Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
Important Confidentiality Notice
The information and data contained within this document contains confidential information of HewlettPackard Company or its affiliates or subsidiaries (collectively hereinafter “HP”) and is provided for
evaluation in advance of an award of a Framework Agreement. In consideration of receipt of this
document, the Authority agrees to maintain such information in confidence and to not reproduce or
otherwise disclose this information to any person outside the individual(s) or entity directly responsible for
evaluation of its contents. These confidentiality restrictions shall not apply to any such information which
was known to recipient without restriction prior to receipt of this document as evidenced by written
business records; which becomes publicly known through no fault of recipient; or which is rightfully
received by recipient from a third party without restriction. Upon award of a Framework Agreement the
provisions of the Framework Agreement will apply to any information and data provided within this
document which is incorporated into the Framework Agreement.
Neither HP nor its representatives shall have any liability to recipient or any of its representatives as a
result of the use of the information provided.
This proposal is subject to agreement of a Framework Agreement. No contractual relationship shall arise
until a Framework Agreement has been signed by both parties. The use of the terms “partner” or
“partnership” in this proposal does not imply a formal, legal, or contractual partnership, but rather a
mutually beneficial relationship arising from the teamwork between the parties.
Unless otherwise agreed in writing, pricing is valid for 120 days from date of submission of this document.
If there are any concerns, questions, or issues regarding this Confidentiality Notice, please contact your HP
representative.
© Copyright 2016 Hewlett-Packard Development Company, L.P.
HP Confidential—subject to use restriction
Page-2
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
Service Definition G Cloud Service – HP
G-Cloud Compute Service – LOT 1 and
LOT 2
1. G-Cloud Compute Service
1.1.
Overview
HP is offering G-Cloud Compute Service to meet the Authority’s G-Cloud requirement
for an Infrastructure as a Service Offering (IaaS) against LOT 1 and Platform as a
Service (PaaS) against LOT 2.
HP has the background and experience to manage and integrate IT systems into the
new cloud paradigm. For decades HP has managed complex, multi-sourced
environments and guided customers to secure, cost-effective solutions. We manage
over 300,000 servers globally in all industries and regions (across all server types:
utility, cloud, virtual, etc). This includes 60,000 virtual machines. HP has supported
governments for over 40 years and currently provides services to more than 389
government clients in 31 countries. This experience provides us with unique insight into
clients' concerns around security, cost reduction and reliability.
As a result of this experience, our G-Cloud Compute Service offers the benefits of
cloud computing whilst meeting enterprise-class requirements for security,
performance, and availability. These services are therefore ideal for G-Cloud customers
who require Impact Level 2 (IL2) level services delivered from within the UK.
Future versions of HP’s G-Cloud Compute Service will provide cloud services at a
range of higher IL levels HP is also bringing other cloud offers to market, including HP
OPen Cloud for customers whose requirements are less stringent and better served by
a public cloud. Further details can be found in Section 1.10 Roadmap.
HP provides a G-Cloud Compute Service that offers the following:



SLAs
Scale-up and scale-down capacity
Capability to meet a customer’s security and compliance requirements.
Workloads are hosted on physical or virtual servers in HP’s industry-leading nextgeneration data centres utilising HP’s mature security practices. Further details can be
found in Section 3 Service Management.
HP’s approach is open and supports heterogeneous environments in use across the
UK Government.
Lastly, HP is one of only a small number of cloud suppliers who support 3rd party
offerings in storage, networking and servers. Our solution also supports multiple
Operating Systems, VMs and technology stack.
1.2.
1.2.1.
G-Cloud Compute Options and Offerings
Deployment Model
Service title
G-Cloud Compute
Service IaaS
Public
N
HP Confidential—subject to use restriction
Private
Hybrid cloud
Y – G-Cloud
Compute Service is a
virtual (multi-tenant)
Private Cloud
provided from a
Y – G-Cloud
Compute Service is
designed to support
hybrid environments
of Public, Private and
Page-3
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
Service title
Public
Private
Supplier’s data
centres
1.2.2.
Figure 1.
Hybrid cloud
Legacy IT
environments
Catalogue Services
Key Services offered by the G-Cloud Compute Service
The figure illustrates the key services which are offered by the G-Cloud Compute
Service. As the figure illustrates, there are options for selecting both IaaS (Lot 1) and
PaaS (Lot 2) services which are outlined in the following paragraphs.
1.2.3.
G-Cloud Customer and Supplier Managed
Servers
HP offers two distinct capabilities/packages:
G-Cloud Customer-Managed Server
In this offering, the G-Cloud customer has administrative control of the resource
and is in control of subsequent configuration and changes. Installation of
software, tools and data is at the discretion and control of the G-Cloud
customer. HP retains privileged access to manage resources, changes and
provide a “last resort” capability for G-Cloud customers if they need help. The
G-Cloud customer will specify the initial configuration and connections. The GCloud customer receives one public IP address to access their resources.
This service has a 99.9% SLA measured at the server pool level. Specifically
excluded are the operating systems, applications and content that G-Cloud
customers are using and managing.
Supplier -Managed Server
In this offering, HP retains the administrative rights for the resources. The GCloud customer specifies the initial configuration and connections and is
granted access, via the G-Cloud Compute Service Portal, to manage the
content for applications and defined, limited changes to applications. This
enables G-Cloud customers to stage, test, promote to production and roll back
content on their services without service change management involvement. GCloud customers can request temporary and restricted administration privileges
to accomplish specific tasks such as installing software packages. The G-Cloud
customer will be allocated one public IP address to access their resources. A
HP Confidential—subject to use restriction
Page-4
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
wider range of add-on services - for example backup - are available for HP
managed service.
This service has a 99.9% SLA measured at the service pool level.
1.2.4.
Operating system and Operating System
licence
The customer can select from two server operating systems (32 & 64 bit), as follows:
 Microsoft Windows Server 2008 (x86 and x64 in Standard, Enterprise, and Data
centre editions)

Red Hat Enterprise Linux (5.3 i686 and 5.3 x86_64).
HP will provide operating system licences and maintenance support agreements. If the
G-Cloud customer has already purchased licences or support agreements, they can
retain those as long as the OS is an HP-supported OS build.
1.2.5.
Physical and Virtual Servers
G-Cloud Compute Service provides both physical and virtual servers as well as a
selection of Operating Systems (OS). The table below gives the current options for
physical and virtual server types. The G-Cloud customer can select both the server
type and the server size.
Server Type and Size
Virtual Machines
Physical Machines
Very Small
1 Core, 2 GB RAM
Small
2 Core, 4 GB RAM
Small
2 x Intel CPU Quadcore
min 2.4 GHz, 24 GB RAM
Medium
4 Core, 8 GB RAM
Medium
2 x Intel CPU Quadcore
min 2.4 GHz, 64 GB RAM
Large
8 Core, 16 GB RAM
Medium XL
2 x Intel CPU Quadcore
min 2.4 GHz, 144 GB RAM
Extra Large
8 Core, 32 GB RAM
Large
4x AMD CPU 12-core min
2.1 GHz, 512GB RAM
The G-Cloud customer will configure the amount of storage attached to the cloud
server through the G-Cloud Compute Service Portal. Storage is available with a Raid 5
(mirroring without parity or striping) configuration in any combination of 50, 100, 500,
and/or 1000 GB SAN blocks. Physical servers include 146 GB of onboard storage at no
additional price, although this storage is reserved for the operating system.
HP uses VMware ESX hypervisor for the provision and management of servers. The
Customer does not have access to the hypervior.
1.2.6.
Connectivity
HP can support the following network connectivity, and will manage all networking
infrastructure within HP’s data centre. Depending upon the selection, the G-Cloud
customer may incur additional hardware, software, and services costs to establish
network connectivity. This will be identified on the Order Form and agreed prior to
service commencement.
HP Confidential—subject to use restriction
Page-5
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011

Leveraged Internet—An Internet connection to their cloud environment

Virtual Private Network—A secured VPN connection to their cloud environment
 G-Cloud Customer-Provided Dedicated Circuits—A G-Cloud customerdedicated circuit connection to their cloud environment.
The G-Cloud customer may configure their cloud server’s IP address in a number of
ways:
 Public IP Address—Servers exposed to the public internet have a public IP
address assigned to the server and configurable through the Enterprise Cloud Service
Portal. The G-Cloud customer will register the public IP addresses with public DNS
services

Internal IP Address—All cloud servers have an internal IP address by default
 Host Names—All cloud servers have a host name by default and the G-Cloud
customer can change them through the G-Cloud Compute Service Portal.
1.2.7.
OS Licence Management
HP can provide Operating System licenses and maintenance for each provisioned
server, if required. If the Customer has already purchased the OS licenses through
existing Government agreements there is no need to purchase another. This option for
a Customer provided license is available.
1.2.8.
Optional Features
The G-Cloud customer can further personalise their cloud with the following optional
features at additional prices.
 Additional Firewall Rules—The compartment includes standard firewall rules, but
there is the option to modify these rules at an additional cost through a service request
via the G-Cloud Compute Service Portal. Selecting this option allows firewalls to be
more restrictive than they are under the base firewall rules included in G-Cloud
Compute Service

Back Up Services – these are described in Section 1.9.
1.3.
Information Assurance
This section describes the Impact Level (IL) at which the G-Cloud Service is accredited
to hold and process information.The data centres used to provide these services have
ISO 27001 accreditation. HP has designed them to be suitable to IL2 processing, and
will work with CESG through the G-Cloud process to:

Update Service Definition with agreed Security Obligations (including SyOPs as
appropriate) of the consumers of the service

Finalist a Light Weight RMADS in line with the template defined in the PSN RMARD

Put an ISO 27001 ISMS and Certification in place with a G-Cloud/PSN
Accreditation Panel agreed scope

Include a Statement of Residual Risk in line with the template defined in the PSN
RMARD
Allowing potential consuming organization to make a clear risk managed decision on
whether the use consume the service to support/process/store their Information Assets
The G-Cloud Compute Service is not intended for storage or processing of Personally
Identifiable Information (“PII”) or for compliance with regulatory standards (such as
those that apply to health care and related services, financial services, or payment card
transactions) and other critical uses and applications. If the G-Cloud customer has
questions concerning the suitability of these services for its use, please contact HP.
HP Confidential—subject to use restriction
Page-6
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
1.4.
Resource Type
G-Cloud Compute Service provides Burst resources. It allows a customer to quickly flex
server and storage resources up and down to meet their business needs. The customer
commits to base and peak capacity and only pays for the resources used within that
range.
1.5.
Guaranteed and non guaranteed resources
The G-Cloud Compute Service is reservation based and so access to server resources
are guaranteed up to the contracted peak reservation. Availability of additional
resources above peak capacity is not guaranteed.
1.6.
Data storage and locale
Each system instance of the G-Cloud Compute Service is a locale. System instances of
G-Cloud Compute Service are assigned to data centres.
1.7.
Data centre(s)
The data centre used to provide these services is located within the UK mainland at
Wynyard. The data centre is rated at T3+, using the TIA assessment. Wynyard is part
of a global network of data centres, which can be selected according to customer
requirement.
1.8.
Persistence of storage
The storage associated with a server instance is persistent. It is ordered as an option
per server.
1.9.
Backup/restore and disaster recovery
Backup is available as an add-on service for Customer Managed Servers. The core
service allows the G-Cloud customer to specify the exact level of back up they require
for the business tasks which they are undertaking. Therefore these are all additional to
the base service, as not all customers will require these. Clients can select their
requirements from the portal, and will be contacted by HP to finalise the detailed
solution and associated costs.
Backup services available in this manner include:
1. Incremental daily backups of G-Cloud customer files (excluding databases unless
converted by G-Cloud customer into flat files)
2. Weekly full backups of G-Cloud customer files (excluding databases unless
converted by G-Cloud customer into flat files)
3. Encryption and off-site storage of the foregoing backups
4. Retention of backups for thirty (30), sixty (60), or ninety (90) days, as the G-Cloud
customer may specify
5. Upon request, restoration of the G-Cloud customer’s files from backups (at HP’s
then-current standard rates) and
6. Upon request, provision of backups to the G-Cloud customer for archival purposes
(at HP’s then-current standard rates).
The G-Cloud Compute Service excludes any and all Disaster Recovery and Business
Continuity Services. HP has considerable experience in tailoring the right Disaster
Recovery and Business Continuity Service for each business situation. Should the GCloud customer require such services, HP would, under a consultancy arrangement,
aid in their specification and delivery. The Disaster Recovery service for the G-Cloud
Compute is a Roadmap item (Section 1.10)
HP Confidential—subject to use restriction
Page-7
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
1.10. Service Roadmap
Q1/2012 Enhancements to G-Cloud Compute Service
HP has a roadmap for the continued development of the G-Cloud Compute Service.
This includes Disaster Recovery expected in summer 2012. Roadmap items will be
priced when formally released and are not included in the core pricing within Section 7.
There are also a number of PaaS offerings which extend the core G-Cloud Compute
Service.
Messaging (Microsoft Exchange 2010) is a Private Cloud email service that offers
features such as internet access, scalability, technology currency, pay for use, as well
as additional features for higher security, privacy, and compliant high availability and
performance.
Collaboration (Microsoft SharePoint 2010) is a Private Cloud service that uses
Microsoft® SharePoint® as the platform to connect and empower people through
formal and informal business communities, within the enterprise and beyond.
Real-Time Collaboration (Microsoft Lync) combines an enterprise-ready instant
message (IM), presence, and conferencing capability in a single real-time collaboration
solution that is delivered as a service.
HP will also be launching SAP and Oracle Software as a Service solutions with an SAP
Development and Sandbox on Cloud already available. For further information, please
contact HP.
Enhanced IL3 capable G-Cloud Compute Service
HP has designed Private and Hybrid Cloud Services for the Public Sector to support
those G-Cloud customers who will require a virtual, dedicated UK Government service.
The service has been designed to achieve IL3, and will include the necessary
enhancements to increase the security measures within the solution.
HP is in communication with the CESG accreditation team to achieve accreditation of
these services.
This service will launch in the first half of 2012. It will feature:
 In-country hosting of all G-Cloud Compute Service within Public Sector certified
data centres with enhanced security features and all UK based service cleared staff


Enhanced security processes:

Network Architecture – security hardening of G-Cloud Compute Service
solutions

Protective Monitoring – service management and security operations centre

Access Management – additional security measures

Infrastructure services – hardening of Operating System (OS) and additional
security features
Enhanced network design and Restricted LAN Interconnectivity.
On Day 1 the available services mirror those G-Cloud Compute Services. In addition,
Oracle, Exchange, SharePoint and Lync/Office Communicator Service will be available
as Software as a Service.
1.10.1. Public Cloud Services
HP Cloud Services (HPCS) will initially provide Public Cloud services (compute and
object storage) on demand, using a pay-per-use model. These services will be targeted
at developers and businesses requiring high elasticity and will be sold primarily over the
HP Confidential—subject to use restriction
Page-8
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
Internet. The HP Cloud Service beta testing is currently delivered from the USA. Any GCloud supplier interested in further information or participating and using the beta
release should contact HP.
2. Operating the Service - Lifecycle
2.1.
Onboarding Processes
The G-Cloud customer will place a request for a quotation through the framework. HP
will work jointly to define the size of the G-Cloud Compute Service capacity by defining
base and peak volumes and any additional services which would be required. Appendix
8 (Pricing) to the Terms and Conditions explains how the Base and Peak Volumes
apply.
HP will issue a quotation to the G-Cloud customer, with all the elements of the G-Cloud
Compute Service requested. The G-Cloud customer will then place an Order Form
through the Framework catalogue.
HP will accept the Order Form and provide the nominated G-Cloud customer with a
simple Service Initiation Form This is described within the Terms and Conditions.
Transition prices are not included within the core pricing as G-Cloud customer can
transition to the G-Cloud Compute Service through a number of different paths,
choosing to synchronise the move with upgrades to applications or rollout of new
capability. If needed, HPs consultants can assist with the definition of the infrastructure
architecture to make sure applications will operate in the cloud without problems. These
services are described in LOT4, and would be subject to additional cost.
The G-Cloud customer is onboarded after the Service Initiation form is received. The
activities required to onboard are targeted at taking 7 business days following the
finalisation of the networking.
Once the final architecture is decided, then authorised Portal users can begin the
deployment of infrastructure resources. This includes the specific configurations of
virtual machines, physical servers, storage, backups, and other options.
HP will create the G-Cloud customer’s own dedicated network compartment, which
comprises firewall rules, Domain Name System (DNS) information, the connectivity
options selected, and access to the Enterprise Cloud Service Portal. If required, as part
of the service, HP will train Authorised Portal Users, via a single Web conference, to
configure cloud services, view reports, and access the HP service desk. A user guide is
available.
The G-Cloud customer can either load their software and data into the areas allocated
by HP or, for an additional charge, ask HP to assist with this data migration. HP would
strongly recommend that all data transmissions to G-Cloud customer’s servers be
encrypted. The standard G Cloud Compute Service mechanism would be to migrate
data via whichever network connection is ordered.
HP can upload large or bulk data via a physical device at the HP data centre. This will
attract an additional charge. The mechanisms are detailed below.
A. Restore from Tape (onsite to HP)
B. Restore from Tape (offsite to HP)
C. Restore from External Storage Device.
2.2.
Changes in Service
In a cloud offering, the G-Cloud customer needs to be able to easily and flexibly change
capacity within the G-Cloud Compute Service.
HP Confidential—subject to use restriction
Page-9
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
One of the features of the G-Cloud Compute Service is that the customer can easily
make, and request, changes - possibly with additional charges, through the G-Cloud
Compute Service portal. These changes could vary: additions to capacity (through
additional Orders); adjustments to capacity within the Base and Peak Capacity
boundaries of a particular Order; addition of optional services. Some options may
require additional funding, this will depend on the nature of the original order.
In addition, customers may request operational changes through the Operations Centre
Desk (such as, for example, changes to IP addresses, changes in firewall rules, or
server reboots). These Changes will only be allowed if they are within the scope of the
Order in place at the time, do not take the numbers of servers in service to lower than
10 servers or take the order period to less than 3 months of the original order. Each
Change, or service request, can be no shorter than one month in duration.
For Changes where HP believes that they will have a material impact on G-Cloud
customers - for example, the introduction of a new version of software - HP will give the
G-Cloud customer 6 months notice that they will be implemented. This is to allow time
to consider the changes and include them into the customer’s current services.
All notices of major changes will be:
 Posted to the G-Cloud customer’s login page on the Portal for the entire notice
period; and
 Transmitted by e-mail to the G-Cloud customer’s Representatives and Technical
Representatives at their then-current e-mail addresses.
2.3.
Off-Boarding and Disengagement
Appendix 2 to the G-Cloud Compute Service Description in the Terms and Conditions
details the obligations. The Off Boarding and Disengagement is handled via the Portal.
Data extraction is a customer responsibility. HP do not specify a format for this.
If the G-Cloud customer has ordered the optional backup service for Supplier-managed
servers, they can request HP to provide copies of backups to the G-Cloud customer for
archival purposes. This request has to be made within 30 days after the expiration or
termination of the G-Cloud Compute Service provided under the Order. Unless
arranged by prior agreement, this provision will incur an additional charge at HP’s thencurrent standard rates, including normal Service Charges, pro-rated on a per diem
basis for the number of additional days of operation required to restore and retrieve
backups.
3. Service Management
3.1.
Robust, Secured Web-Based Portal
The G-Cloud Compute Service gives the G-Cloud customer access to a robust,
secured, web-based portal for self-service automation.
Authorised users simply browse and order resources through a service catalogue,
enabling the quick deployment of cloud resource pools such as servers, network, and
storage devices. The portal provides system reports on cloud servers and enables the
G-Cloud customer to view billing reports, open service desk tickets, and operationally
manage their cloud systems. Only authorised users nominated by the G-Cloud
customer are granted access to the portal.
HP Confidential—subject to use restriction
Page-10
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
Figure 2.
G-Cloud Compute Service —Portal Home Page
The self-service portal gives you options to provision and manage resources and track
performance.
The following table highlights portal features that give the G-Cloud customer greater
visibility into their cloud environment.
Software/Tool
Description
Online Service Catalogue
Provides a web-based online catalogue for ordering all cloud
services including physical and virtual servers, storage, firewall
requests, VPN set-up requests, backup and recovery services,
load-balancing pool setup and server assignments, system user
management, and OS setup; reserving additional capacity;
managing the lifecycle of cloud servers; and more.
Order Approvals
Sets up approval chain that allows all orders to be approved by
multiple individuals with varying monetary approval levels.
Service Health and
Performance Reports
Reports more than 60 statistics on the G-Cloud customer
computing systems, including one-minute load average, swap
available, swap-in rate, swap-out rate, percent time idle, percent
of time used; with defined standards reports.
Access to Billing Reports
Provides detailed reports used for billing cloud services. Reports
include server details such resource reservations, start/stop
date/times, and usage information where applicable.
Site Operations
Gives the ability to open and view ticket details and update
service tickets. Tickets may be created for incidents and
requests (for example, billing inquiry and new service inquiry).
Manage My Portal
Gives the ability to manage your “subscribed to” cloud
resources. The G-Cloud customer can execute functions such
as activate a virtual server, request a server to be backed-up,
add/remove/change a user on a system or systems, add/remove
storage, and add/delete firewall rules.
For the HP Managed Server service, the G-Cloud customer can
also manage the maintenance window by selecting a specific
start date/time for the maintenance window and to request a
HP Confidential—subject to use restriction
Page-11
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
Software/Tool
Description
maintenance window be skipped. HP will follow your schedule to
perform tasks such as OS patching, virus protection definition
updates, backups, and software maintenance functions.
Figure 3.
Provisioning a Server
The self-service portal presents a service catalogue with options for start and stop dates for a
server selected.
Figure 4.
Configure the Server
The self-service portal gives you options on OS, Network and in the example - storage.
3.2.
Service Level Measurement and Credit
The G-Cloud Compute Service will meet or exceed the following Service Level:
HPManaged Servers
Customer-Managed
Servers
Service Level
Availability
Server Pool Availability
99.9%
Server Pool Availability
99.9%
In the event of a fault, the G-Cloud customer will receive compensatory service, free of
charge, and receive two hours of compensatory service for each hour of outage.
Appendix 7 (Service Levels) within the Terms and Conditions details this.
Service credits automatically appear in the web portal for allocating funds against new
services provisioned.
HP Confidential—subject to use restriction
Page-12
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
3.3.
Incident Management
HP operates an Operations Centre Desk to respond to enquiries, service requests, and
reports of Incidents submitted by G-Cloud customers. The Operations Centre Desk is
open 365 days a year, twenty-four hours every day, seven days a week and accepts
enquiries, requests, and Incident reports from G-Cloud customer representatives by email. The Operations Centre Desk conducts business in English. The Incident
Classification can be found in Appendix 7 (Service Levels) within the Terms and
Conditions.
3.4.
Maintenance Windows
HP may shut down the G-Cloud Compute Service during regularly scheduled General
Maintenance Windows in order to perform regular maintenance, update or upgrade
hardware or software, or for other similar purposes. General Maintenance Windows
times will be scheduled between 22:00 hours Saturday and 4:00 hours Sunday, UK and
at other times outside normal business hours, during nights or on weekends or
holidays. Maintenance Windows will occasionally be extended at HP’s discretion, (e.g.,
to accommodate major infrastructure changes), after notice to affected G-Cloud
customers. In addition, the Operations Centre Desk may agree an additional
Maintenance Windows (G-Cloud customer Maintenance Windows) for servers and
other infrastructure at the same times as the General Maintenance Windows or at other
times.
3.5.
Security Management
The G-Cloud Compute Service provides the following layers of security to help address
the risks of a security incident for both Supplier Managed and Customer-Managed
servers:
 Supplier’s next-generation data centres, designed and built to Supplier's standards
and operated in accordance with Supplier’s best practices:


Access control by key card or biometric palm scanner

Site monitoring includes indoor/outdoor video surveillance and on-site security
personnel on a 24x7x365 basis

Redundant power supply and network connectivity options

ISO 27001 and ITIL certifications

ITIL-based operations
Encrypted identity passwords for system user access
 Dedicated network compartments for each G-Cloud customer with a perimeter
firewall that filters traffic flows using a firewall management policy that allows only welldefined traffic as needed to manage the environment to move through the firewall. GCloud customers may accept standard firewall rules, define their own rules, or modify
such rules in accordance with the options available through the Portal
 Logical separation and isolation of individual G-Cloud customer’s network traffic in
order to reduce the risk that G-Cloud customer data could be subject to unauthorised
exposure during transport across the G-Cloud Compute Service network infrastructure
 G-Cloud customer-dedicated virtual operating system instances within G-Cloud
customer-dedicated networks to separate G-Cloud customer environments from other
G-Cloud customers’ environments
 Security events from the hypervisor (the physical systems that manage the G-Cloud
customer’s virtual machines, also known as the virtual management system) are
HP Confidential—subject to use restriction
Page-13
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
collected and stored so that such logs would be available for manual forensic analysis if
such analysis were determined to be necessary
 Data secured in the Storage Area Network using industry standard storage
containers that restrict G-Cloud customers to their allocated storage
 SAN storage subjected to a 3-pass wipe process when removed from operational
use so that data are removed before storage media are returned to the resource pool
 For all G-Cloud Customer-Managed virtual machines only, dedicated server
hardware to enforce physical separation between and among G-Cloud customer
environments.
3.6.
For Supplier-Managed Servers
The following layers of security are available for Supplier-Managed servers only:
 Administrative access controls so that G-Cloud customer access to SupplierManaged systems is limited to authorised users
 Disciplined and structured authorisation processes for end-user and administrative
system access, with credential administrative controls to enforce these processes
 Restricted administrator access to the G-Cloud Compute Service management
network servers and network devices accomplished by verifying authorised users’
identities with multi-factor authentication to reduce the risk of inappropriate access
 Actively managed processes and tools designed to enforce system policy
compliance with Supplier security requirements
 Supplier-Managed Microsoft Windows servers scanned for viruses and malicious
code (as described in Appendix 2 (Service Description)

Vulnerability scanning (as described in Appendix 2 (Service Description))
 Automated timely patch deployment for operating systems and configuration
management
 Security Policy Compliance Management (as described in Appendix 2 (Service
Description))

Optional Features Available for Supplier-Managed Servers:

G-Cloud customer has the option to purchase backup and restore service (as
described in Appendix 2 (Service Description))

After the G-Cloud customer’s compartment is established, G-Cloud customer
has the option -at additional cost - of modifying Supplier standard firewall rules
for the purpose of making them more restrictive.
4. Pilot or Trial Service
HP offers a Proof of Concept Service. The G-Cloud customer can sign up for the
programme in weekly increments, with a minimum of 4 weeks to a maximum of 16
weeks. It is priced to order. Should you be interested in a Proof of Concept Service,
please contact HP for further details.
5. G-Cloud Customer Responsibilities
These are fully documented within Appendix 2 (Service Description) within HP Terms
and Conditions for each of the G-Cloud Compute Service offerings.
HP Confidential—subject to use restriction
Page-14
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
A User Acceptance policy/Code of Conduct is given at Appendix 3 (Code of Conduct).
6. Use by Other Suppliers
The services under this framework agreement can only be contracted through a
government body.
Third party suppliers will be able to use the G-Cloud Compute Service, either by being
given access by a government body through this framework, or via a direct approach to
HP.
If such direct approach is made, HP will work with the Third party in order to agree the
terms on which access to the G-Cloud Compute Service will be given.
7. Charges
The minimum order size for the G-Cloud Compute Service is:



3 months length
10 servers (either physical or virtual)
1 month minimum service request duration.
HP offers the G-Cloud customer discounts for volume greater than 25 servers. Please
contact HP for further details. Is it also possible for us to
The pricing structure for the defined configurations is shown below. Rates for other
items are available, and shown within the portal. Please contact HP for further options.
All figures are quoted exclusive of VAT at the prevailing rate.
ITEM
Price p/m
Virtual HP Managed x-small
£166
(1 core, 2GB)
Virtual Client Managed x-small
£134
(1 Core, 2GB)
Physical HP Managed windows server small
£498
(8 core, 24GB)
Physical Client Managed X86 small
£459
(8 Core, 24GB)
ITEM
Price
p/m
HP Confidential—subject to use restriction
Notes
Page-15
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
SAN Storage – 1TB
Block
£278
Only available
in conjunction
with servers
A Firewall is a required chargeable component to all orders.
ITEM
Price p/m
Firewall
£250
Content Delivery Network:
Type
Data Transfer Out
Value
1
Units
GigaByte
Notes
Data extraction is a G-Cloud
customer responsibility.
The final charge will be made up of a number of elements which will be discussed and
finalised with the G-Cloud customer in agreeing the order. These are:

Stand up network enablement

Service stand up charges, dependent on options chosen

Data transfer - if required
 At the onset of the pricing agreement, HP will work with the G-Cloud customer to
define the size of the G-Cloud Compute Service capacity by defining base and peak
volumes. This is described in Appendix 8 (Pricing) to the Terms of Conditions. The
customer’s invoice will be increased by the peak premium which equals: [(Peak
Capacity – Base Capacity ) / Base Capacity] / 10

Ongoing networking charges

Any additional services, such as backup or disaster recovery

Consultancy support to transition and application support

G-Cloud Procurement overhead charge as a 0.5% percentage of total charge.
Depending on the network connectivity option that the G-Cloud customer selects to
connect to the service, the G-Cloud customer may incur additional network charges
from their network provider for data transfer.
8. Other Documents to be provided
Supporting Terms of Conditions pack, including Code of Conduct.
HP Confidential—subject to use restriction
Page-16
Service Definition G Cloud Service – HP G-Cloud Compute Service – LOT 1 and LOT 2
19 December 2011
Contacting HP
If you have any queries, questions, wish to request further information or place an order
– please contact HP as follows:
Email: ukgla.bidsupport@hp.com
Telephone: 0845 270 4343
HP Confidential—subject to use restriction
Page-17