuredirectlyfromGCPMarketplace.Lastly,simplifymulti-cloudbillingwithOrbiteraCloudBillingandCostManagement. Features SolutionsthatarevettedbyGoogleagainstsecurityvulnerabilities Enabledevelopmentandfacilitategovernance, flexiblebillingmodels,andretireGCPcommittedspend Acceleratetheprocurementprocessforyouandyourteams. Createappsforvirtuallyanyusecase PrivateCatalogenablescontroloversolutionusage Anthosappsthatcanbedeployedanywhere. Getindividualizedsolutionpricingquoteswithprivatepricing. Areasincludemulti-cloudbilling,informationarchiving,databases,firewalls,etc One-clickdeploymentsofvendorslikeStrata,IronMountain,MongoDB,etc Benefits PayforwhatyouusewithGCPperminutebilling Sustainedusagediscountsappliedautomaticallyifmachinesrunforlonger Highperformancemachineswithsuper-fastboottimes BenefitfromthesametechnologythatpowersGoogle GoogleAppEnginescalesautomaticallyinresponsetoincreaseddemand Pre-emptablemachinesofferpredictablelowcostcomputeforbatch Highbandwidthlinksbetweenmachines,datacentres,andendusers DataencryptedatrestandintransitwithGCP CustomMachineTypematchmachinescloselytoworkloads Removetheneedforseparatebillingagreements Pricing £20aserveramonth Freetrialavailable Servicedocuments Pricingdocument PDF SkillsFrameworkfortheInformationAgeratecard PDF Servicedefinitiondocument PDF Termsandconditions PDF Requestanaccessibleformat Ifyouuseassistivetechnology(suchasascreenreader)andneedversionsofthesedocumentsinamoreaccessibleformat, [email protected]. Tellthemwhatformatyouneed.Itwillhelpifyousaywhatassistivetechnologyyouuse. Framework G-Cloud12 ServiceID 320702003890028 320702003890028 Contact NetpremacyLimited AndrewEden Telephone:01133662008 Email:[email protected] Servicescope Serviceconstraints No Systemrequirements None Usersupport Emailoronlineticketingsupport Emailoronlineticketing Supportresponsetimes SLAdependent Usercanmanagestatusandpriorityofsupporttickets Yes Onlineticketingsupportaccessibility WCAG2.1AAorEN301549 Phonesupport Yes Phonesupportavailability 24hours,7daysaweek Webchatsupport No Onsitesupport Yes,atextracost Supportlevels Bronze-includesourproductdocumentation,communitysupport,andsupportforbillingissuesSilver-Entry-levelaccesstopaidsupportservicesGold-forproductionservicesonCloudPlatformPlatinum-forhighvolumeproductionservicesonCloudPlatformAfulldescriptionoftheserviceofferingscanbefoundathttps://cloud.google.com/support/ Supportavailabletothirdparties No Onboardingandoffboarding Gettingstarted Documentation,training,workedexamples,bestpractices,andafreeusagetierareavailabletoassistuserswithgettingstartedonGoogleCloudPlatform.GettingStarted:https://cloud.google.com/gcp/getting-started/OnlineDocumentation:https://cloud.google.com/docs/TrainingSessions:https://cloud.google.com/training/GoogleDevelopersCodelabsprovideaguided,tutorial,hands-oncodingexperience:https://codelabs.developers.google.com/Bestpractices:https://cloud.google.com/docs/enterprise/best-practices-for-enterprise-organizationsFreetieravailable:https://cloud.google.com/free/ Servicedocumentation Yes Documentationformats HTML ODF PDF End-of-contractdataextraction Google'sadoptionofopenAPIsandopensourcetechnologyallowsuserstomovetheirdataeasilybetweencloudenvironmentsandpreventvendorlock-in(https://cloudplatform.googleblog.com/2016/07/how-to-escape-lock-in-with-a-multi-cloud-stack26.html).Weofferthirdpartysolutionsforofflinedataimport/export(https://cloud.google.com/storage/docs/offline-media-import-export),andVMmigrationthroughrecommendedpartners(https://cloud.google.com/migrate/).FurthertothisArticles7and8ofGoogleDataProcessingandSecurityTerms(https://cloud.google.com/terms/data-processing-terms)statesthatGooglewillprovidetheabilitytocorrect,block,exportanddeletetheCustomerDataduringthetermsoftheagreement.TotheextentthecustomerdoesnothavetheabilitymigrateCustomerDatatoanothersystem,Googlewill,atCustomer’sreasonableexpense,complywithanyreasonablerequeststoassistinthis. End-of-contractprocess OntheexpiryorterminationoftheAgreement,afterarecoveryperiodofupto30daysfollowingsuchexpiryortermination,GooglewilldeletetheCustomer-DeletedDatawithinamaximumperiodof180days,unlessapplicablelegislationorlegalprocesspreventsitfromdoingso. Usingtheservice Webbrowserinterface Yes Usingthewebinterface Deploy,scaleanddiagnoseissuesviaasimplewebbasedinterface.Youcansecurelymanageandmonitoreverythingthatpowersyourcloudapplication.https://cloud.google.com/cloud-console/ Webinterfaceaccessibilitystandard Noneordon’tknow Howthewebinterfaceisaccessible Weareworkingtowardsmakingourproductsandservicesmoreaccessibleforassistivetechnologyusers. Webinterfaceaccessibilitytesting Weareworkingtowardsimprovingthetestingofourproductsandserviceswithassistivetechnologyusers. API Yes Whatuserscanandcan'tdousingtheAPI YoucanautomateyourworkflowsinyourlanguagebyaccessingtheGoogleCloudPlatformproductsfromyourcode.CloudAPIsprovidesimilarfunctionalitytoCloudSDKandCloudConsole,andallowyoutoautomateyourworkflowsbyusingyourfavoritelanguage.https://cloud.google.com/apis/ APIautomationtools Ansible Chef SaltStack Terraform Puppet Other OtherAPIautomationtools Jenkins,Packer,Kubernetes,Spinnaker,GoogleCloudDeploymentManager,Pivotal,Openshift APIdocumentation Yes APIdocumentationformats OpenAPI(alsoknownasSwagger) HTML Commandlineinterface Yes Commandlineinterfacecompatibility LinuxorUnix Windows MacOS Other Usingthecommandlineinterface TheCLIcanbeusedtoaccessproductsandservicesonGCPfromthecommand-line.Youcanrunthesetoolsinteractivelyorinyourautomatedscripts.https://cloud.google.com/sdk/ Scaling Scalingavailable Yes Scalingtype Automatic Manual Independenceofresources GCPrunsontopofGoogle'sinfrastructurewhichservesbillionsofusersacrossmanyproductsandservices,theintegrityandscaleofthoseservicesensuresthatuserdemandishandledappropriately.Customerdataislogicallysegregatedbydomaintoallowdatatobeproducedforasingletenantonly.TheauthorizationtoprovisionadditionalprocessingcapacityisobtainedthroughbudgetapprovalsandmanagedthroughinternalSLAsaspartofaneffectiveresourceeconomy.Furtherdetails-https://cloud.google.com/files/Google-Cloud-CSA-CAIQ-January2017-CSA-CAIQ-v3.0.1.pdf(SectionAAC-03.1andIVS-04.3) Usagenotifications Yes Usagereporting API Email SMS Other Analytics Infrastructureorapplicationmetrics Yes Metricstypes CPU Disk HTTPrequestandresponsestatus Memory Network Numberofactiveinstances Other Othermetrics Seedocumentationforfurthermetricshttps://cloud.google.com/products/management/ Reportingtypes APIaccess Real-timedashboards Resellers Suppliertype Resellerprovidingextrasupport Organisationwhoseservicesarebeingresold Google Staffsecurity Staffsecurityclearance Othersecurityclearance Governmentsecurityclearance UptoSecurityClearance(SC) Assetprotection Knowledgeofdatastorageandprocessinglocations Yes Datastorageandprocessinglocations EuropeanEconomicArea(EEA) EU-USPrivacyShieldagreementlocations Otherlocations Usercontroloverdatastorageandprocessinglocations Yes Datacentresecuritystandards Complieswitharecognisedstandard(forexampleCSACCMversion3.0) Penetrationtestingfrequency Atleastevery6months Penetrationtestingapproach Anotherexternalpenetrationtestingorganisation Protectingdataatrest Physicalaccesscontrol,complyingwithCSACCMv3.0 Physicalaccesscontrol,complyingwithSSAE-16/ISAE3402 Physicalaccesscontrol,complyingwithanotherstandard Encryptionofallphysicalmedia Scale,obfuscatingtechniques,ordatastoragesharding Other Otherdataatrestprotectionapproach GoogleharddrivesleveragetechnologieslikeFDE(fulldiskencryption)anddrivelocking.https://cloud.google.com/security/encryption-at-rest Datasanitisationprocess Yes Datasanitisationtype Explicitoverwritingofstoragebeforereallocation Deleteddatacan’tbedirectlyaccessed Hardwarecontainingdataiscompletelydestroyed Equipmentdisposalapproach Complyingwitharecognisedstandard,forexampleCSACCMv.30,CAS(Sanitisation)orISO/IEC27001 Backupandrecovery Backupandrecovery Yes What’sbackedup VMs Databases Logs PersistentDiskSnapshots Backupcontrols Thisvariesbetweenservices,userscancontrolwhatbackupsareperformedviathewebinterface,CLIorAPIs. Datacentresetup Multipledatacentreswithdisasterrecovery Schedulingbackups Usersschedulebackupsthroughawebinterface Backuprecovery Userscanrecoverbackupsthemselves,forexamplethroughawebinterface Data-in-transitprotection Dataprotectionbetweenbuyerandsuppliernetworks Privatenetworkorpublicsectornetwork TLS(version1.2orabove) IPsecorTLSVPNgateway LegacySSLandTLS(underversion1.2) Other Otherprotectionbetweennetworks SecuringdataintransitisahighpriorityforGoogle.GooglewasthefirstmajorcloudprovidertoenableHTTPS/TLSbydefault.GooglehasalsoupgradedallourRSAcertificatesto2048-bitkeys,makingourencryptionintransitforCloudPlatformandallotherGoogleservicesevenstronger.Perfectforwardsecrecy(PFS)minimizestheimpactofacompromisedkey,oracryptographicbreakthrough.Itprotectsnetworkdatabyusingashort-termkeythatlastsonlyacoupleofdaysandisonlyheldinmemory,ratherthanakeythat’susedforyearsandkeptondurablestorage.https://cloud.google.com/security/ Dataprotectionwithinsuppliernetwork TLS(version1.2orabove) IPsecorTLSVPNgateway LegacySSLandTLS(underversion1.2) Other Otherprotectionwithinsuppliernetwork GoogleencryptsCloudPlatformdataasitmovesbetweenourdatacentersonourprivatenetwork.TrafficonGoogle'snetworksisencrypted.https://cloud.google.com/security/ Availabilityandresilience Guaranteedavailability SLAsareservicespecific:https://cloud.google.com/terms/sla/ Approachtoresilience Googleoperatesaglobalnetworkofdatacenterstoreducerisksfromgeographicaldisruptions.Thelinkbelowincludesthelocationsofourdatacenters:http://www.google.com/about/datacenters/inside/locations/Googledoesnotdependonfailovertootherprovidersandbuildsredundancyandfailoverintoitsownglobalinfrastructure.GoogleperformsannualtestingofitsbusinesscontinuityplanstosimulatedisasterscenariosthatsimulatecatastrophiceventsthatmaydisruptGoogleoperations.https://cloud.google.com/files/Google-Cloud-CSA-CAIQ-January2017-CSA-CAIQ-v3.0.1.pdf(sectionBCR-01) Outagereporting Googlemaintainsadashboardwithserviceavailabilityandserviceissueshere:https://status.cloud.google.com/ Identityandauthentication Userauthentication 2-factorauthentication Publickeyauthentication(includingbyTLSclientcertificate) Identityfederationwithexistingprovider(forexampleGoogleapps) Dedicatedlink(forexampleVPN) Usernameorpassword Accessrestrictionsinmanagementinterfacesandsupportchannels GoogleCloudIdentity&AccessManagement(IAM)letsadministratorsauthorizewhocantakeactiononspecificresources,givingyoufullcontrolandvisibilitytomanagecloudresourcescentrally.Forestablishedenterpriseswithcomplexorganizationalstructures,hundredsofworkgroupsandpotentiallymanymoreprojects,CloudIAMprovidesaunifiedviewintosecuritypolicyacrossyourentireorganization,withbuilt-inauditingtoeasecomplianceprocesses.IAMaccesspoliciesaredefinedattheprojectlevelusinggranularcontrolsofusersandgroupsorusingACLs.https://cloud.google.com/iam/https://cloud.google.com/compute/docs/access/Forfurtherinformationsee;https://cloud.google.com/files/Google-Cloud-CSA-CAIQ-January2017-CSA-CAIQ-v3.0.1.pdfSectionIAM-12 Accessrestrictiontestingfrequency Atleastonceayear Managementaccessauthentication 2-factorauthentication Publickeyauthentication(includingbyTLSclientcertificate) Identityfederationwithexistingprovider(forexampleGoogleApps) Dedicatedlink(forexampleVPN) Usernameorpassword Devicesusersmanagetheservicethrough Dedicateddeviceovermultipleservicesornetworks Directlyfromanydevicewhichmayalsobeusedfornormalbusiness(forexamplewebbrowsingorviewingexternalemail) Auditinformationforusers Accesstouseractivityauditinformation Usershaveaccesstoreal-timeauditinformation Howlonguserauditdataisstoredfor User-defined Accesstosupplieractivityauditinformation Usershaveaccesstoreal-timeauditinformation Howlongsupplierauditdataisstoredfor Lessthan1month Howlongsystemlogsarestoredfor User-defined Standardsandcertifications ISO/IEC27001certification Yes WhoaccreditedtheISO/IEC27001 Ernst&YoungCertifyPointB.V. ISO/IEC27001accreditationdate 5/4/2016 WhattheISO/IEC27001doesn’tcover Seecertificateforfulllistofproductscovered,anythingnotlistedisnotcovered.https://cloud.google.com/files/ISO27001_Digital_2016.pdf ISO28000:2007certification No CSASTARcertification Yes CSASTARaccreditationdate 15/01/2017 CSASTARcertificationlevel Level1:CSASTARSelf-Assessment WhattheCSASTARdoesn’tcover Forfurtherinformationsee;https://cloud.google.com/security/compliance/csa-star/https://cloud.google.com/files/Google-Cloud-CSA-CAIQ-January2017-CSA-CAIQ-v3.0.1.pdf PCIcertification Yes WhoaccreditedthePCIDSScertification ReviewedbyanindependentQualifiedSecurityAssessor PCIDSSaccreditationdate 19/5/2016 WhatthePCIDSSdoesn’tcover ThevalidationenablesPCILevel1merchantstouseGoogleCloudPlatformfortheirprocessingservices.Forfurtherinformationsee;https://cloud.google.com/security/compliance/pci-dss/ Othersecuritycertifications Yes Anyothersecuritycertifications SSAE16/ISAE3402TypeII SOC3 SOC1 SOC2 HIPAA Plusmanyothers Securitygovernance Namedboard-levelpersonresponsibleforservicesecurity Yes Securitygovernancecertified Yes Securitygovernancestandards CSACCMversion3.0 ISO/IEC27001 Other Othersecuritygovernancestandards https://cloud.google.com/security/complianceSSAE16/ISAE3402TypeII:SOC1SOC2SOC3publicauditreportISO27001ISO27017ISO27018FedRampATOforGoogleAppEnginePCIDSSv3.1HIPAACSASTAREUDataProtectionDirectiveEU-U.S.PrivacyShieldFramework Informationsecuritypoliciesandprocesses https://cloud.google.com/security/complianceCustom,ISO27001,ISO27017,ISO270018 Operationalsecurity Configurationandchangemanagementstandard Conformstoarecognisedstandard,forexampleCSACCMv3.0orSSAE-16/ISAE3402 Configurationandchangemanagementapproach InGoogleproductionenvironments,softwareupdatesaremanuallyvettedtoensurethestabilityofthesystem.Changesarethentestedandcautiouslyrolledouttosystems.Thedetailsvarysomewhatdependingontheservicebeingconsidered,butalldevelopmentworkisseparatedfromtheoperationsystems,testingoccursinamulti-stagedfashioninbothenvironmentsandindedicatedtestsettings.Wecanshare,underNDA,theSOC2auditreport(basedonstandardsfromtheInternationalAuditingandAssuranceStandardsBoard),whichdescribesthechangemanagementprocess.Additionally,changestocodegothroughaprocessofcodereviewinvolvingadditionalengineer(s). Vulnerabilitymanagementtype Conformstoarecognisedstandard,forexampleCSACCMv3.0orSSAE-16/ISAE3402 Vulnerabilitymanagementapproach Googleadministratesavulnerabilitymanagementprocessthatactivelyscansforsecuritythreatsusingacombinationofcommerciallyavailableandpurpose-builtin-housetools,intensive-automatedandmanualpenetrationefforts,qualityassuranceprocesses,softwaresecurityreviewsandexternalaudits.Thevulnerabilitymanagementteamisresponsiblefortrackingandfollowinguponvulnerabilities.Onceavulnerabilityrequiringremediationhasbeenidentified,itislogged,prioritizedaccordingtoseverity,andassignedanowner.Thevulnerabilitymanagementteamtracksandfollowsupfrequentlyuntilremediated.GooglealsomaintainsrelationshipswithmembersofthesecurityresearchcommunitytotrackissuesinGoogleservicesandopen-sourcetools.https://cloud.google.com/security/whitepaper Protectivemonitoringtype Supplier-definedcontrols Protectivemonitoringapproach Google’ssecuritymonitoringprogramisfocusedoninformationgatheredfrominternalnetworktraffic,employeeactionsonsystemsandoutsideknowledgeofvulnerabilities.Atmanypointsacrossourglobalnetwork,internaltrafficisinspectedforsuspiciousbehavior,suchasthepresenceoftrafficthatmightindicatebotnetconnections.Networkanalysisissupplementedbyexaminingsystemlogstoidentifyunusualbehavior,suchasattemptedaccessofcustomerdata.Theyactivelyreviewinboundsecurityreportsandmonitorpublicmailinglists,blogposts,andwikis.AutomatednetworkanalysishelpsdeterminewhenanunknownthreatmayexistandescalatestoGooglesecuritystaff.https://cloud.google.com/security/whitepaper Incidentmanagementtype Conformstoarecognisedstandard,forexample,CSACCMv3.0orISO/IEC27035:2011orSSAE-16/ISAE3402 Incidentmanagementapproach Wehavearigorousincidentmanagementprocessforsecurityeventsthatmayaffecttheconfidentiality,integrity,oravailabilityofsystemsordata.Thisprocessspecifiescoursesofaction,proceduresfornotification,escalation,mitigation,anddocumentation.Google’ssecurityincidentmanagementprogramisstructuredaroundtheNISTguidanceonhandlingincidents(NISTSP800–61).Keystaffaretrainedinforensicsandhandlingevidenceinpreparationforanevent,includingtheuseofthird-partyandproprietarytools.Testingofincidentresponseplansisperformedforkeyareas,suchassystemsthatstoresensitivecustomerinformation.https://cloud.google.com/security/whitepaper Securedevelopment Approachtosecuresoftwaredevelopmentbestpractice Independentreviewofprocesses(forexampleCESGCPABuildStandard,ISO/IEC27034,ISO/IEC27001orCSACCMv3.0) Separationbetweenusers Virtualisationtechnologyusedtokeepapplicationsanduserssharingthesameinfrastructureapart Yes Whoimplementsvirtualisation Supplier Virtualisationtechnologiesused KVMhypervisor Howsharedinfrastructureiskeptseparate Customerdataislogicallysegregatedbydomaintoallowdatatobeproducedforasingletenantonly.Readwhitepaperhere:https://cloud.google.com/security/security-design/resources/google_infrastructure_whitepaper_fa.pdfhttps://cloud.google.com/files/Google-Cloud-CSA-CAIQ-January2017-CSA-CAIQ-v3.0.1.pdf(SectionAAC-03.1) Energyefficiency Energy-efficientdatacentres Yes Descriptionofenergyefficientdatacentres https://www.google.co.uk/about/datacenters/efficiency/ Pricing Price £20aserveramonth Discountforeducationalorganisations No Freetrialavailable Yes Descriptionoffreetrial Anycustomermayinitiateatrialoftheservicewitha$300freecredit.ThetrialisavailableoutsideofthescopeofG-CloudandnotofferedunderG-Cloudtermsandconditions. Linktofreetrial https://cloud.google.com/free/ Servicedocuments Pricingdocument PDF SkillsFrameworkfortheInformationAgeratecard PDF Servicedefinitiondocument PDF Termsandconditions PDF Requestanaccessibleformat Ifyouuseassistivetechnology(suchasascreenreader)andneedversionsofthesedocumentsinamoreaccessibleformat, [email protected]. Tellthemwhatformatyouneed.Itwillhelpifyousaywhatassistivetechnologyyouuse.