Managed hosting and colocation services meet PCI DSS v3.1 requirements, ensuring retailers handling sensitive payment data for ecommerce sites and brick-and-mortar locations are using highly secure infrastructure environments
ATLANTA, Jan. 13, 2016 /PRNewswire/ -- Internap Corporation (NASDAQ: INAP), a provider of high-performance Internet infrastructure services, today announced that the company's managed hosting and colocation services meet the compliance requirements for PCI DSS v.3.1, the latest security standard from the PCI Council. As one of the first infrastructure providers to meet PCI's updated standard, Internap is offering ecommerce and physical retail customers the most secure infrastructure environment possible for storing, processing or transmitting cardholder data.
According to Adobe's Digital Index, consumers spent $11 billion on online shopping between Thanksgiving Day and Cyber Monday in 2015, a 15 percent year-over-year increase. Amidst this rise in payment transactions, protecting cardholder data is of the utmost importance for maintaining positive customer relationships and minimizing data breach costs. Internap has a demonstrated history of providing infrastructure solutions that are PCI DSS compliant and taking steps to quickly ensure that its infrastructure remains compliant when the PCI Council adjusts security requirements to address changes in the cyber threat landscape.
"As retailers and businesses see exponential growth from ecommerce, the cyber attacks against the underlying payment systems are also increasing in their sophistication. Infrastructure providers serving this industry have a customer obligation to ensure service offerings are brought into compliance with the latest PCI security standard as quickly as possible, " said Satish Hemachandran, senior vice present and general manager, cloud and hosting, at Internap. "Global retailers depend on Internap's infrastructure to keep their sensitive customer data secure as they scale their businesses, and we prioritized achieving PCI DSS 3.1 compliance in a very short timeframe to meet our customers' needs."
"Since ensuring the safety of our customer data is always a priority, security was a top consideration in choosing an infrastructure provider, " said James Gurney, vice president of technical operations ownerIQ. "Internap's continued commitment to advanced data security and compliance standards makes them an excellent provider for ownerIQ."
Independent IT compliance firm Coalfire conducted the PCI DSS 3.1 audit of Internap's managed hosting and colocation solutions. Criteria for infrastructure providers to meet PCI DSS compliance includes:
-- A SOC 2 compliant physical data center with security controls to protect the physical assets (firewalls, routers, switches and servers) of the hosting customer's environment. -- Management of administrative user accounts that include service accounts, root, administrator and other system-level administrative (privileged-user) accounts. -- Installation, configuration, administration and maintenance of firewalls and network router equipment, and the deployment of customer-specific rules for Internap to implement. -- Anti-virus administration at the operating system level, to ensure that the services operating within the customer's managed server environment are free from viruses. -- Backup and recovery of operating system environments, customer data repositories, as well as system and security device configurations.
"Ecommerce companies are all too aware of the frequency of cyber attacks against their industry and require storage and data management systems with sophisticated data management mechanisms to protect customer information," said Tim Russell, vice president, product management at NetApp. "A long-time NetApp partner, Internap leverages clustered Data ONTAP to provide robust data protection for their managed hosting customers' data. We are excited to support Internap's solutions for the ecommerce industry and are very pleased that the company moved quickly to meet the newest PCI data security standard."
To learn more about Internap's compliance and accreditations, visit internap.com. To learn more about the PCI Data Security Standard, visit pcisecuritystandards.org.
Supporting Resources:
-- Blog: Protect cardholder data with PCI-compliant infrastructure internap.com
About Internap
Internap is the high-performance Internet infrastructure provider that powers the applications shaping the way we live, work and play. Our hybrid infrastructure delivers performance without compromise -- blending virtual and bare-metal cloud, hosting and colocation services across a global network of data centers, optimized from the application to the end user and backed by rock-solid customer support and a 100% uptime guarantee. Since 1996, the most innovative companies have relied on Internap to make their applications faster and more scalable. For more information, visit us at internap.com or internap.com, and follow us on Twitter: @Internap.
Forward-Looking Statements
|
