8K Miles' Response to RFP - NCPA

More documents

Recommendations

Info

accesses and actions. Finally, we provide a management layer that provides continuous real-time forensics to watch for patterns of malicious activity across the S-VPC framework. This framework allows our customers to provision almost any application in the application layer while benefitting from the security and scalability of the S-VPC framework. As part of 8KMiles engineering service offerings we can help Region 14 and NCPA Members make their applications cloud ready and integrated into this pre-defined, proven framework. The security of the framework has been validated by independent third-party auditors and meets the Federal Information Security Management Act (FISMA) moderate security level, the Payment Card Industry (PCI) security standard, the Service Organization Control (SOC) 1 standard, and is fully compliant with the Health Insurance Portability and Accountability Act (HIPAA) standard. We provide a more detailed example of the use of this framework in subsection 5.14. The flexibility in combining AWS services into functioning end-to-end platforms can be overwhelming. Many options and deployment choices are available. The S-VPC framework, built on the Amazon Virtual Private Cloud, allows us to provide Region 14 and NCPA Members with three straightforward and easy-to-choose options for a client-based network and infrastructure deployments. The options will work for whatever applications the members may want to host in a cloud environment (see Table 2). Option 1: Multi-client S-VPC on a Virtual Infrastructure. This solution allows deployment of the network and security infrastructure, as needed, across multiple clients. That is, the network virtual firewalls and switches are shared across clients and the virtual management zone
monitoring and access control is shared across clients. Each client is provided client-specific virtual computing and storage. This option is a huge step up from using the Amazon Classic Cloud because the security of the S-VPC is inherent in each deployment. For example, enterprises or school systems that want to allow each university, department, or business unit to have their own application environment can effectively cost-share the front end data center common infrastructure and controls. Option 2: Client-Specific S-VPC on a Virtual Infrastructure. This solution provides clientspecific network infrastructure, including private subnets, virtual firewalls, and switches, and client-specific virtual management zone and access control. An operating unit within a larger institution or enterprise may desire to have total control of the entire cloud environment and not share it with any other clients. We have designed this solution for this type of client that has the ability to absorb the cost of added infrastructure and assure total peace of mind regarding security. Option 3: Client-Specific S-VPC on a Dedicated Infrastructure. This solution provides dedicated network, security, monitoring, and server computing for each client. This solution is much closer to building a traditional client-specific, data center managed hosting solution. This solution still offers the advantages of the S-VPC security, the elastic scalability of the Amazon services, and the lower cost associated with pay-per-use. Very large enterprises that have more than 150 machines may find the cost of dedicated machines prohibitive; however, some customers benefit from these solutions. This option is well suited for clients with a large number of servers (150+) and which require a single tenant environment to meet their risk profile. VPC Capabilities Multi-Client S-VPC Solution Client-Specific Virtual S-VPC Solution Client-Specific Dedicated S-VPC Solution Firewalls Shared by all clients Virtual Server per client Dedicated Server per client Security Groups Shared by all clients but specific to application Shared by all clients but specific to application Shared by all clients but specific to application Monitoring Shared by all clients Virtual Server per client Dedicated Server per client Privileged Access Shared by all clients Virtual Server per client Dedicated Server per client Management Zone Shared by all clients Virtual Server per client Dedicated Server per client Load Balancer Virtual Server per client Virtual Server per client Dedicated Server per client Server Virtual Server per client Virtual Server per client Dedicated Server per client Disk Encryption Shared key management Shared key management Dedicated key management These platform solution options offer several key benefits for Region 14 and the wide range of its NCPA members:
Page 1 and 2: October 23, 2012 Region 14 Educatio
Page 3 and 4: Tab 1: Signature Form .............
Page 5 and 6: 5.9 Support .......................
Page 7 and 8: The undersigned hereby proposes and
Page 9 and 10: Warranty and/or guarantees of equip
Page 11: its response, may be exempted from
Page 17 and 18: All US Territories and Outlying Are
Page 19 and 20: Vendor will provide additional disc
Page 21 and 22: • Amazon Simple Notification Serv
Page 23 and 24: 8KMiles is in discussions with K-12
Page 25 and 26: environment monitored at no additio
Page 27 and 28: Classic VPC GovCloud Logical Server
Page 29 and 30: • Shed unneeded Amazon EC2 instan
Page 31 and 32: • Cost-Effective - Amazon CloudFr
Page 33 and 34: minutes. For MySQL and Oracle datab
Page 35 and 36: In addition, developers can add app
Page 37 and 38: delivered over clients’ protocol
Page 39 and 40: A variety of connectivity options e
Page 41 and 42: establishing a VPN connection over
Page 43 and 44: In Tab 8, Value Added Products and
Page 45 and 46: Once the assessment is complete, 8K
Page 47: 2. Reengineering applications to be
Page 51 and 52: Consider how K-12 educators and stu
Page 53 and 54: service need to procure dedicated c
Page 55 and 56: week. Since AWS blog posts are read
Page 57 and 58: Should the Participating Entities s
Page 59 and 60: AVAILABILITY OF FUNDING Contractor/
Page 61 and 62: viii. The primary location of the s
Page 63 and 64: e. Section 306 of the Clean Air Act
Page 65 and 66: asis of age, including present and
Page 67 and 68: INCORPORATION OF FEDERAL TRANSIT AD

8K Miles' Response to RFP - NCPA

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?