Friday, February 23, 2018
Home » Security and Compliance » Security & Compliance (page 3)

Security & Compliance

Responding to the Hack of the Century

For today’s medium to large enterprises, being hacked by outsiders has become a working reality. The challenge leaders face is knowing what to do about it. Security has become a central focus for organizations as they attempt to quantify how much risk they are willing to tolerate and what measures they will employ to prevent an intrusion and detect and mitigate …

Read More »

IaaS, SaaS, and PaaS – Ohh My!

In Understanding the Multiple Versions of the FedRAMP ATOs, we provided a high level overview of the three types of provisional ATOs (P-ATO) available to a government agency. Today, we’d like to dive into the differences between the types of cloud offerings that are available. Those are infrastructure as a Service (IaaS), Software as a Service (SaaS), and Platform as …

Read More »

Back to basics: FedRAMP

We recently discussed the three unique paths to receiving a FedRAMP provisional authority to operate (P-ATO) and how to determine which type of FedRAMP P-ATO’d cloud platform is right for an agency’s applications. We determined that an agency should select the P-ATO’d cloud platform that is capable of meeting the agency’s security control requirements or is flexible enough to layer …

Read More »

Understanding the Multiple Versions of the FedRAMP ATOs

The purpose of FedRAMP is simple – to act as a common set of security controls that can be accepted government-wide. However, since the July 2014 FedRAMP rollout, this security risk management program has gotten increasingly complex. With the initial FedRAMP rollout, the Joint Authorization Board (JAB), which is comprised of the CIOs from the Department of Homeland Security (DHS), …

Read More »

Now Offering Enhanced Cloud Security Service for Enterprise Web Applications

With the continuing growth of cloud-based services, we are also seeing an increased concern surrounding the security of the data stored within those cloud-based infrastructures. If the same standard of security found in physical IT environments cannot be easily integrated to the cloud, enterprises will experience gaps in their security that could increase risk and expose sensitive data. Knowing how …

Read More »

Cloud Migration is the Leading Concern of Cloud Adopters

On December 10th, Datapipe surveyed IT specialists and CIOs at the Argyle Executive Forum in New York and asked them to highlight their biggest concerns about adopting cloud IT solutions for their business. As a global operator with multi-platform hybrid IT solutions, our team of experienced professionals can offer some recommendations. The number one concern cited by event attendees was …

Read More »

The Real Cost of Data Breaches

datapipe compliance cloud age blog

Recently it seems like large-scale data breaches are an almost weekly occurrence. But, just because they are more commonplace does not mean their impacts are any less severe for businesses or for customers whose data is compromised. Though there were several high profile data breaches in the last 9 months — eBay, AOL (again!), Neiman Marcus and more — the …

Read More »

Financial sector takes on cloud computing

datapipe financial sector blog

The prospect of utilizing cloud services within the financial sector has traditionally been met with skepticism due to the need for the most stringent security and regulatory measures. However, with the advancement of cloud hosting options, this perspective is changing. According to recent research, the industry is poised to increase cloud adoption, taking advantage of the benefits offered by the …

Read More »

Value-based health care requires analytics and computing power

datapipe healthcare value blog

Health care organizations have been modernizing their operations and approaches to patient care through technology solutions such as electronic health records and a range of analytical and sensory resources. Driven by opportunities to improve patient care, implement more cost-effective processes and uphold regulatory guidelines, such as Meaningful Use, medical facilities are transforming their IT infrastructure and exploring new ways to …

Read More »

PCI DSS 3.0: An Overview of Core Changes

Payment Card Industry Data Security Standard 3.0 (PCI DSS) changes became effective on Jan. 1, and many businesses will be working to ensure they are meeting new and updated requirements throughout 2014. Datapipe recently become one of the first managed hosting service providers to become certified under PCI DSS 3.0 standards. Since we handle the majority of IT controls for many …

Read More »