How secure is the Printable SaaS host server?

The base operating system installation includes only services necessary for the operation of the Printable application and supporting applications. Unused services are uninstalled or disabled. Anti-virus software is installed on all hosts. Systems are patched on a regular basis with the latest manufacturer software.

How secure is the Printable SaaS network?

Firewalls are configured to deny all traffic except for specific services necessary for the operation of the Printable application and supporting applications. This applies to all network boundaries (internet-DMZ and DMZ-trust). No traffic is allowed from the Internet to the trusted network. Firewalls will also drop certain traffic that is deemed to be invalid or malicious in nature.

What administrative controls secure the Printable SaaS network?

Access to network devices and servers is restricted to authorized employees only. Administrative network traffic is secured by either private network, VPN, or SSH (or a combination of these).

What about password controls?

Privileged passwords are subject to certain length and complexity requirements and are changed periodically or as necessary to mitigate any vulnerability.

What physical security systems are in place in the data center?

The data center is physically protected by proximity card scanners, biometric devices, and combination locks. Surveillance cameras monitor data center ingress/egress points. The list of personnel with access to the data center is reviewed quarterly.

What about the SaaS network system backup and failover?

The system is supported by Cisco-brand firewalls, switches, and load balancing equipment. The network runs on multiple commodity-class computers in a fault-tolerant fashion that is able to withstand the loss of one or more components without impact to system operations.

The system software source code is maintained at an off-site location and can be deployed to systems at an alternate site if necessary. User data is backed up to both warm standby data storage several times an hour and nightly to tape, which is rotated off-site regularly.