Maintaining robust cloud security is very important. MDI Cloud (MDI stands for managed document intelligence), leveraging advanced security protocols, offers comprehensive solutions to safeguard data at multiple levels. Below is an in-depth exploration of the various security measures implemented in MDI Cloud to ensure data integrity, confidentiality, and availability.
1. Data Encryption
Data Encryption in Transit
To protect data during transmission, MDI Cloud employs industry-standard encryption protocols. This ensures that any data exchanged between clients and the cloud servers is encrypted, making it inaccessible to unauthorised parties during transit.
Data Encryption at Rest
MDI Cloud uses end-to-end encryption with the SHA256 encryption standard to protect all data stored on the platform. This ensures that even if MDI Cloud is compromised, the data remains unreadable without the proper decryption keys.
2. Sophisticated Password Policy Enforcement
Minimum Password Requirements
MDI Cloud enforces a stringent password policy requiring clients to set passwords between 6 to 12 characters. This policy enhances security by ensuring that user passwords are complex enough to resist common attacks.
Role-Based Access Controls
Role-based access controls are implemented to limit access to sensitive information based on the user’s role within the organisation. This ensures that users only have access to the data necessary for their role, reducing the risk of unauthorised access.
Location-Based Access Controls
MDI Cloud can configure access controls based on IP restrictions upon the client’s request. This feature allows clients to limit access to their data based on specific geographic locations, adding an extra layer of security.
3. Scalable and Redundant Online Infrastructure
AWS Integration
MDI Cloud’s infrastructure is built on AWS, providing a scalable and redundant environment. AWS’s robust infrastructure ensures high availability and reliability of services. Data on MDI Cloud is mirrored across multiple data centres by AWS with live mirrored redundancy, ensuring that your data is always available and protected against data loss.
Constant Monitoring
MDI Cloud employs constant monitoring using Zabbix application monitoring, AWS alerts, and bespoke product alerts. This comprehensive monitoring system ensures real-time detection and response to any anomalies or security threats.
4. On-going Threat Assessments and Penetration Testing
Regular Assessments
MDI Cloud conducts regular threat assessments and penetration testing. Any vulnerabilities identified are reviewed at the end of the month, with retests scheduled within weeks for critical issues. This proactive approach ensures continuous improvement in security posture. MDI Cloud undergoes penetration testing at least once annually by independent cybersecurity firms to identify and address potential vulnerabilities.
Rapid Deployment of Security Patches
Security patches and upgrades are deployed rapidly, with internal scans conducted monthly. Critical issues are addressed within 3-7 days, medium issues within 28 days, and low issues within the next scheduled upgrade, not exceeding 90 days.
5. Protection at Multiple Levels
Application Level
MDI Cloud ensures application-level protection by hiding images behind user logins, preventing search engine indexing, and adhering to client-specific access control restrictions.
Network Level
Network-level protection is reinforced with web application firewalls and AWS security groups, providing robust defences against external threats.
Facilities Level
AWS data centres, compliant with rigorous security standards, provide a secure environment for MDI Cloud’s infrastructure. These facilities ensure physical security, redundancy, and disaster recovery capabilities. All data for MDI Cloud is stored on secure, UK-based servers, ensuring compliance with UK data protection regulations. Regional servers can be configured on request.
6. Backup and Recovery
Snapshot Recovery
MDI Cloud performs snapshot recoveries every four hours, with 168 iterations of backups kept, and maintains real-time database replication. This ensures that data can be quickly restored in the event of a failure.
Automatic User Lockout
To prevent brute force attacks, users are automatically locked out after three incorrect password attempts, further securing the system against unauthorised access attempts. MDI Cloud also implements two-factor authentication (2FA) and access controls to restrict which users can see and access data within your organisation.
Conclusion
MDI Cloud‘s multi-faceted approach to security ensures comprehensive protection of client data. By leveraging advanced encryption, stringent access controls, regular monitoring, and rapid response to threats, MDI Cloud provides a secure and reliable environment for its clients. For more details on AWS data centre compliance, visit AWS Compliance Data Centre Controls.
Ensuring data security is a continuous process, and MDI Cloud is committed to staying ahead of emerging threats to provide peace of mind to its clients. Contact us to find out how we can help your business stay secure.
