Data Sheet: PCI DSS Compliant ecommerce Hosting

Transcription

1 Where every interaction matters. Data Sheet: PCI DSS Compliant ecommerce Hosting PCI Compliant Infrastructure Multiple ecommerce Platforms Maximum Speed and Reliability

2 Every millisecond and every transaction matter to your business. Poor site performance, unreliable infrastructure and security vulnerabilities can derail the best-laid online revenue generation plans. Whether you sell tangible goods or intangible services, there are many challenges to executing your ecommerce strategy. Securing cardholder data, delivering consistent and fast page loading, matching infrastructure resources to seasonal demand and keeping up with compliance requirements are only a few of the never-ending hurdles to success. PCI DSS Compliant ecommerce Hosting from Peer 1 Hosting helps Internet retailers overcome these hurdles and others. With optimized and scalable infrastructure resources designed to meet the stringent security requirements of the PCI DSS standard combined with our proprietary 10Gbps FastFiber Network, retailers experience unmatched levels of performance and security. And our team of infrastructure experts possesses the practical experience to help ecommerce companies of all sizes and types successfully build their online businesses. From Optimized Magento Managed Hosting solutions to IBM WebSphere solutions via our relationship with Tryzens ( an IBM Smarter Commerce Partner we can design, deploy and manage the infrastructure for the most demanding and immersive ecommerce site. Features PCI DSS compliant infrastructure Our facilities, administration practices and infrastructure are designed to meet the stringent requirements of the PCI DSS 2.0 standard and are periodically audited by an independent third party. For example, administrative access to your environment is controlled with two-factor authentication and monitored with full access logging. We also patch your operating system and deliver full file integrity monitoring. Managed firewalls Our teams of experts will deploy dedicated, enterprise-grade firewalls, fully manage their configuration and maintenance, and monitor their performance to deliver increased security for your PCI DSS Compliant ecommerce solution. Vigilant Web Application Firewall A fully managed Security-as-a-Service WAF, built upon Alert Logic technologies, provides proactive and heightened security. DATA SHEET: PCI DSS COMPLIANT ECOMMERCE HOSTING 2

3 Features (cont d) Relentless Intrusion Detection Relentless Intrusion Detection leverages patented, cloud-powered technology to automatically identify malicious behavior patterns missed by traditional network security products, with possible threats subjected to round-the-clock expert analysis. Log Management and Review Log Management and Review automates the log collection, aggregation and normalization process, simplifies log searches, forensic analysis and report creation, and monitors file integrity. It also delivers real-time analysis of log data related to potential security incidents, such as account lockouts, failed logins, new user accounts and improper access attempts. FastFiber Network Our wholly owned and operated 10G FastFiber Network was designed from the ground up to deliver incredible performance to support rich, immersive ecommerce experiences. With 20 points of presence worldwide and over 1,500 peering relationships with other high-performance network providers, you can rest assured knowing that our network reaches everywhere you do business and delivers the performance your customers demand and expect. Experienced team of experts Our dedicated team of infrastructure experts has experience supporting a vast and diverse array of customers that leverage complex and demanding ecommerce platforms like Magento, WebSphere Commerce and Oracle ATG. They ll work with you to design, deploy, maintain and secure an optimized infrastructure solution that meets your unique business needs. Benefits Deliver a compelling experience and performance Balancing website performance and user experience has always been a challenging and risky balancing act. Our optimized infrastructure, wholly owned and operated 10Gbps FastFiber Network, and optional components like our CDN and AnyCast DNS tip the balance in your favor, enabling you to deliver the best experience for your online shoppers without sacrificing the performance that drives your online marketing efforts. Speed to PCI DSS compliance Whether you are completing a PCI DSS Self-Assessment Questionnaire or engaging in a third-party audit, our PCI-certified infrastructure and Service Provider Attestation of Compliance speeds your compliance efforts, enabling you to focus on securing other areas of your operations with greater thoroughness and efficiency. Proven reliability With our fully redundant FastFiber Network, state-of-the-art datacenters across the US, UK and Canada and our portfolio of managed add-on services, your PCI-compliant infrastructure is the same one that many Fortune 1000 companies rely on every day. Unlimited and expert support Our team of infrastructure experts is available 24x7x365 to ensure that your PCI DSS Compliant ecommerce solution runs smoothly and securely. They are ready to help with everything from designing the ideal solution to troubleshooting to handling the myriad and important day-to-day tasks that are crucial to keeping your solution running at peak performance. DATA SHEET: PCI DSS COMPLIANT ECOMMERCE HOSTING 3

4 Customers Managed Firewall Vigilant Firewall Web Applications Secure DB Web Server Secure Zone Application Server Secure Zone Database Server Intrusion Detection Dedicated Load Balancer Application Server Database Server Clusters SAN Secure VPN Log Manager Required Infrastructure Optional Infrastructure Peer 1 Hosting Client DATA SHEET: PCI DSS COMPLIANT ECOMMERCE HOSTING 4

5 Options Agile Load Balancing Agile Load Balancing ensures that traffic gets distributed to the least-used server, further optimizing the performance of your ecommerce infrastructure. Global Load Balancing Powered by industry leader Neustar, Global Load Balancing ensures smooth traffic flow with fully DNS-based global load balancing. This gives companies with a global footprint a powerful, cost-effective solution for balancing their traffic load across all available infrastructures. RapidEdge CDN Peer 1 Hosting s Content Delivery Network further optimizes the performance of your ecommerce solution by placing valuable content like catalog images closer to your customers. AnyCast DNS Comprised of 27 geographically dispersed clusters of high-performance servers powering your DNS lookups, AnyCast DNS shaves crucial milliseconds off the time it takes your customer s browser to look up your website s IP address. Less time performing DNS lookups means faster page load times and better SEO, which ultimately translates into more revenue for your business. Defiant DDoS Shield Defiant DDos Shield defends against DDoS attacks more efficiently and cost effectively than traditional techniques. It scrubs dirty traffic clean, returning valid packets to your infrastructure for processing, without the need for expensive equipment or extreme remediation tactics. Flexible torage ptions Choose from local disk storage, Direct Attached Storage and Dedicated Disk SAN Storage options to power your ecommerce solution. SAN ased anaged ackups Our managed backup solution reduces your risk of data loss, restores data 15 times faster than tape and minimizes the disruption to your ecommerce solution should disaster strikes. Database dministration rogram Put all the expertise of an experienced DBA at your disposal to help optimize your database and improve the performance of your ecommerce solution. About Center for Internet Security Peer 1 Hosting is a member of CIS (Center for Internet Security). CIS is a nonprofit organization that serves as a central resource for the development and delivery of high-quality, timely products and services to assist its partners in government, academia, the private sector and the general public in improving their cyber security posture. CIS Security Benchmarks, a division of CIS, is a community of organizations and individuals seeking actionable security resources. As part of this community, Peer 1 has access to Consensus Security Configuration Benchmarks, Scoring Tools, Consensus Security Metric definitions and discussion forums where we are an integral stakeholder in collaborating on security best practices. Peer 1 has leveraged these resources to develop Hardened Operating System templates that are available to Peer 1 customers that need an extra level of security to comply with Requirement 2.3 of the PCI DSS Standards. DATA SHEET: PCI DSS COMPLIANT ECOMMERCE HOSTING 5

6 About Center for Internet Security (cont d) Disclaimer: The Hardened Operating Systems that Peer 1 provides are not part of the Peer 1 ROC (Report on Compliance). Customers will need their QSA to approve OS builds. For more information about CIS and the benefits offered by this organization, please visit: Peer 1 Hosting is listed at: Order now / peer1.com DATA SHEET: PCI DSS COMPLIANT ECOMMERCE HOSTING 6