Security

Security

Dedicated to providing the highest levels of security to protect your enterprise in the cloud.

Virtustream’s security foundation is built on the CIA Triad model, protecting the Confidentiality, Integrity, and Availability of its assets. Virtustream’s top-down approach, starting from the senior executive leadership, entails in-depth, extensive due diligence in all aspects of our defense-in-depth security posture. Virtustream’s people, processes, and technologies strive for trust, transparency, dependability, scalability, accountability, auditability, innovation, and automation. 

This paradigm includes routers, firewalls, vulnerability scanners, intrusion detection, internal and external audits, risk management, governance, least privilege and needto-know principles, identity and access management, extensive vetted and background checked technical personnel, comprehensive change management and incident response plans, firewall policy reviews, file integrity monitoring, audit log correlation and review, as well as mandatory security awareness training for all employees.

Virtustream’s IaaS cloud services employ industry-leading security capabilities to ensure perimeter defense, network security, host security, system hardening, tenant isolation, secure development lifecycle, data privacy, and data protection while enforcing strict administrative, physical, and technical control.

Key areas addressed by Virtustream security capabilities include:

Responsibility Model

Security is a shared responsibility between Virtustream and the customer. Discover how Virtustream's shared responsibility model clearly articulates which controls Virtustream implements and which controls a customer must implement to achieve compliance.

Host and Network Security

Host and network security is important in IT operations, including when you're migrating mission-critical applications to the cloud. At Virtustream, we offer a comprehensive set of host and network level security options that help protect your organization’s data.

Data Protection

Ensure you have the data integrity, resiliency, and availability you require. Use Virtustream cloud services and realize the benefits of encryption technologies and embedded disaster recovery in a cloud environment.

Configuration, Hardening, and Vulnerability Management

Guaranteeing consistency in our system configurations is imperative to the integrity of our cloud services. At Virtustream, our systems are continuously tested and audited to verify they are secure.

Identity Management and Access Control

Identity management and strong access controls are critical to preserving the integrity of Virtustream cloud services for our customers. Through authentication and our xStream portal, you can increase security while reducing the chance of unauthorized access to your cloud.

Security Logging and Monitoring

Data security is of the utmost importance to enterprises and government organizations. That is why Virtustream gathers and monitors security logs to ensure that threats to your systems and data don’t become incidents.

Security Development Lifecycle (SDL)

Virtustream cloud services are purpose-built for mission-critical workloads, making security a top priority. To assure protection of your data, Virtustream employs a security development lifecycle (SDL) process to reduce the number of vulnerabilities and provide a highly trusted cloud platform.

Policy and Governance

When it comes to information security, business continuity, and quality, Virtustream gives you peace of mind. Virtustream’s dedicated Governance, Risk, and Compliance (GRC) team is dedicated to continually improving the management system that governs our operations and protects your data.