Cloud QMS Security

Cloud server security is critical to protecting customer data and providing a world-class user experience.  We utilize a set of reliable systems and processes that extend from data center facilities through server hardware and software.  Our goal is to ensure your Cloud QMS server is available when you need it and your data is secure.

Data Centers

The data centers that we use are equipped with fully redundant fiber network and power supplies to provide maximum reliability and 99.95% SLA. The facilities are gated with restricted and logged staff access as well as 24/7 video surveillance. Data centers are periodically audited to comply with HIPAA, PCI and SOC security standards.

Data centers are ISO 27001, ISO 14001, PDI DSS, SOC 1, SOC 2, and SOC 3 compliant.

Servers

Every virtual machine comes with its own isolated private network with no incoming port open. Firewall and private networks between virtual machines can be configured from the management console. All public IPs have anti-DDoS protection included and connections to your office resources are made using site-to-site IPsec VPNs.

Servers run industry-standard antivirus software to prevent and detect virus attacks.  Servers are also monitored monthly to ensure software is up-to-date and backups are successfully performed.

Connections

Connections to the Cloud desktops using the web and mobile app are encrypted using SSL HTTPS. Connections from the desktop application are made using RDP over SSH tunneling. All our apps support multi-factor authentication as well as SSO SAML integration. 

All connections are monitored with a lockout mechanism that is triggered after multiple failed login attempts. We configure idle time limits to automatically close idle connections and further protect the server.

Data Backups

In case of a disaster, virtual machines can be recovered from a system snapshot. Snapshots can also be used to recover individual files in case you or an end-user mistakenly delete it. We perform daily snapshot backups with a 7-day retention. To ensure the data is immune against ransomware, we keep the snapshots offline in a secondary location.

Our SQL server data is backed-up daily with a 30-day retention.  SQL Data is stored offline in a secondary location.

Cloud server security is critical to protecting your data and providing a world-class user experience.  We utilize a set of reliable systems and processes that extend from data center facilities through server hardware and software. 

For more information visit our Cloud QMS page