For organisations facing these challenges, Capita Private Cloud – SecurePlus allows them to manage data up to OFFICIAL, including OFFICIAL SENSITIVE, in the cloud. Capita can also offer connectivity to government networks such as Public Services Network (PSN), N3 health network, PNN, Government Secure Networks and frameworks such as G-Cloud.
For many public sector organisations or regulated businesses, this gives them not only peace of mind but control and flexibility through pay-as you-use pricing and the ability to scale up, or down, enabling them to move their infrastructure services to the cloud.
Peter Hands, executive director, Capita IT Enterprise Services, said: “Capita’s experience with G-Cloud has shown us that data security and data sovereignty are the two most pertinent issues that government consider when deciding which cloud services they need, and who they buy them from.
“Private sector customers we speak with are also beginning to understand the importance of UK-hosting, as businesses of all sizes realise that their business could be at risk if their data is stored on servers in countries with less stringent legal frameworks around data.”
Capita Private Cloud – SecurePlus is a fully managed service, hosted in Capita’s highly secure, tier 3 UK data centres which have been through the required audit and compliance assessments, meeting ISO27001, JSP 440/480, CESG GPG 8, CESG GPG 12 and CESG GPG 13.
It is supported exclusively by UK-based, HM Government security cleared staff and is delivered with an ITIL® service desk designed to support the private cloud infrastructure with guaranteed service levels. The core platform is monitored by Capita’s Protective Monitoring service, which is aligned with GPG13 Protective Monitoring Controls (PMCs).
Additional security layers and enhancements are provided over-and-above the basic requirements of OFFICIAL as it has been designed from the outset to adhere to CESG and commercial best practice for environments previously marked as RESTRICTED and with a business impact level 3.
Furthermore, the end-to-end service has been through a number of independent third party IT Health Check assessments, resulting in successful Defence Security and Assurance Services (DSAS) accreditation at the previous Protective Marking of RESTRICTED.
