There are many aspects of security that a CIO must be across including assurance that day to day operations remain functional and secure. There is always a risk that any maintenance, updates or network outages will halt or negatively impact operations. This should always be avoided or minimised wherever possible.
Keeping Your Operations Secure
Maximise operational security with Microsoft Azure which provides administrative auditing across all application and database activity.
Security Patch Testing
With infrastructure split between production, staging and development test – security patches are typically tested in pre-production environments for sociability and outcome before progressing to production.
A Centralised Log Server
Our production infrastructure has a centralised log server – all warning and error logs are permanently retained on disk. Our production data replication writes all data (including security and audit trails) to a centralised write-only audit table in Microsoft Azure.
Response and Management Platform
As part of our production support, we have an incident response and management platform complete with documented incident escalation workflows.
Our current procedure for business continuity heavily leverages standard Microsoft Azure functionality, including redundancy via SQL Azure DBs and leveraging Azure PaaS offerings. We have a high-level process that documents disaster recovery for all core services and systems inside our cloud offering that is heavily reliant on re-provisioning of systems. Most systems can be automatically deployed via our configuration management tool.