How is Security Implemented at Safe Swiss Cloud?

Question

Accepted Answer

Safe Swiss Cloud takes many steps to ensure the security of our customer’s data and computing resources:

Keep the operating systems on the all the hosts of our cloud systems up to date.
Two factor authentication TFA for access to cloud management systems.
Keeping the cloud systems up to date.
Physical security at the data centres.
Regular network scans to detect irregularities.
Regular employee security training.
Regular reviews of access rights.

In addition, customers who delegate (parts of) their IT Operations to Safe Swiss Cloud benefit from the following:

Anti-Malware installed on the customer’s servers.
Security Operations Center (SOC): monitoring with daily review of security events.
Regular backups to separate, independent systems which are out of reach for Ransomware.
Managed firewalls.
Penetration tests and vulnerability scans.
Two factor authentication TFA for access to customer’s servers (VMs).
Regular security updates (“patching”) of customer servers (VMs).
Proactive customer confirmation of allowed users.

The above and our internal security processes are documented according to ISO 27001, 27017, 27018. They are audited and certified annually.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Analytics" category .
cookielawinfo-checkbox-marketing	1 year	This cookie is set by the GDPR Cookie Consent plugin to store the user consent for the cookies in the category "Marketing".
cookielawinfo-checkbox-necessary	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Necessary" category .
JSESSIONID	session	Used for Cross Site Request Forgery (CSRF) protection
sdsc	session	Signed data service context cookie used for database routing to ensure consistency across all databases when a change is made. Used to ensure that user-inputted content is immediately available to the submitting user upon submission
viewed_cookie_policy	1 year	The cookie is set by the GDPR Cookie Consent plugin to store whether or not the user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_ga_D83559EP8M	2 years	This cookie is installed by Google Analytics.
browser_id	5 years	This cookie is used for identifying the visitor browser on re-visit to the website.
split	1 month	This cookie is used to evaluate the changes to the website by checking which multivariate test the user takes part in.

Cookie	Duration	Description
bcookie	1 year	Browser Identifier cookie to uniquely indentify devices accessing LinkedIn to detect abust on the platform and diagnostic purposes
bscookie	1 year	Used for remembering that a logged in user is verified by two factor authentication
lang	session	Used to remember a user's language setting to ensure LinkedIn.com displays in the language selected by the user in their settings
li_gc	6 months	Used to store consent of guests regarding the use of cookies for non-essential purposes
li_mc	6 months	Used as a temporary cache to avoid database lookups for a member's consent for use of non-essential cookies and used for having consent information on the client side to enforce consent on the client side
lidc	24 hours	To facilitate data center selection