We deliver a highly secure cloud infrastructure that customers rely upon. There are 6 layers of security protecting websites and applications hosted in NEXGEN's secure cloud infrastructure

Physical Security

Weutilize a Tier IV data center designed with superior physical security in mind to prevent unauthorized access. Physical security measures include:

  • Segregated cages
  • Dedicated drops
  • Multi-factor biometric access
  • Detailed access audit trails
  • Security monitoring 24x7x365

Perimeter Security

IP Reputation filtering and DoS/DDos mitigation block malicious activity at the network perimeter preventing suspicious and malicious traffic from ever entering our secure cloud infrastructure. These security measures add protection and increase performance by eliminating unwanted traffic to our server(s).

Network Security

Intrusion detection/prevention, unlimited isolated security zones, and private network segmentation for the network layer is crucial to prevent and monitor unauthorized access, misuse, or modification of network-accessible resources. The products environment will be isolated and secured at the network level.

Server Security

The server is the layer of defense closest to the application. Ensuring attack vectors are limited and points of entry are hardened is extremely important in solidifying an overall security posture and keeping important data safe. Our servers are hardened to exceed most compliance mandates which include:

  • Hardened operating systems
  • Managed OS patches and updates
  • Hardened VMware hypervisor
  • Unnecessary services disabled
  • Password security policies
  • Malware protection
  • Resource availability monitoring
  • Network event logging

Application Security

In addition to traditional web application firewalls and policies for common attacks, your system will benefit from the following application level security precautionary measures:

  • Web application firewalls (ports 80 and 443)
  • Intelligent WAF policies for common attacks
  • Application specific and custom WAF policies
  • HTTP DoS application attack mitigation
  • Application performance monitoring
  • Domain SSL Certificates

Administrative Security

A secure VPN with SSL connection allows us to control the server(s) remotely through a secure access point by providing a fast, reliable, encrypted tunnel through which secure access may be established. Once a remote user's computer is connected via SSL VPN, it becomes an extension of the hosting environment. Some features include:

  • Full port lockdown on all servers (besides 80/443 for web servers)
  • Administration of the hosting environment with confidence while using untrusted networks
  • Granular access permissions for each user, ensuring only need-to-have access
  • Log a "paper trail" of all activities and IPs for connected users
  • Mobile access