Cloud Security
Ellby understands that confidentiality, integrity, and availability of our customers’ critical data is vital to their business operations. We appreciate and don’t take for granted the trust our customers have put in us.
:quality(80)/f/289556/1920x1240/8e02359ea6/security-cropped-flipped.png)
Ellby Cloud Security and Data Centre Standards
With our Enterprise Grade Cloud Operations, our driving purpose is to ensure we deliver to and exceed your expectations. Because of this commitment to excellence, we take standards and procedures very seriously as a cloud-based Software-as-a-Service (SaaS) provider. Ellby’s data centers provide best-in-class, cloud-delivered security, with superior infrastructure security speed, and integrity, strict standards, true multi-tenant service, high resiliency, and scalability. Ellby partners with Amazon Web Services (AWS) and Microsoft Azure, both undisputed Cloud Infrastructure as a Service leaders, which provides us the ability to scale and innovate with customers as their needs grow and evolve.
:quality(75)/f/289556/1030x317/0114736679/iso-27001-certified-system.png)
ISO 27001:2013 Certification for Information Security Management Systems
Ellby have received certification for the ISO 27001:2013 Information Security Management System. This certification was completed by Compass Assurance Services and ensures that the company has established a formal set of policies, procedures, processes, and systems that manage information risks for the receipt, transformation, storage and processing of electronic documents and data in the Ellby cloud environment according to the Statement of Applicability Version 1.0.
Ellby maintains the following standards procedures in relation to the infrastructure that provides its services:
ISO 27001:2013 certified information security management system, standards and guidelines.
Segmented and secure virtual private cloud (VPC) networks
Highly restricted, role-based access to production EC2 environments governed by the least privilege principle
Hardened EC2 instance images
Mirrored infrastructure across two Australian-Based availability zones
External auditing of technical architecture and penetration risk.
Backups taken daily with an archive of 30 daily backups and 3 monthly backups.
Firewalls configured to “default deny”
High availability built-in via load balancers
Unlimited, secure storage capacity with S3
Continuous monitoring of all components, sub-components, and internal/external/front-end/back-end applications to assist infrastructure and service integrity
:quality(75)/f/289556/933x398/dc1e797479/ellby-aws-security-infographic.png)
:quality(100)/f/289556/1668x1668/a1554c6869/ellby-icons-general-09.png){kind=icon}
Infrastructure Redundancy
Ellby’s primary data centers provide global average uptime of >99.9999%. That means each of the data centers typically experience outages totaling less than 5 minutes and 15 seconds over the course of a year. To ensure availability, all Ellby infrastructures deploy a minimum of N+1 redundancy, meaning every mission-critical component has at least one backup.
:quality(100)/f/289556/1668x1668/8e9e427e7b/ellby-icons-general-06.png){kind=icon}
Data Center Network Security
Our infrastructure is protected by several layers of network-based security controls including host-based firewalls, intrusion detection systems, load balancers, and virtual firewall technology such as AWS Security Groups. Encryption is utilised to protect data in transit, including TLS/SSL encryption over HTTPS connections utilised for secure communications between an Ellby solution and customer end users. Authorised IT engineers access production network equipment and data stored remotely, via secure two-factor authentication enabled SSL VPN tunnels.
:quality(75)/f/289556/1791x910/23a94ac47e/cta-hero.png)