VPO | Virtual Project Office™

Reducing Costs. Improving Collaboration.
Home
Benefits
Details
Differentiators
Security
Success
Deployment
About
Contact
Security
 
We work with LoadSpring Solutions to make sure your VPO is secure and supported. Here's how:
 
Application and Data Architecture
  • System separation--independent VLANs and dedicated databases
  • Server location--Boston, MA and San Diego, CA
  • Firewall infrastructure--multi-tiered, High Availability (HA), enterprise-class
  • Customer connections--secured using VeriSign 128-bit, SSL
 
Network and Hardware Security
  • Firewall hardening--enterprise-level front-end and back-end firewalls hardened to industry standards
  • Switching & routing--enterprise-level switching from Cisco and Extreme Networks
  • Network protocols--only HTTPS, SFTP, FTP & SMTP; inbound
  • Network topology--physically and logically controlled DMZ and 3 separate private networks
  • Server equipment--enterprise-level hardware built by leading US server manufacturers
  • Intrusion prevention--network-base intrusion prevention external to network
 
Security and Performance Monitoring
  • System monitoring--sophisticated internal and external monitoring system reviews all server activity and availability, and proactively corrects or escalates to LoadSpring Customer Support Team (CST) 24/7/365
  • Alert limits--Performance-monitoring systems with 80% alert limits, delivering virtually limitless scalability
 
Data Center Security and Overview
  • Physical access--24 hours' advance notice, valid federally issued ID, and presence on LoadSpring authorization list
  • Facility security--Onsite personnel 24/7/365; electronic and physical security; mantrap entry; badge-only access
  • Power protection--Two 2MW Caterpillar diesel generators; 2N Power Ware UPS, PDUs and static transfer switches; 72+-hour fuel supply; regular systems testing
  • Connectivity and bandwidth--Sprint dual OC-48 Internet backbone; MCI and Verizon dual-path homed
  • Air conditioning--Tightly controlled temperature and humidity; redundant Stultz CRAC units; water-leak detection
  • Fire suppression--VESDATM smoke detection and FM-200 fire suppression system
 
User-Session and Password Security
  • User-session security--Username/password authorization required with at least 8 characters, including numeral and special symbol; expiration every 45 days; enforcement of 5-password history; disabled after 5 invalid attempts
  • Password-reset management--Requests submitted to local System Manager with authorization; once reset, user must change own secret password upon first login; if local System Manager is unavailable, LoadSpring CST will reset after verifying user
 
Redundancy and Disaster Recovery
  • Disaster-recovery procedures--based on failure level, response time required to mitigate, and prioritization of system failures--including full datacenter outages
  • Server backup--Nightly incremental with full backups performed over weekends; Veritas Netbackup Enterprise with LTO-3 or -4 tapes along with SAN storage backups for offline-to-tape archiving
  • Server Configuration--Dual-redundant and mirrored-system drives and redundant storage systems on SAN or separate RAID 10 architecture; dual-redundant Ethernet configured to separate switches for HA, critical server equipment spares kept onsite for quick recovery; four-hour manufacturer onsite-support response
  • Advanced disaster recovery--Options range from nightly data transfers to separate redundant replication to facility 3,000 miles away via SunGuard data-center services