Physical security
The campus is protected by an eight-foot perimeter fence with a single point of vehicle entry; security personnel staff the point of entry 24 hours a day, seven days a week. Campus access is permitted through an integrated badge access system with dual redundancy. All access badges include color-coded photo IDs to distinguish between employees, business partners and temporary personnel. Entrance points are monitored via closed-circuit TV with displays located in permanent security guard posts.
Physical building security is controlled by the same system as campus security. Access approval is centrally managed by Corporate Facilities. Appropriate levels of management approval are required, depending on the level of access requested. Access to raised floor areas is granted or denied by the Director of IT Operations or his designee.
The access control system at the data center is PC-based with three master stations. Only one station is capable of producing access badges, while the other two are capable of supporting card detection readers. All readers are accessed by proximity cards and are used to prevent access to critical areas and primary building access points. Access readers also are installed in elevator cabs to prevent unauthorized access to certain floors.
Only one door, manned by a security guard, is open to the public during business hours. The facility has two employee card access-only entrances that are under guard surveillance at all times. Onsite, 24 hours a day, seven days a week, security guards monitor parking lots, and recessed video cameras are hidden throughout the facility.
All servers comply with a stringent internal security standard, and servers reside in their own firewalled VLAN and belong to their own domain. Some servers are firewalled from each other using the Juniper Hypervisor Virtual Firewall. VM Endpoint Security and Intrusion Detection Services (IDS) are implemented on the core infrastructure, and vulnerability scans are routinely performed. A firewall segregates the Cloud environment from any public-facing or Internet LAN segments.
The Network Operations Center monitors the data center network and servers 24 hours a days, seven days a week.