(WEB HOST INDUSTRY REVIEW) — Web hosting provider Host.net (www.host.net) announced last week its colocation centers have earned renewed SAS 70 Type II as well as new PCI DSS Requirement 9 audits, which comply with strict operational and security standards governing the facilities’ infrastructure.
The announcement follows the company’s recent expansion of its multinational network infrastructure services to the Jacksonville, Florida market by adding a new POP.
As a result of these audits, Host.net’s colocation customers are assured that their servers are in a secure, redundant and continually monitored environment with extensive controls to protect their equipment and related data.
The company’s renewed SAS 70 Type II audit followed a comprehensive evaluation of Host.net’s physical security, environmental security, network monitoring, problem escalation and support by US-based audit firm SAS 70 Solutions.
The Statement on Auditing Standard No. 70 is issued by the American Institute of Certified Public Accountants for use in assessing the internal controls of a service organization.
Host.net achieved the new PCI DSS Requirement 9 certification following an audit of the firm’s colocation center infrastructure and operational controls to assess its compliance with Requirement 9 of the Payment Card Industry Data Security Standard.
The standard requires specific restrictions on physical access to consumer credit card information.
Enterprise Risk Management conducted the audit, which provides a wide range of information security and information systems audit services to local, national and international businesses.
“Up-to-date security assurance is imperative for companies selecting a colocation provider,” says Roger Barranco, CTO and VP of operations for Host.net. “It is essential to know that the provider meets strict standards covering everything from the physical building itself to network and power redundancy, 24×7 monitoring and support. The fact that we have achieved these certifications – and in fact renewed our SAS 70 Type II certification, which many providers fail to do – demonstrates that our clients’ equipment and information assets are safe.”
