<img height="1" width="1" src="https://www.facebook.com/tr?id=1953097804934218&amp;ev=PageView &amp;noscript=1">

Blog

Joe Johnson

Recent Posts by Joe Johnson:

ServerCentral's 2016 SOC 2 audit is now available!

Throughout many years of managing audit tasks and compliance programs, the most arduous part has always been gathering the proper artifacts.

  • Did we get the screen shot of one system right?
  • Where did I put that report from our vendor?
  • Who’s seen the monthly vulnerability scan reports?

Well, today ServerCentral took a large step toward making that process easier for our customers by putting our SOC 2 report online in our customer portal! 

Topics: Compliance Security Audit

The End of Safe Harbor And What Comes Next

Under European law, service providers are legally obligated to maintain the levels of security and privacy for personal, non-public information. Because of these protections, data from European users cannot be moved to jurisdictions where the same level of protection does not exist.

Topics: Security

5 Reasons You Should Care About Data Center Compliance

Day by day, businesses across the world are moving more of their operations to the cloud, relying heavily on cloud service providers to protect and secure their data from theft and loss. If they haven't dipped their toes in the big pool of cloud, maybe they've hired a managed services provider (MSP) to handle the day-to-day maintenance and availability of their systems and data or the monitoring of uptime and performance.

Regardless of the path chosen, the potential exposure and risk of business, data, and reputation loss is real. However, both of these paths also provide businesses a great deal of benefit, leading many to try and strike that perfect balance of risk vs. reward in their cloud strategy.

This is where data center compliance comes in. 

Topics: Compliance

We're Hiring A Linux System Administrator

Jacks of all trades, masters of...ALL! ServerCentral is looking for the ultimate Linux System Administrator to join our team.

Topics: Job Openings

My SOC is Better Than Your SOC

We’ve come a long way since the days of the SAS 70, which did little to actually test the security of a data center or managed service provider. Under a SAS 70, which was designed to test the integrity of financial reporting and not information security, an organization could make up their own set of rules to be audited against. An auditor, usually a CPA sanctioned by the American Institute of CPAs (AICPA), would "test" their client by looking for evidence that they followed each rule.

Topics: Data Center Compliance

Oodles of POODLEs, Or How Not to Get Bit

Often the biggest concern when a security exploit comes out is the time that elapses from when the issue is reported to the time when the manufacturer issues a patch. Will you be targeted in that brief unprotected moment? Can you ensure your customers will be protected if you're the victim of an exploit?

Topics: Security

1 SOC, 2 SOC, Red Sock, Blue Sock

Compliance isn’t just a checkbox on a piece of paper to ServerCentral. From old hardware disposal to protecting vital assets and systems, security and compliance are at the core of everything we do for our clients. We first covered our commitment to compliance when Daniel Brosk, our COO, blogged about the changes the SSAE-16 SOC 1 brought from our older SAS 70 report. Today, we have another exciting new announcement about our commitment to security and compliance:

Topics: Compliance

Small Businesses Can't Afford to Ignore Information Security

If you read the news lately, it seems like every corporate board across the country is adding Chief Information Security Officer to the ranks of their C-suite. The bailiwick of the CIO—Information Security—is now the de facto buzzword of the post-Heartbleed world. While that’s all well and good for the publicly-traded giants of Wall Street, where does that leave small business owners and startups with just a few servers to secure?

Topics: Security

Patching Heartbleed

ServerCentral works around-the-clock to help keep our clients secure. Here’s some insight into the time taken to perform a massive, network-wide scan and notify our affected clients:

Topics: Disaster Recovery Products and Services