Architecture of BeyondTrust Privileged Remote Access (Cloud)
The BeyondTrust Cloud infrastructure is currently spread across six Tier 3 or higher data centers. BeyondTrust customers can designate a regional data center to host their BeyondTrust solution so that performance is not hindered by geographic distance between users of the solution. All data centers leverage advanced electrical and cooling systems and N+1 redundancy with uninterruptable power solutions and generator backup. The data centers have advanced networking capabilities such as 10Gb+ connectivity and a 40Gb+ core network.
Data centers hosting the BeyondTrust Cloud have achieved ISO/IEC 27001 certification of its information security management systems. Additionally all data centers have completed the following examinations:
- SOC II Type 1
- SSAE 16
- SOC 1 Type II
- SOC 2 Type II
They are also Privacy Shield certified to meet European Data Privacy compliance regulations.
All BeyondTrust Cloud servers are housed in data centers that employ a high standard of physical protection. The measures include multiple levels of physical security, such as:
- Man traps / air lock
- Badged access
- Securely locked cages
- Biometric access
- Securely isolated storage area
- 24/7 security personnel on duty
The network architecture is built to protect all entry points assigned to customers. Highly-available edge gateways and segmented network components are dedicated and configured in BeyondTrust. The infrastructure is continuously monitored, and vulnerability testing is conducted regularly by internal security staff.
All customer data is confined to a dedicated instance of BeyondTrust allocated to your organization. The data physically and logically resides in a siloed BeyondTrust instance and is not shared between customers. This unique approach to the segregation of customers keeps your data safe.