Posts Tagged ‘SSAE 16’

Why Is Compliance in the Cloud Important?

May 7th, 2012
Posted by: Donna Hemmert

GUEST BLOG

By Joseph Kirkpatrick
Managing Partner, KirkpatrickPrice

The world’s digital infrastructure is a constantly growing industry.  This is why the use of data centers has become exceedingly popular.  What is the scary thing about collecting and storing highly sensitive information?  The risk of a security breach.

When a company utilizes a data center, such as for cloud computing and hosting, it’s important that they are aware of the security of their organization’s data, especially because data centers often times outsource to other vendors.  What does this mean to you?  This means they may also have access to your data.  This is why cloud hosting providers must be in compliance with all applicable privacy laws when it comes to keeping data secure during the collection, storage and use of your sensitive information.

How is compliance measured?  Compliance is measured by how well organizations meet the data security standards and regulations that are meant to help you keep your information confidential and secure.  The use of data centers is very resourceful as long as you’re sure your service provider is complying with these industry accepted security standards and regulations.  Some of the companies that comply with SSAE 16, PCI Data Security Standards, and Trust Services Principles and Criteria have already taken these steps and have been audited by third parties, such as Certified Public Accountants (CPAs) and Quality Security Assessors (QSAs).

So, what steps should you be taking?  Start taking your organization’s security into consideration and ensure compliance in the cloud.

(more…)

TAGS:

CATEGORIES:

1 Comment »

Top 6 Benefits of AIS Network’s Managed Private Cloud

May 3rd, 2012
Posted by: admin

By Jay Atkinson
AIS Network CEO

You want to spend more of your IT dollar on the innovation that your customers expect.  So in order for you to focus on your business, the ratio of what you build out “new” versus what you spend time maintaining and running has to improve measurably.  Plus, you want maximum control over your IT environment with the least hit to your organization’s bottom line.

You’re sure you get every bit of that and more by moving from a traditional deployment to AIS Network’s Managed Private Cloud architecture.  But, how do you persuade the C-Suite to let go of the current environment?

What are the six most compelling benefits for AISN’s Managed Private Cloud?

  1. Security. Industrial strength security and integrity of data are paramount.  AISN’s Managed Private Cloud offers the benefits of cloud technology, but keeps all your data on hardware dedicated to and controlled by you.  Under the umbrella of a security framework that you define, you can best address your customers’ security needs and meet the most stringent of compliance requirements – a big enhancement, when compared with open, more heterogeneous systems.
  2. Compliance. Stringent compliance is a priority.  A key component of any high-level compliance program such as SOX, PCI, HIPAA/HITECH or FISMA is the ability to segregate your data from others.  With AISN’s Managed Private Cloud, you control your own SAN, which eliminates the possibility of database cross pollination.  For PCI compliant solutions, we can easily provide you with your own dedicated firewall.  AISN is SSAE 16 Type II-compliant and our methods are explicitly documented and verified by an independent auditor.
  3. Scalability. Managing growth confidently is critical.  As the pure IT content of your business grows, so does the ability to have a flexible – and essentially infinite – expandable computing base.  With an AISN Managed Private Cloud, you don’t have to purchase and maintain additional hardware.  We manage the technology so that you can focus on business strategy.
  4. Cost. Saving money is smart business.  Deploying an enterprise-scale system in AISN’s Managed Private Cloud can cost significantly less than others would charge you to implement the same system in a public cloud or a hybrid cloud.  And, as you grow, you get the benefits of economies of scale, meaning your per virtual machine cost decreases.
  5. Performance. Speed matters.  Since you’re in your own AISN Managed Private Cloud, you don’t have to share resources with other customers and worry whether another customer’s application failure will impact you. Faster response times and a healthier infrastructure is a good thing.
  6. High Availability. 100% uptime rocks.  AISN’s Managed Private Clouds have both physical and virtual redundancy built in to ensure High Availability.  Our SSAE 16 Type II-certified data centers safeguard your data against natural and man-made disasters, including physical security breaches.  Our rock-solid Service Level Agreement guarantees it.

AISN’s Managed Private Cloud positions you at a competitive advantage by accomplishing your business need to go FASTER – confidently.   For more details, get in touch with us.  We’d love to help.  (Jay Atkinson, jay.atkinson@aisn.net).

TAGS:

CATEGORIES:

No Comments »

Does Third Party Hosting for SharePoint 2010 Make Sense?

April 13th, 2012
Posted by: admin

By Jay Atkinson
AIS Network CEO

“To cloud or not to cloud?” is rapidly emerging as the technical question of the decade.

Industry analyst Gartner, Inc., expects 43 percent of companies to have most of their IT efforts running in the cloud in as little as four years. Due to that expected boom in cloud adoption, Gartner ranks cloud computing as the No. 1 tech priority for chief information officers.

Placing a mission-critical platform into the hands of an independent, third-party hosting services provider can uniquely position that

SharePoint 2010 Cloud

Should you host your SharePoint 2010 in the cloud?

organization to combine some of the best elements of on-premise hosting and Office 365 delivery. For many organizations, SharePoint is mission critical and the decision to shift from on-premise hosting to third-party hosting is not entered into lightly.  However, the benefits of doing so are increasingly appealing.  In comparison to on-premise hosting, third-party hosting offers superior flexibility, greater reliability and a better value.

Why a better value?  Ultimately, if an organization were to attempt to replicate the hosting infrastructure built by a third-party provider, it would become abundantly clear to that organization that outsourcing to a third party provides a much better value.  It is usually cheaper for an organization to host SharePoint on-premise – unless they want to do it right.  Replicating an on-site infrastructure that equals the performance, reliability, scalability, security and compliance environment that “comes standard” with a solid, Microsoft hosting partner’s services would be cost prohibitive.

Here, it is also important to note that for public companies or others that are audited, Sarbanes-Oxley (SOX) also drives the case for outsourced hosting.  SOX identified the Type II SAS 70 report (today’s equivalent is SSAE 16 Type II) as the only acceptable method for a third party to assure a service organization’s controls.  Many reputable hosting companies are SSAE 16 Type II-audited, which means the audit of the hosting company can be incorporated into the audit of the public company.  Relying on the audit performed on a third-party hosting company, at the hosting company’s cost, may be much more cost-effective than ensuring your own facilities and processes are SSAE 16-compliant.

Hosted SharePoint Specialists

Organizations contemplating a SharePoint deployment should recognize that there are applications hosting providers and then there are a handful of hosting providers that specialize in hosting SharePoint.  Many have Microsoft and additional compliance certifications, and that enhanced capability and level of service may be imperative to an organization requiring customized SharePoint hosting configurations, Microsoft-certified talent, and top-grade security and disaster compliance.

The hosting provider’s infrastructure is supported by many clients, thus enabling it to deliver a broad range of services at a substantially lower price (than managing identical services on-premise).

For the customer, there is little upfront capital expense and the monthly payments to the hosting company are predictable operational expenses.  The IT staff is freed up from spending precious resources and time on designing its own hosting solution architecture.  Stressing about managing backups, software licenses, hardware/software upgrades, and patching schedules is all in the hands of seasoned hosting experts who monitor the customer’s SharePoint solution in a disaster-resistant data center.

In addition to cloud hosting services, there are two general types of SharePoint hosting that a third-party provider may offer:

Shared hosting. An organization’s applications and data are deployed on a server that is shared by several other organizations.

Dedicated hosting. An organization either deploys its own servers or the hosting provider deploys servers dedicated for exclusive use by that organization.  Dedicated hosting may be provided by either dedicated physical servers or dedicated virtual servers.

Benefits and Drawbacks of Third-Party Hosting
A SharePoint hosting provider frees up an organization’s entire IT staff to focus on tasks that will help grow their business.  In their Service Level Agreements, most top-tier hosting providers offer disaster-resistant data centers, temperature and access controls, 24x7x365 monitoring and response, excellent connectivity, reliable uptime and availability, managed hardware/software upgrades and maintenance, routine backups and fail-over capability in the event of disaster.

The best providers develop a solid, personalized relationship with each customer, listening carefully to their needs and integrating their team of experts into the organization’s IT staff.

Benefits include the following:

Customization. The hosting provider is capable of configuring highly complex SharePoint installations.

Low upfront costs. Capital outlays are minimized. Outsourced hosting becomes an operational expense.  The hosting provider typically buys and manages the servers and provides the licenses.

Staff. Highly trained hosting experts strive to integrate seamlessly with an organization’s team, thus helping to strengthen the relationship through personalized service.

Security. An organization’s servers are typically highly secured, backed up and sitting in a disaster-resistant data center.  Many providers have SSAE 16 Type II designations as well as other compliance certifications.

Scalable. Spikes in traffic can be sustained without the accompanying worry that the organization’s network will crash.

Drawbacks include the following:

Portability. SharePoint hosting is complex, and organizations must enter into long-term contractual commitments with their hosting provider.  Switching providers in mid-contract, or reverting back to self-hosting, is not easy and the process of migrating data to a new hosting arrangement can be onerous.

Slower deployments. Deploying the physical infrastructure is managed and thus not as turn-key as cloud-based hosting.

In addition to cloud hosting services already addressed by this paper, there are two general types of SharePoint hosting that a third-party provider may offer:

Change management. Changes – either hardware or software – to the SharePoint configuration may require the hosting provider’s review and approval, so organizations must plan in advance.

Flexibility. While third-party hosting may not recreate the level of flexibility associated with on-premise hosting, in most cases, the degree to which an organization loses out on flexibility and control is less than the degree by which it will save on capital outlays.

Just as with on-premise hosting, there is a large emphasis on customization and flexibility in the world of third-party hosting providers.  An organization will have full access to its own SharePoint environment – the way it should be – and any kind of software application that compliments its SharePoint (customer relationship management software, data mining programs, etc.) can be integrated.

Have more questions about hosting SharePoint in the cloud?  Download the “To Cloud or Not to Cloud” whitepaper and/or speak with someone in our office.

TAGS:

CATEGORIES:

12 Comments »

Financial Services Firms Like SharePoint 2010

December 27th, 2011
Posted by: admin

By Laurie Head
AIS Network Vice President

We’ve blogged about CPAs and the cloud and how IT literacy is important within the financial services sector, but we haven’t really addressed the fact that MOST of our financial services clients are using our SSAE 16 Type II-compliant hosted SharePoint 2010.  Why?   Quite simply, hosted SharePoint improves information access, saving time and money.

Financial services firms manage mounds of burdensome paper daily – application forms, contracts, client correspondence, regulatory and compliance reports.  If the information flow isn’t managed with precision, the result will be unwieldy, unreliable processes that increase operational costs such as employee overhead, paper file storage fees and information retrieval.  Failing to manage all of this information (especially in a time of unprecedented economic challenges) puts financial services firms at risk. In the face of market turbulence, economic uncertainty, increased competition, data security concerns, and more stringent regulatory and compliance issues, the firms that succeed are the ones embracing the hosted Microsoft SharePoint 2010 platform.  Among many benefits, hosted SharePoint 2010:

  • Provides robust data protection
  • Offers high platform availability
  • Optimizes workflows
  • Automates processes, saves time
  • Centralizes and organizes client data for search
  • Reduces time spent on documentation
  • Manages compliance efforts

With hosted Microsoft SharePoint 2010, smart financial services firms can overcome technical and procedural challenges to master information governance now and gain a competitive advantage in the marketplace—all without sacrificing compliance, security or attention to detail in handling customer data and sensitive information.  Check out our page dedicated to SharePoint 2010 for the Financial Services Industry and let me know what you think.

 

TAGS:

CATEGORIES:

3 Comments »