Our Partners close more business.
Use these powerful resources to win more business, faster, with less effort.
Call 877-411-2220 x121 for personal support with any opportunity.
RESET SEARCH
Hosting Quote Estimator
GET a FREE Sandbox or Trial Environment NOW
How To Use This Tool:
To find answers to common RFP and RFI questions, select a tag, or, search for terms like "security", "performance", etc. You will find common questions and answers grouped together in one record. Follow the tag links to refine your search. Supporting downloads and documentation are available, below.
Please login to obtain download access to additional supporting documentation. Registered users can also contribute to the database. You can request access by Contacting Us.
Supporting Documents
Please note that assets with generic thumbnail require login for access. If you require access please Contact Us.
© Omegabit LLC, 2023
Enter a Search Phrase or Select a Tag
Content with tag facilities .
Facilities - Alternate Site
Q:
Are there alternate processing and/or storage sites that can sustain operational continuity in case of an outage of the primary site?
Do the alternate processing and/or storage sites provide information security measures equivalent to the primary site?
Are alternate processing and/or storage sites separate from their primary site so they are not susceptible to the same hazards?
Have you identified potential accessibility problems to the alternate processing and/or storage site in the event of an area-wide disruption or disaster and outlined explicit mitigation actions?
Do you ensure equipment and supplies required to resume operations are available at the alternate site or contracts are in place to support delivery to the site in time?
A:
Full SOC-2 compliance is available from all primary and alternate colocation facilities (additional "generic" certifications for PCI and HIPAA compliance are also available but, not technically relevant to custom application hosting due to software control and design; that certification must be obtained specific to Client's implementation). A formal report for our primary facility is included in the submission bundle. See also for secondary locations: http://www.coresite.com/data-centers/data-center-design/compliance and http://www.equinix.com/services/data-centers-colocation/standards-compliance/#/ (@ San Jose/SV1)
Yes
Yes
Yes
Yes
Information System Components - control
Q:
Do you track, control, authorize, and monitor information system components entering and exiting the facilities and maintain records for those items?
A:
Physical items received into inventory are documented using conventional means including shipping log history and notations by Receiving. As it relates to facilities, equipment added to or removed from the racks is documented in the Omegabit Operations Wiki in a manner that is timestamped, auditable, and tracked for historical purposes.
Physical and Facilities Security and Access
Q:
Do you have documented physical security policy and procedures?
Do you have a process that restricts and maintains access to information facilities (data centers, computer rooms, computer/network labs, and telecommunication closets), and areas with Federal Reserve information to authorized personnel only?
Are access lists and authorization credentials reviewed at least annually?
Do you authenticate visitors before allowing access to facilities that are not designated as public access?
Do you have controlled entry points that use physical access devices and/or guards to facilities?
Do you change facility keys and combinations upon the lost, compromise, or individual transfer or termination?
Do you monitor physical access to facilities with real-time physical intrusion alarms and surveillance equipment?
Are visitors to the facilities logged, escorted and their activities monitored?
Do the facilities provide emergency power shutoff with switches or devices in locations where concentrations of information systems exists?
Do the facilities incorporate an uninterruptible and alternate power supply to protect against a short-term and long-term loss of primary power source?
Do the facilities have fire detection and fire suppression devices that activate automatically and notify emergency responders in the event of a fire?
Do the facilities employ automated mechanisms to monitor and maintain temperature and humidity level?
Do the facilities protect the information systems from damage resulting from water leakage by providing master shutoff valves that are accessible, working properly and known to key personnel?
Do you have formal procedures to ensure access privileges are reviewed on a periodic basis?
Describe the logical and physical security of your hosting facility.
A:
All facilities feature:
- 24x7 on-location staffing and site access control, CCTV surveillance
- Secure ID+Biometric access control to sensitive areas, mantraps
- Locked Cage, Cabinet infrastructure exclusive to Omegabit host operations
- Omegabit owns/manages all private cloud infrastructure from the public edge/redundant public interconnects
- All data is encrypted in transit between secure endpoints
- All Client traffic is exclusive to Client operations
- Customer datastores are exclusive to each Client and completely isolated
ref: Soc 2 Type II Facilities Compliance Report for Omegabit colocation' facilities managed by Digital West and alternate providers (available on request).
None; all data and storage is maintained and operated exclusively by Omegabit and specially authorized and trained personnel with special awareness for Liferay operations. No proposed services, or facilities in this proposal are to be outsourced to an additional third party and will be satisfied exclusively by Liferay and Omegabit and its affiliated facilities partners, where named.
Yes.
Current DL or Passport, or Government Issued ID.
Includes Biometric+Key pad, Mantraps, and human verification at all points of entry at all times; exclusive access to private locked cabinets.
Yes; all relevant access is immediately rekeyed and electronically controlled.
Yes.
Yes.
Yes.
(all locations) Commercial rack infrastructure mainline UPS (APC), Private Emergency Generator, 100% operating capacity; emergency pre scheduled and guaranteed fuel delivery for extended outages; regular testing and maintenance, redundant power paths to host infrastructure; locations immune to rolling outages.
Dual-interlock, dry-pipe pre-action fire suppression system.
Yes.
Yes.
Not ad-hoc, but needs basis.