With the current climate of working from home and moving instances to the cloud, it has become more important than ever to make sure that the vendors and service providers that you engage with are compliant with your data security processes. This is, in most cases, represented in the form of a Security Assessment Questionnaire. Chances are, just the mention of the questionnaire has caused a change in your mood!
You’ve gone through the process of proposing a new Atlassian Cloud product or service purchase for your company/team, got a quote from the vendor, passed it through the proper channels and got the go-ahead from the appropriate person and just when you think your hard work is done - you get this email:
“Hi,
Before we go ahead with the purchase as proposed, could you please fill out the attached Cloud Service Provider Security Assessment questionnaire?
Thanks,
IT Security.”
When you open the attachment, you see a massive document with dozens (or more) of questions that you now have to find the answers to in order to keep the purchase process moving along. Questions such as:
What data types belonging to [company name] will need to be held within the SP's (Service Provider) product(s) and/or service(s)?
Do you have the capability to detect attacks targeted at the hypervisor layer (e.g. blue pill)?
Are the SP's employees subject to pre-employment criminal record checks?
Do you use a common time synchronisation service across all infrastructure components?
Does the SP have business continuity and data recovery plans in place?
Yes. Really.
And it’s not always easy to find those answers.
So what do you do? Spend hours, possibly days, tracking down the answers in order to fill out the questionnaire and keep the purchase on track? Do you purchase a subscription with a Security Questionnaire Service to do it for you, adding to the cost of the original purchase?
You could do, or you could purchase your Atlassian Cloud products or services such as Confluence or Jira, through a “Value-added Reseller” like BDQ, and let us do the hard work for you.
Useful links:
As part of the “value” that we add, you can send us the Cloud Security Questionnaire and not only will we find the correct details to fill it in for you, but because we fill these questionnaires out from multiple customers, we can often complete them in a fraction of the time. This means that the purchase process can stay on track and avoids unnecessary delays in your company/team getting access to the new product/service.
And this is just a small part of the value that we add. As Atlassian Solution Partners, we can also give you advice on the right products or services for your needs plus information & support from our certified expert technical staff. All of this is included in your purchase, which will be the same price or cheaper than you can buy directly. We offer flexible payment options for ongoing support packages after the implementation has been completed.
We are also Crown Commercial Suppliers via G-Cloud 12 and can supply software and services to the UK public sector.
If you are looking at migrating from Server to Atlassian Cloud or adding new software products or services to your current Cloud instance, why not sweeten the deal and make your purchase through a Value-added Reseller like us? We offer a free 30 minute consultation so what have you got to lose?