High Security Services & Accreditation

Key,keywords,icon,business,internet,technology,concept.

Prolinx Secure Managed Services

A portfolio of innovative secure private cloud services – the Prolinx Assured Cloud contains services that can be deployed independently to target a specific customer requirement, or combined in order to create a complete end-to-end collaborative working environment at the required security tier. A flexible design and provisioning approach is adopted, enabling the customer to combine or ‘bolt-on’ multiple desired services at point of provision, or later, as customer needs and user demands change. Prolinx specialises in transitioning customer services, applications and tool-sets to an accredited fully assured environment. As part of customer engagement and on boarding, the Prolinx Security Team is able to guide the customer through the processes to meet required UK Government mandated standards and if required assign a dedicated Security Assurance Coordinator.

Within the Prolinx Assured Cloud, sustainable, scalable, secure managed service solutions facilitate the delivery of UK Sovereign private cloud and shared services to both the public and private sector.

This includes secure user access, remote connectivity, secure wireless deployment, application and Virtual Machine hosting, infrastructure, Security Operations Centre, end user device deployment and management, environmental control, DR and security services, with a comprehensive overarching Service Management model complimented by a growing range of additional professional services.

The services are available across multiple Government Security Classifications with connectivity to/from Government Public Service, Defence and User specified Networks as required.

Secure by Design

Prolinx services are Secure by Design – this framework introduced by the MoD requires Prolinx to ensure that appropriate security controls are proportionately applied to each of our managed services.

We conduct information risk assessments for all newly deployed services, and have implemented the required process and practices to provide ongoing, continual security control effectiveness throughout the life-cycle of our services as opposed to a one off security test or a one off accreditation case.

Accreditation

Accreditation is formally being replaced by the Secure by Design Assurance process from the UK Ministry of Defence. Prolinx are now able to offer an Assurance feature for customers where migration of customer data, applications and toolsets are required. This includes the provision of a Security Assurance Coordinator role for our customer, who will work with an Assurance lead at Cyber Defence and Risk (CyDR). The Prolinx Security Assurance Coordinator will work with the customer to undertake an information risk assessment, then present risks to the Assurance lead in CyDR. Following presentation and analysis of any risks, Prolinx and CyDR will formulate a plan and agree security controls to reduce these risks and subsequently provide security control effectiveness throughout the life of the service via both formal and informal testing.

Onboarding

Prolinx provide Security Architecture advice and reviews based on years of experience such that any issues in the design can be found at an early stage. Prolinx can also provide on-demand Security Consultancy as a Service where the customer does not have the necessary resources. Our Security Consultants have years of experience in demanding industries including Central Government, Defence and the Private Sector. Prolinx can provide a number of security consultancy services during onboarding such as Crypto custodian, Security Risk Assessor, Security Architect and Security Testing (informal and formal) – which allows the customer to flexibly take services as and when required.

Assurance

Prolinx provide ongoing security control effectiveness assurance through regular informal testing and annual formal testing (undertaken by an independent provider). This will be presented to the Customer and the Assurance lead at CyDR via a series of security working groups. We can provide services such as the Security Assurance Coordinator as required by the MoD’s Secure By Design Framework where Prolinx take on the responsibility of ensuring the workloads hosted on Prolinx infrastructure follow the assurance lifecycle as mandated by the framework. We will ensure other aspects such as Security Working Groups and Security Controls effectiveness evidence is provided on a timely basis.

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
_ga	2 years	This is used by Analytics to calculate visitors, session, campaign data, etc. Expiration time is set to two (2) years and it resets each time when a visitor hits a page. No personal information or data is stored. Used to distinguish users. This cookie enables us to estimate our audience size and usage pattern
_gat	10 mins	Described by Google as “Used to throttle request rate”(no more information is available about this cookie). Expires in ten (10) minutes. This cookie enables us to limit the number of times information is recorded.
_gid	24 hours	This is used to distinguish users but has a 24hours expiration time.