PCIDSS 3.2 Certified
Credit and debit card payment options are vital and convenient for businesses to provide, especially banks and e-commerce vendors. When Customers pass on their information to your business, it’s critical that there are robust levels of protection to ensure it is safe from all threats.
Recently, attackers have shifted their focus on using SSL and application layer attacks that burden resources. This is in response to previous DDoS attacks only focusing on 3-4 layers which were easily blocked by network firewalls providing a basic line of defence.
RapidCompute understands the immense responsibility of hosting mission critical data on its cloud. In addition to being ISO 27001:2013 certified and TIA 942 Compliant, RapidCompute has recently acquired the PCIDSS 3.2 certification.
This allows customers who want to develop a cardholder environment or card processing service to leverage RapidCompute’s validation and ensure they can store and manage data in a in a secure and compliant manner.
What Does This Mean For You
RapidCompute is the only ISO 27001:2013 certified Cloud Service Provider in Pakistan. This certification helps us to establish, implement, maintain and continually improve our information security management system.
This adoption of an ISMS is a strategic decision for RapidCompute. We understand the immense responsibility of hosting mission critical data on our cloud and this certification preserves the confidentiality, integrity and availability of information by applying a risk management process to them.
TIA 942 Compliant
All of RapidCompute’s data centers are TIA 942 compliant. The advantages this includes standard nomenclature, failsafe operation, robust protection against natural or humanmade disasters, and long-term reliability, expandability and scalability.
The TIA-942 specification data center requirements for applications and procedures such as:
RapidCompute provides each customer with a unique VLAN, which makes it virtually impossible for potential attackers to snoop on our customers’ data. Important account information is stored externally in a secure billing platform. RapidCompute does not store any customer credit card or bank account information anywhere on its system.
RapidCompute provides network management tools through its customer portal to help customers configure remote access to their RapidMachines. Internet access to RapidCompute may be obtained through any ISP (and internet connection through Cybernet is not necessary). However, the security controls related to internet traffic in such a case are covered under the contracted ISP’s own domain.
The hypervisor used by RapidCompute is a secure, trusted and highly supported commercial platform. Furthermore, RapidCompute administrators, with decades of experience managing and securing data of Cybernet customers, follow best practices to protect customer access information such as user accounts, passwords and admin user IDs.
The RapidCompute network is also protected by a state-of-the-art Unified Threat Management (UTM) firewall cluster that provides effective protection from a multitude of threats emanating from the internet.
Finally, RapidCompute encourages its customers to take simple additional steps that go a long way in further improving the security and data recovery of its RapidMachines:
RapidCompute infrastructure is housed in Cybernet’s state-of-the-art data center. This data center has the following features: