Off-Premises Cloud Services

The California Department of Technology (CDT) has expanded its Infrastructure as a Service (IaaS) and Platform as a Service (PaaS) as Off-Premises Cloud Services. The providers are listed in the following table. These offerings empower Customers to leverage the industry’s most flexible, proven, and secure Cloud infrastructure and capitalize on key transformative technologies.



Ease of Use

Quick provisioning and hosting



Secure

Federal Risk and Authorization Management Program (FedRAMP) High or Moderate compliant



Cost-Effective

Pay only for what you consume



Reliable

Partnering with industry leaders in Cloud services



Scalable

Flexible virtual environment

Use the links listed below to learn more directly from the providers.

FedRAMP High Cloud Services

Vendor	Service Type	Reseller	Executed Contract	Available Offerings
Amazon Web Services (AWS)	IaaS and PaaS	Rackspace US, Inc.	AWS FedRamp High Signed Contract (pdf)	FedRAMP High (AWS Gov)
Microsoft Azure	IaaS and PaaS	Dell Marketing LP	MS FedRamp High Signed Contract (pdf)	FedRAMP High (GCC High)
Oracle Cloud Infrastructure (OCI)	IaaS and PaaS	Mythics, Inc	Oracle FedRamp High Signed Contract (pdf)	FedRAMP High (OCI Gov High)

FedRAMP Moderate Cloud Services

Vendor	Service Type	Reseller	Executed Contract	Available Offerings
Amazon Web Services (AWS)	IaaS and PaaS	Rackspace US, Inc.	AWS FedRamp Moderate Signed Contract (pdf)	FedRAMP Moderate (Commercial)
Microsoft Azure	IaaS and PaaS	Dell Marketing LP	MS FedRamp Moderate Signed Contract (pdf)	FedRAMP Moderate (GCC)
Google Cloud Platform (GCP)	IaaS and PaaS	InterVision Systems, LLC	Google FedRAMP Moderate Signed Contract (pdf)	FedRAMP Moderate (GCP)
Oracle Cloud Infrastructure (OCI)	IaaS and Paas	Mythics, Inc.	Oracle FedRamp Moderate Signed Contract (pdf)	FedRAMP Moderate (OCI Gov Moderate, [Unavailable currently])

NOTE: CDT does not provide support to departments subscribing to the Off-Premises Cloud at this time. To obtain migration assistance, please contact the selected cloud service provider for information on their migration services.

Cloud customers that require external vendor support for Amazon Web Services (AWS) will directly contact AWS Customer support (24x7x365) to open support tickets.

Amazon AWS Customer Support can be accessed here: Amazon AWS Customer Support

Customers will be provided the option to open a ticket via a phone call, email, or chat. If a phone call is the selected option, a call will be immediately made to the customer-provided phone number. Upon answering, the customer will be placed into the appropriate queue based on their need or question area.

IMPORTANT! Please do not contact the CDT Service Desk for Off-Premises Cloud Service-related issues. Customers must open support tickets through the AWS management console.

NOTE: CDT does not provide support within a Customer’s virtual Cloud environment at this time.

Cloud customers that require external vendor support for Google CCP will directly contact Google CCP Customer support (24x7x365) to open support tickets.

Google CCP Customer Support can be accessed here: Google CCP Customer Support

IMPORTANT! Please do not contact the CDT Service Desk for Off-Premises Cloud Service-related issues.

NOTE: CDT does not provide support within a Customer’s virtual Cloud environment at this time.

Customers must have Premier Support, Shared Premier Support, or an Azure support plan to access Microsoft Azure Support.

Azure support options can be referenced here: Microsoft Azure Support Options

Microsoft Premier Support can be accessed via phone at (800) 936-3100. Off-Premises Cloud customers should, if possible, route their Azure support issues through their existing Premier Support or Shared Premier Support contract.

IMPORTANT! Please do not contact the CDT service desk for Cloud service-related issues.

NOTE: CDT does not provide support within a Customer’s virtual Cloud environment at this time.

Cloud customers that require external vendor support for Oracle OCI will directly contact Oracle Customer Support (24x7x365) to open support tickets.

Oracle Customer Support can be accessed here: Oracle Customer Support

IMPORTANT! Please do not contact the CDT Service Desk for Off-Premises Cloud service-related issues. Customers must open support tickets through the Oracle management console.

NOTE: CDT does not provide support within a Customer’s virtual Cloud environment at this time.

Role	Responsibilities
Account Lead	The Account Lead: • Has knowledge of the Off-Premises Cloud Services • Is responsible for answering customer’ questions about the Off-Premises Cloud services • Provides assistance to the customer in submitting the Service Request (SR) • Facilitates discussions between the customer and the vendors/CDT Cloud Support Team
Cloud Support Team	The Cloud Support Team is responsible for: • Gathering requirements from the customer to create the Government Cloud Account • Providing the Government Cloud Account information to the Network team in order for Network to configure the connection via Cloud Provider InterConnect (CPI) when it is being used • Working with the Cloud Service Provider to set up the customer tenant space • Communicating tenant space readiness and access information to the customer • Acting as the first point of contact should any account related issues arise. The Cloud Support Engineer is not responsible for technical support in the customer’s Cloud environment as that falls under the Cloud Service Providers’ support services.
Cloud Service Provider (Vendor)	The Cloud Service Provider is responsible for: • Providing the tenant space requested • Providing technical support services to the customer in their Cloud environment • Responding to the customer and resolving issues in a timely manner when the customer opens support tickets with the Cloud Service Provider.
Network Service Management (if CPI is required)	The Network Service Management is responsible for: • Providing the cost estimate for CPI
Network Engineer (if CPI is required)	The Network Engineer is responsible for: • Configuring CPI for the customer Working with the customer to allot the IP address space for Off-Premises Cloud if the customer decides to route their traffic through Public VRF.

The cost of these services varies, depending on the service offerings and the selected cloud service provider. The Government Cloud discounted rates are:

Cloud Provider	FedRAMP Rating	Instance Type	Rate	Rate Type
Amazon Web Services (AWS)	Moderate	Standard	6.92%	Net Discount
Amazon Web Services (AWS)	Moderate	Reserved	6.92%	Net Discount
Amazon Web Services (AWS)	High	Standard	6.92%	Net Discount
Amazon Web Services (AWS)	High	Reserved	6.92%	Net Discount
Microsoft Azure	Moderate	Standard	9.57%	Net Discount
Microsoft Azure	Moderate	Reserved	0.43%	Net Premium
Microsoft Azure	High	Standard	6.57%	Net Discount
Microsoft Azure	High	Reserved	0.43%	Net Premium
Oracle Cloud Infrastructure (OCI)	High	Standard	0.08%	Net Premium
Google Cloud Platform (GCP)	Moderate	Standard	4.83%	Net Discount

The CDT administrative fee has been included. After services have begun, CDT will invoice Customers in arrears monthly for Amazon and Google, and quarterly for Microsoft and Oracle services. Customers should reference the cloud provider portals for additional pricing details on the Off-Premises Cloud IaaS/PaaS service offerings.

How do I inquire about Off-Premises Cloud Services?

Customers interested in the Off-Premises Cloud IaaS or PaaS services can contact their CDT Account Lead for more information. The Account Lead will assist the customers in the Service Request process.

Where do I find my Account Lead contact information?

To look up your Account Lead, please go to https://cdt.ca.gov/account-lead-lookup/. If you do not have an Account Lead at this time, call Customer Engagement at (916) 431-5390.

Do I need to include a Cost Estimate in the Service Request?

There is no cost estimate required for this service. A committed budgetary amount is only for information. There will be no deposit amount. The customers will be charged for what they consumed.

Can I move my existing Cloud account/subscription to the Off-Premises Cloud offered via CDT?

Accounts/subscriptions can be transferred from Government Cloud to Government Cloud, Commercial Cloud to Government Cloud, or Commercial Cloud to Commercial Cloud. With Government-to-Government transfers, it is a simple switch to point the existing account/subscription billing to Off-Premises Cloud offered via CDT. No data migration is needed. With Commercial-to-Government transfers, there is no direct transfer because Government Cloud is isolated from Commercial Cloud. In this case, a brand new Government Cloud account/subscription under CDT’s contract will be created for the customer, and the customer will need to migrate their existing environment to the new Government Cloud environment. CDT may offer Commercial Cloud in the future, which will make Commercial-to-Commercial transfers as easy as a simple switch.

What services are offered within the Off-Premises Cloud through CDT?

For Amazon Web Services GovCloud, visit https://aws.amazon.com/govcloud-us/.

For Microsoft Azure Government Cloud, visit https://azure.microsoft.com/en-us/overview/clouds/government/.

If I’m not sure which services to consume or which solutions are available for my system, who do I contact?

Customers are encouraged to contact the Cloud Service Providers directly for inquiries about Cloud solutions. Please contact the AWS team at AWSCATeam@state.ca.gov or the Azure team at AzureCloudCATeam@state.ca.gov.

What do I need to consider before submitting a service request for Off-Premises Cloud services?

If you need technical advice, please contact the Cloud Service Providers directly prior to submitting the service request. You can reach AWS technical advisors at AWSCATeam@state.ca.gov or Azure technical advisors at AzureCloudCATeam@state.ca.gov.

In addition, you may need to consult with your Network team to set aside an IP address range to assign to instances in your to-be Cloud environment. For small organizations, a /24 subnet is recommended. For larger organizations, a /22 subnet should be adequate. The service request for Off-Premises Cloud services on Remedy will ask about this IP range.

Since this will be your self-managed infrastructure, you may also need to consider capacity for patching servers, applying security measures, and maintaining firewalls on your own, as if it is to operate your own data center.

Who needs to subscribe to Cloud Provider InterConnect (CPI)?

Customers whose system contains confidential and sensitive data are recommended to use the CPI service. Customers planning to use Microsoft Express Route or AWS Direct Connect will need to subscribe to CDT’s CPI service. Contact your CDT Account Lead to obtain assistance with the CPI service cost estimate. Customers may submit a request for Off-Premises Cloud Services at the same time or prior to submitting the CPI service request.

What is Confidential and Sensitive Data?

Confidential information is exempt from disclosure or has restrictions on disclosure in accordance with other applicable state or federal laws. For specifics on records exempt or restrictions from disclosure see the SAM and SIMM Manuals.

Sensitive information requires special precautions to protect from unauthorized use, access, disclosure, modification, loss or deletion.

Where can I find the rates for Cloud Provider InterConnect (CPI) service?

The rates for CPI can be found at https://cdt.ca.gov/services/cpi/.

Will Jumpstart training be provided?

Through CDT, both Amazon and Microsoft provide the Jumpstart training classes on a monthly basis. To sign up for a Jumpstart class, contact CIOOffPremisesCloudSupport@state.ca.gov.

Does CDT provide technical support in the customer’s Cloud environment?

CDT does not provide technical support within a customer’s Cloud environment at this time. Please do not contact the CDT Service Desk for Off-Premises Cloud Service related issues. Contact the Cloud Service Provider directly to open a support ticket. Amazon AWS Customer Support can be accessed here: http://docs.aws.amazon.com/awssupport/latest/user/getting-started.html.

Azure customers must have Premier Support, Shared Premier Support, or an Azure support plan to access Microsoft Azure Support. Azure support options can be referenced here: https://azure.microsoft.com/en-us/support/plans/.

To obtain migration assistance, please contact the selected Cloud Service Provider for information on their migration services.

How do I view Billing information of the services consumed?

The customer’s Billing Admins will be given access to an online console to view current billing. To view AWS current billing information, log on to CloudCheckr at https://cloudcheckr.com. To view Azure current billing information, go to the Azure Enterprise console (at https://ea.azure.com).

Who do I contact regarding the Billing process?

Please contact CDT Billing at CIOOffPremisesCloudBilling@state.ca.gov.

I would like to know more about the Cloud Provider InterConnect (CPI) service, how do I obtain further information?

For information on CPI visit https://cdt.ca.gov/services/cpi/. Additionally, the CDT Account Leads can provide detailed information or help obtain additional information from CDT Technical teams or the Cloud Service Providers. To look up your Account Lead, please go to https://cdt.ca.gov/account-lead-lookup/. If you do not have an Account Lead at this time, contact Customer Engagement at (916) 431-5390.

Customer enrollment into the Off-Premises Cloud IaaS or PaaS will begin with the Customer’s CDT Account Lead.

ENROLLMENT IN OFF-PREMISES CLOUD – IaaS/PaaS

The customer contacts their Account Lead regarding Off-Premises Cloud IaaS/PaaS
The customer submits a Case/Request to CDT
1. Select Infrastructure Services
2. Select Off-Premises Cloud Services
Upon receipt of the Case/Request, the CDT Cloud Support Team will be in contact with the customer to gather additional information, if needed, and answer questions
An Enterprise Account/Subscription will be created by the CDT Cloud Support Team
Once the Enterprise Account has been created, the CDT Cloud Support Team will provide the customer with login instructions
If the customer has signed up for Cloud Provider InterConnect (CPI), the customer provides the Enterprise Account/Subscription ID to the CDT Network Team for configuration purposes

Service Request Name	Link
Off-Premises Cloud IaaS/PaaS If customers choose to use Microsoft Express Route or AWS Direct Connect, they will also need to subscribe to CDT’s Cloud Provider Interconnect (CPI) service. Customers should contact their CDT Account Lead or submit a separate request for a CPI service cost estimate. If you have questions or need further clarification, please contact your CDT Account Lead by using the Account Lead Directory, or call Customer Engagement at (916) 431-5390.	Order Off-Premises Cloud Iaas/Paas Services

Service Request Name

Link

Off-Premises Cloud IaaS/PaaS
If customers choose to use Microsoft Express Route or AWS Direct Connect, they will also need to subscribe to CDT’s Cloud Provider Interconnect (CPI) service. Customers should contact their CDT Account Lead or submit a separate request for a CPI service cost estimate.

If you have questions or need further clarification, please contact your CDT Account Lead by using the Account Lead Directory, or call Customer Engagement at (916) 431-5390.

Order Off-Premises Cloud Iaas/Paas Services

CSP Jumpstart classes by AWS and Azure (offered periodically)
PACe E-Learning (Search under ‘IT Professional Certifications’)
- AWS SysOps Associate
- AWS Solution Architecture Associate
- Microsoft Azure Developing Solutions
- Microsoft Azure Architecting Solutions
- Microsoft Azure Implementing Infrastructure Solutions
AWS
Azure
Google – https://cloud.google.com/compute/docs
Oracle – https://education.oracle.com/learning-explorer