Off-Premises Cloud Services

California Cloud Services Assessment

California Cloud Services Assessment must be completed as part of the Off-Premises Cloud Services process prior to deploying new and/or modifying/migrating existing applications into the cloud.

Description

The California Department of Technology (CDT) has expanded its Infrastructure as a Service (IaaS) and Platform as a Service (PaaS) as Off-Premises Cloud Services. These offerings empower customers to leverage the industry’s most flexible, proven, and secure cloud infrastructure and capitalize on key transformative technologies.

Benefits

  • Ease of use: Quick provisioning and hosting.
  • Secure: Federal Risk and Authorization Management Program (FedRAMP) High or Moderate compliant.
  • Cost-effective: Pay only what you consume.
  • Reliable: Partnering with industry leaders in Cloud services.
  • Scalable: Flexible virtual environment.

FedRAMP High Cloud Services

VendorService TypeResellerAvailable Offerings
Amazon Web Services (AWS)IaaS and PaaSRackspace US, Inc.FedRAMP High (AWS Gov)
Microsoft AzureIaaS and PaaSDell Marketing LPFedRAMP High (GCC High)
Oracle Cloud Infrastructure (OCI)IaaS and PaaSMythics, IncFedRAMP High (OCI Gov High)

FedRAMP Moderate Cloud Services

VendorService TypeResellerAvailable Offerings
Amazon Web Services (AWS)IaaS and PaaSRackspace US, Inc.FedRAMP Moderate (Commercial)
Microsoft AzureIaaS and PaaSDell Marketing LPFedRAMP Moderate (GCC)
Google Cloud Platform (GCP)IaaS and PaaSInterVision Systems, LLCFedRAMP Moderate (GCP)
GCP SKUs

Third-party cloud support

For those that have accounts with Amazon Web Services (AWS), Google Cloud Platform (GCP), or Microsoft Azure. use the contact information below for those support channels.

Amazon 

Cloud customers that require external vendor support for Amazon Web Services (AWS) will directly contact AWS Customer support (24x7x365) to open support tickets. Access Amazon AWS Customer Support here: Amazon AWS Customer Support.

  • You’ll be provided the option to open a ticket via a phone call, email, or chat.
  • If you select phone call, AWS will call the number you provided with your account information.
    • AWS will pace you into the appropriate queue based on need or question.
  • Do not contact the CDT Service Desk for Off-Premises Cloud Service-related issues. You must open support tickets through your AWS management console.
  • CDT does not provide support within a Customer’s virtual Cloud environment at this time.

Google 

If you require external vendor support for Google CCP, directly contact Google CCP Customer support (24x7x365) to open support tickets. You can access GCP Customer Support here: Google CCP Customer Support.
 
  • You’ll be provided the option to open a ticket via a phone call, email, or chat.
  • If you select phone call, GCP support will call the number you provided with your account information.
    • AWS will pace you into the appropriate queue based on need or question.
  • Do not contact the CDT Service Desk for Off-Premises Cloud Service-related issues.
  • CDT does not provide support within a Customer’s virtual Cloud environment at this time..

Microsoft 

You must have Premier Support, Shared Premier Support, or an Azure support plan to access Microsoft Azure Support. Azure support options can be referenced here: Microsoft Azure Support Options.
 
  • Microsoft Premier Support can be accessed via phone at (800) 936-3100.
  • For Off-Premises Cloud you should, if possible, route your Azure support issues through your existing Premier Support or Shared Premier Support contract.
  • Do not contact the CDT Service Desk for Off-Premises Cloud Service-related issues.
  • CDT does not provide support within a Customer’s virtual Cloud environment at this time..

Oracle 

Cloud customers that require external vendor support for Oracle OCI will directly contact Oracle Customer Support (24x7x365) to open support tickets. Oracle Customer Support can be accessed here: Oracle Customer Support.

  • Customers will be provided the option to open a ticket via a phone call, email, or chat.
  • If you select phone call, GCP support will call the number you provided with your account information.
    • AWS will pace you into the appropriate queue based on need or question.
  • Do not contact the CDT Service Desk for Off-Premises Cloud service-related issues. Customers must open support tickets through the Oracle management console.
  • CDT does not provide support within a Customer’s virtual Cloud environment at this time.
 

Roles and responsibilities

RoleResponsibilities
Account LeadThe Account Lead:
• Has knowledge of the Off-Premises Cloud Services
• Is responsible for answering customer’ questions about the Off-Premises Cloud services
• Provides assistance to the customer in submitting the Service Request (SR)
• Facilitates discussions between the customer and the vendors/CDT Cloud Support Team
Cloud Support TeamThe Cloud Support Team is responsible for:
• Gathering requirements from the customer to create the Government Cloud Account
• Providing the Government Cloud Account information to the Network team in order for Network to configure the connection via Cloud Provider InterConnect (CPI) when it is being used
• Working with the Cloud Service Provider to set up the customer tenant space
• Communicating tenant space readiness and access information to the customer
• Acting as the first point of contact should any account related issues arise.
The Cloud Support Engineer is not responsible for technical support in the customer’s Cloud environment as that falls under the Cloud Service Providers’ support services.
Cloud Service Provider (Vendor)The Cloud Service Provider is responsible for:
• Providing the tenant space requested
• Providing technical support services to the customer in their Cloud environment
• Responding to the customer and resolving issues in a timely manner when the customer opens support tickets with the Cloud Service Provider.
Network Service Management (if CPI is required)The Network Service Management is responsible for:
• Providing the cost estimate for CPI
Network Engineer (if CPI is required)The Network Engineer is responsible for:
• Configuring CPI for the customer
Working with the customer to allot the IP address space for Off-Premises Cloud if the customer decides to route their traffic through Public VRF.

Rates

Cloud ProviderFedRAMP RatingInstance TypeRateRate Type
Amazon Web Services (AWS)ModerateStandard6.92%Net Discount
Amazon Web Services (AWS)ModerateReserved6.92%Net Discount
Amazon Web Services (AWS)HighStandard6.92%Net Discount
Amazon Web Services (AWS)HighReserved6.92%Net Discount
Microsoft AzureModerateStandard9.57%Net Discount
Microsoft AzureModerateReserved0.43%Net Premium
Microsoft AzureHighStandard6.57%Net Discount
Microsoft AzureHighReserved0.43%Net Premium
Oracle Cloud Infrastructure (OCI)HighStandard0.08%Net Premium
Google Cloud Platform (GCP)ModerateStandard4.83%Net Discount

FAQs

What is the California Cloud Services Assessment?

CDT has developed an update to the Cloud Computing Policy (TL 23-03), now called Cloud Smart, this leverages modern technology, frameworks and practices created to deliver the full potential of cloud computing, driving digital transformation to achieve improved operational efficiency, agility, innovation.

To ensure alignment with Cloud Smart, CDT is conducting an assessment for state agencies planning to request new or additional accounts and/or services to a commercial and/or government cloud service for off-premises cloud services.

Please visit the California Cloud Services Assessment (CCSA) web page for more information and instructions on how to successfully complete this process as part of the Off-Premises Cloud Services request.

How do I inquire about Off-Premises Cloud Services?

Customers interested in the Off-Premises Cloud IaaS or PaaS services can contact their CDT Account Lead for more information. The Account Lead will assist the customers in the request process.

Where do I find my Account Lead contact information?

To look up your Account Lead, please go to https://cdt.ca.gov/account-lead-lookup/. If you do not have an Account Lead at this time, call Customer Engagement at (916) 431-5390.

Do I need to include a Cost Estimate in the Request/Case?

There is no cost estimate required for this service. A committed budgetary amount is only for information. There will be no deposit amount. The customers will be charged for what they consume.

Can I move my existing Cloud account/subscription to the Off-Premises Cloud offered via CDT?

 

  • Accounts/subscriptions can be transferred from Government Cloud to Government Cloud, Commercial Cloud to Government Cloud, or Commercial Cloud to Commercial Cloud.
  • Government-to-Government transfers – a simple switch to point the existing account/subscription billing to Off-Premises Cloud offered via CDT. No data migration is needed.
  • Commercial-to-Government transfers – there is no direct transfer because Government Cloud is isolated from Commercial Cloud. In this case, a brand new Government Cloud account/subscription under CDT’s contract will be created for the customer, and the customer will need to migrate their existing environment to the new Government Cloud environment.
  • CDT may offer Commercial Cloud in the future, which will make Commercial-to-Commercial transfers as easy as a simple switch.

What services are offered within the Off-Premises Cloud through CDT?

 

If I’m not sure which services to consume or which solutions are available for my system, who do I contact?

Customers are encouraged to contact the Cloud Service Providers directly for inquiries about Cloud solutions. Please contact the AWS team at AWSCATeam@state.ca.gov or the Azure team at AzureCloudCATeam@state.ca.gov.

What do I need to consider before submitting a service request for Off-Premises Cloud services?

If you need technical advice, please contact the Cloud Service Providers directly prior to submitting a Case/Request.  You can reach AWS technical advisors at AWSCATeam@state.ca.gov or Azure technical advisors at AzureCloudCATeam@state.ca.gov.

In addition, you may need to consult with your Network team to set aside an IP address range to assign to instances in your to-be Cloud environment.  For small organizations, a /24 subnet is recommended.  For larger organizations, a /22 subnet should be adequate.  The service request/case for Off-Premises Cloud services will ask about this IP range.

Since this will be your self-managed infrastructure, you may also need to consider capacity for patching servers, applying security measures, and maintaining firewalls on your own, as if it is to operate your own data center.

Who needs to subscribe to Cloud Provider InterConnect (CPI)?

Customers whose system contains confidential and sensitive data are recommended to use the CPI service. Customers planning to use Microsoft Express Route or AWS Direct Connect will need to subscribe to CDT’s CPI service. Contact your CDT Account Lead to obtain assistance with the CPI service cost estimate. Customers may submit a Case/Request for Off-Premises Cloud Services at the same time or prior to submitting the CPI Case/Request.

What is Confidential and Sensitive Data?

 

  • Confidential information is exempt from disclosure or has restrictions on disclosure in accordance with other applicable state or federal laws. For specifics on records exempt or restrictions from disclosure see the SAM and SIMM Manuals.
  • Sensitive information requires special precautions to protect from unauthorized use, access, disclosure, modification, loss or deletion.

Where can I find the rates for Cloud Provider InterConnect (CPI) service?

The rates for CPI can be found under the Rates tab at https://cdt.ca.gov/services/cpi/.

Will Jumpstart training be provided?

Through CDT, both Amazon and Microsoft provide the Jumpstart training classes on a monthly basis. To sign up for a Jumpstart class, contact CIOOffPremisesCloudSupport@state.ca.gov.

Does CDT provide technical support in the customer’s Cloud environment?

 

  • CDT does not provide technical support within a customer’s Cloud environment at this time. Please do not contact the CDT Service Desk for Off-Premises Cloud Service related issues.
  • Contact the Cloud Service Provider directly to open a support ticket. Amazon AWS Customer Support can be accessed here: http://docs.aws.amazon.com/awssupport/latest/user/getting-started.html.
  • Azure customers must have Premier Support, Shared Premier Support, or an Azure support plan to access Microsoft Azure Support. Azure support options can be referenced here: https://azure.microsoft.com/en-us/support/plans/.
  • To obtain migration assistance, please contact the selected Cloud Service Provider for information on their migration services.

How do I view Billing information of the services consumed?

The customer’s Billing Administrators will be given access to an online console to view current billing. To view AWS current billing information, log on to CloudCheckr at https://cloudcheckr.com. To view Azure current billing information, go to the Azure Enterprise console (at https://ea.azure.com).

Who do I contact regarding the Billing process?

Please contact CDT Billing at CIOOffPremisesCloudBilling@state.ca.gov.

I would like to know more about the Cloud Provider InterConnect (CPI) service, how do I obtain further information?

For information on CPI visit https://cdt.ca.gov/services/cpi/. Additionally, the CDT Account Leads can provide detailed information or help obtain additional information from CDT Technical teams or the Cloud Service Providers. To look up your Account Lead, please go to https://cdt.ca.gov/account-lead-lookup/. If you do not have an Account Lead at this time, contact Customer Engagement at (916) 431-5390.

Request services

Customer enrollment into the Off-Premises Cloud IaaS or PaaS will begin with the Customer’s CDT Account Lead.

Enrollment in off-premises cloud

  1. The customer contacts their Account Lead regarding Off-Premises Cloud IaaS/PaaS
  2. The customer submits a Case/Request to CDT
    1. Select Infrastructure Services
    2. Select Off-Premises Cloud Services
  3. Upon receipt of the Case/Request, the CDT Cloud Support Team will be in contact with the customer to gather additional information, if needed, and answer questions
  4. An Enterprise Account/Subscription will be created by the CDT Cloud Support Team
  5. Once the Enterprise Account has been created, the CDT Cloud Support Team will provide the customer with login instructions
  6. If the customer has signed up for Cloud Provider InterConnect (CPI), the customer provides the Enterprise Account/Subscription ID to the CDT Network Team for configuration purposes

Training

General

  • CSP Jumpstart classes by AWS and Azure (offered periodically)
  • PACe E-Learning (Search under ‘IT Professional Certifications’)
  • AWS SysOps Associate
  • AWS Solution Architecture Associate
  • Microsoft Azure Developing Solutions
  • Microsoft Azure Architecting Solutions
  • Microsoft Azure Implementing Infrastructure Solutions

AWS

  • AWS Training and Certification
  • AWS Videos and Labs
  • AWS YouTube Training Videos

Azure

  • Azure Training and Certification
  • Azure Free Online Courses
  • Microsoft Virtual Academy
  • Channel 9 Azure Government Video Library
  • Microsoft Cloud Essentials

Google

Oracle