Archive for the 'Layered Technologies' Category

Blog Series: Reducing Risk with PCI-Compliant and Secure Community Clouds

Published on January 4, 2012 in Cloud Computing, Hosting Industry, Infrastructure, Layered Technologies, PCI Compliance, Security and Tech Tips. Closed
Posted by Jeff Reich

By Jeff Reich, Chief Risk Officer, Layered Tech

It seems almost daily a new report emerges detailing how a company suffered a data security breach, resulting in the release of sensitive data for hundreds of people.  To help guard against these attacks, companies can become PCI compliant, but it is not an easy goal to achieve and does not guarantee complete and total security.  As an alternative, community clouds provided through third-party resources like Layered Tech offer security options and a path to compliance without the cost and labor issues present with in-house systems.

To better understand these issues, this blog series will explore the hazards data breaches present and how, even with its challenges, PCI compliance and added security can help protect companies.  Additionally, the series will discuss how leveraging a community cloud provides companies with added benefits, such as scalable infrastructure, flexibility and availability, all in a cost-effective manner.

The real risk hackers pose

PCI compliance can help protect data from hackers, but there are still challenges.In today’s business environment, data breaches are no longer disasters that happen to other companies, nor are they an issue that only plagues large enterprises.  These adverse events can affect small- and medium-sized businesses that have made the leap to computerized systems and digital records.

Hackers are becoming more sophisticated and are able to employ several different tactics to retrieve information, such as exploiting backdoors and using spyware, forcing companies to focus on every aspect of security.  Instead of just looking for credit card and social security numbers or personal data, such as birthdates, hackers are increasingly stealing online banking login details.  According to Verizon’s 2011 Data Breach Investigations Report, the U.S. Secret Service arrested more than 1,200 cybercrime suspects in 2010 that were connected to more than $500 million in fraud loss.

PCI compliance helps but includes challenges

All companies that accept credit card payments, either online or offline, are required to takes steps to secure customer information.  One way companies can accomplish this task is to become PCI compliant, meaning that the organization meets certain criteria throughout the security process, including prevention, detection and response, as set forth by the PCI Data Security Standard (PCI DSS).  These standards, developed by the Payment Card Industry Security Standards Council, provide a range of requirements based on a company’s size, its type of business and the number of credit card transactions it handles.  (Want to know more about PCI DSS?  See the helpful PCI DSS resources available on our website.)

The strictness of these requirements, however, can make it difficult for businesses to achieve compliance.  Verizon’s Payment Card Industry Compliance Report for 2011 states that only 21 percent of the companies assessed were considered fully compliant.  Additionally, even though PCI-compliant companies are safer and less likely to encounter a breach, PCI compliance does not guarantee complete security of data.  Additional security measures, including but not limited to patching and system interfaces, must be taken.

Many companies leverage PCI compliant hosting and managed services from providers like Layered Tech to take advantage of its security, compliance and cloud expertise.  With this approach, organizations gain all the benefits of a hosted IT infrastructure but without the headaches of owning and maintaining hardware.  In addition, you can dedicate your resources to what matters most: your business and your customers.  To learn more about Layered Tech’s services, please visit our website or send us an email.

In the second installment of this blog series, we will discuss PCI compliance and security in community clouds and how this environment can provide businesses with unprecedented processing power, bandwidth and storage capacity, without the burdens of capital expenses and IT staff overhead.

Image credit: Mikael Altemark



pci-compliant-hosting-cta1



Brad Hokamp Interview with Light Reading

Published on August 24, 2011 in Cloud Computing, Hosting Industry and Layered Technologies. Closed
Posted by Tom Eagle

We were recently approached by Light Reading, one of the most widely read IT publications in the industry, to do an interview on Layered Tech’s approach to cloud computing services.  Naturally, we obliged, and our president, Brad Hokamp, sat down with Light Reading’s editor, Phil Harvey, to discuss the results our clients are achieving with our managed compliant cloud solutions:

  • Control costs more effectively – with a cloud environment, customers can build/repurpose infrastructure towards normal loads of traffic and then use cloud for peak capacity management
  • Drive revenue growth and increase agility as a company – allows companies to bring on their customers more rapidly, load applications quicker, etc.
  • Innovate and launch products much faster – leading to faster return on investments

Security and compliance concerns have often prohibited businesses from migrating to the cloud, but a private cloud or even hybrid/community cloud architecture of the kind that Layered Tech regularly deploys for its clients has demonstrated time and again that data and transactions can be so secure as to meet even PCI DSS strict requirements.

The full interview is available as an audio podcast at LightReading.com and as a slide presentation summary on SlideShare.net.

CA Announces AppLogic 3.0

Published on July 27, 2011 in Cloud Computing, Grid Computing, Hosting Industry, Industry Events, Infrastructure and Strategic Partners. Closed
Posted by Kevin Van Mondfrans

This week CA Technologies announced Applogic 3.0. This comes after VMware announced vCloud Director 1.5 and Citrix acquired Cloud.com. This was an exciting month of events for the leading Cloud OS platforms. This is interesting to Layered Tech and our customers because this illustrates the rapid maturing of cloud platform technologies. It exemplifies that these technologies initially targeted to service providers like Layered Tech are also adopting many of the capabilities enterprises are looking for to build out private, hybrid and secure multi-tenant cloud environments.

Today, Layered Tech utilizes both CA Technologies AppLogic and VMware vSphere to provide unique multitenant and private cloud services to our customers. We have long standing relationships with both companies and are one of the original adopters of 3Tera AppLogic before server virtualization, orchestration and automation was called Cloud.  As one of the early adopters of the AppLogic 1.0 platform, we have a unique insight and relationship with CA Technologies. I would like to share a few thoughts regarding the latest release.

The CA AppLogic 3.0 cloud computing platform continues its focus to innovate on the application deployment layer with its intuitive drag and drop application deployment interface. The visual interface, which is the hallmark of AppLogic, continues to differentiate this platform from the others. AppLogic enables complete deployment of entire application environments including virtual load balancers, firewalls, web servers, application server and databases in a single motion.

Among significant new enhancements, AppLogic has added the capability to support:

1)      vLAN tagging to further enable private networking and VPN;

2)      Role-based user access to further separate observers, operators, admins and owners access levels and to improve security;

3)      Support of OVF (Open Virtualization Format) standard to facilitate the import of Xen and VMware workloads from outside the Cloud;

4)      Enhanced cloud operation with the global fabric controller to further automate the maintenance and addition of resources and the enrichment of usage metering capabilities

These are interesting enhancements, and enable a broader set of use cases for our customers with privacy requirement and who want to migrate VMware and Xen environments to the cloud.

Our broad portfolio of managed hosting services includes on-demand multi-tenant cloud services, dedicated virtual and physical environment, and compliance services. With the AppLogic platform we offer Virtual Private Servers (VPS) which is a multi-tenant public cloud with on-demand user portal, and Virtual Private Data Centers (VPDC), which are dedicated cloud environments and give you complete customization and admin access.  In addition, we offer additional cloud services to meet enterprise high availability and compliance challenges.

Layered Tech applauds the advancements by CA Technologies, VMware and Citrix and we remain dedicate to offering the latest best of breed technologies with excellent service and support.

Bye for now.

Kevin Van Mondfrans

Sr. Director Cloud Services, Layered Tech

Meeting Compliance Standards – The New Horizon

Published on November 23, 2010 in Hosting Industry and Layered Technologies. Closed
Posted by Tom Eagle

As businesses and their customers increasingly process, store and share sensitive data online, there is a growing need for secure hosting services that meet data security compliance standards.  Layered Technologies recognizes this growing enterprise trend and is committed to evolving and improving our managed hosting services, which is why we have acquired GSI Hosting, a leading provider of compliance-oriented hosting services.  The acquisition is part of our accelerating growth within the enterprise managed services sector, and the combination of Layered Tech’s on-demand and cloud computing infrastructure with GSI’s compliance-oriented capabilities will create a market-leading managed services portfolio for customers across the globe.

We’re excited to now serve the needs of security-driven organizations requiring PCI-DSS compliance, and we’re squarely focused on introducing additional compliance services, including healthcare HIPAA compliance.

There’s a compelling synergy between Layered Tech’s managed dedicated and cloud-based hosting solutions and GSI’s compliance capabilities, and this combination strengthens the service to existing customers of both companies, as well as creates new hosting options that will bring additional value to the market.  In addition, by combining our resources with GSI, we can offer customers an even stronger level of technical support.  We’re excited to welcome GSI’s talented team to Layered Tech and have Robin Greenhagen, GSI founder and CEO, join Layered Tech as CTO and Kelly Kephart, GSI COO, join as Chief Integration Officer.

Some of the strengths of the combined company include:

  • Only provider able to support PCI compliance through all key audits
  • PCI-compliant cloud offerings
  • Compliance enabled in three flagship data centers initially, with compliance rollout in more of our data centers subsequently
  • Fully managed, compliance-based hosting
  • State-of-the-art customer portal, with extensive features for flexibility, control and ease of use

Here at Layered Tech, we’re looking forward to begin working with our new colleagues from GSI, merging our solutions portfolios, and begin offering our clients the next phase of secure managed hosting services.

CA Technologies’ Video Interview with Our CEO

Published on October 11, 2010 in Exec Chat, Hosting Industry, LT Exec Interviews, Layered Technologies and Videos COOL!. Closed
Posted by Tom Eagle

There’s a new video posted by CA, in which Jack Finlayson, CEO of Layered Tech, discusses the significance of CA’s acquisition of 3Tera.  Layered Tech has long used 3Tera’s award-winning software to help IT managers reduce the time and complexity of deploying and managing business services to the cloud.

Check it out here.