Security
Because security is at the top of every list when evaluating cloud computing, we have turned a potential weakness into one of our strongest selling points. We begin with a SAS-70 type II certification and end with countless stringent policies and procedures developed to accomplish one goal: protection of our clients’ cloud environments.
Secure Facilities
BlueLock owns and maintains our primary data center in Indianapolis, IN. In addition to that facility, we maintain a network of geographically-diverse data centers to offer a increasing levels of business continuity, disaster recovery and fail-over options. Custom-built data centers from the ground-up, constructed entirely of concrete, and designed for high-density computing, BlueLock’s facilities are some of the most capable commercial data centers in the country.
Designed to meet every possible regulatory requirement, our facilities are located more than 1,500 miles apart and at least 500 miles inland from each coast or national border. This level of isolation ensures that any client employing BlueLock’s continuity options will survive regional power grid failures, extreme weather conditions, seismic activity or civil disturbance.
Within our World-class facilities, BlueLock operates multiple physical security systems starting with a three-factor biometric authentication system. In order to gain entry to the facility an individual must have a badge strike, a code, and a hand scan. In addition to the three-factor authentication system, BlueLock maintains a network of video surveillance that is recorded 24 hours a day. Finally, for maximum security, our policy is “escort only” in all data center areas where client environments are running.
Secure Data
BlueLock provides all of its Professional and Enterprise cloud platform clients with dedicated VLANs, which ensures isolation from all other clients. At the environment level, security includes enterprise-class firewalls. These fully-managed devices are also virtual machines in high availability mode for maximum fault tolerance. That means that, just like BlueLock virtual servers, if the underlying physical hardware fails, the firewalls recover on hot spare physical servers running in the BlueLock virtual cloud infrastructure. Additional network security, such as Intrusion Detection Services (IDS) and Intrusion Prevention Services (IPS) are also available.
BlueLock data centers comply with PCI-DSS and have SAS 70 Type II certification. Because BlueLock is a SAS-70-certified facility we are audited annually by a third party auditor to insure that our policies and procedures match our guarantee for security and compliance.
Finally, BlueLock’s industry-leading Service Level Agreements (SLA) expands the scope of traditional agreements by addressing actual incident resolution time, not just response time. This keeps everyone focused on addressing, and proactively preventing, the problems that plague most application environments.
Secure Backups and Recovery
BlueLock storage environments in our Professional and Enterprise clouds are secured by scheduled backups that occur at least every 24 hours. Snapshots are taken of the entire server and stored on a secondary disk system where they await archival to tape on a weekly schedule. Once on tape, the backups are stored in our on-site vault. They are then transported to a secure Iron Mountain facility for long term storage.
BlueLock employs two levels of disaster recovery service. The first level is architected into every Professional and Enterprise cloud environment through the use of redundant SANs, so that client data is stored in two places all the time. In addition, BlueLock employs what we call “hot spare” architecture. If one of the underlying physical servers fails, the applications running on the failed physical hardware will automatically reboot onto the hot spare. If the physical servers give any early warning of an impending failure, BlueLock can employ a technology provided by VMware called VMotion to move the applications, while they are running, to the hot spare server without downtime.
With the second disaster recovery service, BlueLock has the ability to replicate your environment SAN to SAN to our second facility in Salt Lake City, UT. The default SAN replication to this secondary site occurs at the block level in 30 minute increments, ensuring an up to date replica of your production environment hosted in Indianapolis.
Projetech: Secure Infrastructure video:
Clients in the Cloud
