SoftLayer Completes Annual Audit for Second Year

(Gawkwire.com) SoftLayer Technologies has recently completed the SAS 70 Type II audit for a second year. An independent auditing agency was selected for the review. The audit included extensive testing performed over a 12-month period. It involved all existing SoftLayer data center facilities in Dallas, Seattle, and Washington, D.C.

SoftLayer’s SAS 70 data centers must maintain prescribed levels of data security and redundancy, as well as personnel controls. Specific procedures for accessing servers or data must be followed by data center staff in order; all systems access and activity must be logged, and all physical access must be highly controlled.

“A SAS 70 Type II review is an in-depth survey of a service organization’s control objectives and activities,” said Steve Kinman, Customer Service Manager for SoftLayer. “With an objective evaluation of our organization’s effectiveness in meeting our control objectives, we can continue to assure our customers the highest levels of security and reliability. It is an important step for any service organization supporting outsourced, mission-critical, and information technology services.”

The survey includes a full assessment of:
 Executive management oversight
 Operations and customer service
 Development and information technology organization
 Human resources policies and procedures
 Risk assessment monitoring

In addition, SoftLayer is in the process of achieving Payment Card Industry (PCI) Level 1 certification, with expected completion by midyear. PCI compliance helps to ensure the security of credit card data transmitted online. Level 1 is the highest level of compliance, necessary for merchants processing large quantities of online credit transactions.