I am working on a data center project for a client. Evaluating data centers is kind of funny, especially the certifications. SAS70, ISO, LEEDS and PCI Compliance.
I don't think people even understand that SAS70 means that a CPA has audited the procedures and processes to ensure that there are indeed written processes in place and that at least some of them are followed. Now some of you will argue you with me about this, but the reality is, my evaluation is pretty accurate. It's a goofy deal to spend between $15k and $35K for the cert. Why?
Well, most of the regulations - like HIPAA, SOX, and PCI Compliance - are based around Data Security, not transport security. Let me give you an example: HIPAA doesn't distinguish between a paper file that is left on a desk and gets misplaced or read by the wrong eyes and the electronic file on a server in a data center. PCI Compliance has to do with stored data - much like how merchants have to protect against employees stealing carbon copies and properly disposing of credit card imprints. We just concern ourselves more with the electronic theft. Why? Probably because it is more intangible.
That being said, why is SAS70 so important? I think it is about appearnace more than anything. If there is a data breach, and your servers were at a non-certified facility, the executive that made that decision would look like an idiot. It's about appearance. And to some extent Marketing.
It's kind of the same with LEEDS. How energy efficient is a data center? It's sole purpose is to provide space, ping and power. Any data center wants to be energy efficient, because it drives the bottom line. Now it is also a marketing bit.
Physical security is important, of course. A locked cabinet at the minimum, but that won't stop someone from throwing coffee in the cabinet and burning out your server. There's always a loophole.
Think about how important Internet Access and Data Backup are to businesses. The lessons of Katrina and other disatsers have prominently demonstrated that water damage will destroy all your files and you will be out of business.
Internet Access is a utility - and the cost to some businesses to be out of Internet Access is tens of thousands of dollars. Some businesses have even experienced that but still refuse to buy redundancy.
I guess that redundancy, security, encryption, and backup are seen as unnecessary - until it happens to you - and more like insurance - good to have if you want to pay for it, but if it isn't a legal requirement (like email archiving is for financial planning firms), then most companies forego it.
So why would the data centers need to worry about the certs then? Marketing for sure; but also because it is a check box on many RFP's. But the story they have to start telling is about process and security instead.
Even uptime as a check box is funny. Most consumers are used to TDM uptime of five nines (99.999%) and with line powered POTS service for voice. Even today, most consumers have not come to grips with the fact that VoIP and cell service are NOT five nines. The tower is not a central office. At four nines that means about 1 hour of downtime per year. At three nines that's almost 9 hours per year of downtime. Advertised 100% uptime is great, but we have seen many outages in the last year from even the big names like Rackspace, Amazon and Google. (Not to mention Facebook and twitter).
As we move to Cloud services, outages will increase. Why? More vendors in it means more competition, which means commodity pricing will drive down margin and providers will cut costs in staff, equipment and redundancy. As one CEO put it, Resiliency and redundancy are nice, but very expensive. Even security is an expensive deal. I don't know what kind of security Epsilon had, but all that data was hacked -- just like TJ Maxx and many others. So what it was a SAS70 data center? If you don't secure the data properly (and back it up), the server might as well have been in the hallway.
This was just food for thought as I diligently research for my project.
agents apps att broadband broadsoft cable cableco cellular channel partners clec cloud communications cloud computing commissions data center FCC fcc fiber financials hosted pbx internet itexpo marketing master agency mergers politics sales security sellecom selling strategy TCA telecom is broken UC unified messaging VAR voip vz vzw wireless wireline
- AI (4)
- Add category (2)
- BPI (10)
- BPaaS (10)
- CALEA (2)
- CLEC (250)
- FCC (200)
- FTC (10)
- IOT (17)
- IPTV (14)
- ISP (60)
- Internet (248)
- Marketing (283)
- PBX (180)
- PR (27)
- SDN (46)
- TCA (72)
- TEM (16)
- TMC (26)
- VAD (9)
- VAR (149)
- VDI (10)
- Web 2.0 (48)
- Yahoo (9)
- agents (446)
- amazon (23)
- apps (122)
- backup (41)
- bandwidth (70)
- bellsouth agent (22)
- books (15)
- broadband (235)
- broadsoft (124)
- cableco (200)
- cellular (243)
- certification (17)
- channel (432)
- cloud computing (286)
- colocation (43)
- commissions (103)
- communications (66)
- compliance (22)
- comptia (5)
- conferences (66)
- conferencing (68)
- crm (8)
- cybersecurity (2)
- data center (128)
- disaster recovery (35)
- duopoly (71)
- e-book (4)
- economy (129)
- email (27)
- ethernet (23)
- expo (117)
- fiber (124)
- glossary (2)
- hosted uc (266)
- im/chat (28)
- jobs (32)
- linkedin (38)
- managed services (54)
- master agency (68)
- mergers (395)
- metaswitch (12)
- mobile (57)
- mpls (55)
- msp (50)
- off topic (48)
- organizations (82)
- outage (19)
- politics (136)
- privacy (41)
- saas (92)
- sales and selling (271)
- satellite (17)
- sdn (28)
- security (94)
- sip trunking (83)
- smb (65)
- social network (76)
- spectrum (68)
- startup (27)
- technology (134)
- telco (253)
- tele-presence (22)
- telecommunications (229)
- training (42)
- twitter (44)
- unified communications (258)
- vc (9)
- video (86)
- voip (436)
- webRTC (16)
- wi-fi (29)
- wimax (33)
- wireless (167)
- wireline (179)
- xmpp (5)
- xo (54)
- September 2017
- August 2017
- July 2017
- June 2017
- May 2017
- April 2017
- March 2017
- February 2017
- January 2017
- December 2016
- November 2016
- October 2016
- September 2016
- August 2016
- July 2016
- June 2016
- May 2016
- April 2016
- March 2016
- February 2016
- January 2016
- December 2015
- November 2015
- October 2015
- September 2015
- August 2015
- July 2015
- June 2015
- May 2015
- April 2015
- March 2015
- February 2015
- January 2015
- December 2014
- November 2014
- October 2014
- September 2014
- August 2014
- July 2014
- June 2014
- May 2014
- April 2014
- March 2014
- February 2014
- January 2014
- December 2013
- November 2013
- October 2013
- September 2013
- August 2013
- July 2013
- June 2013
- May 2013
- April 2013
- March 2013
- February 2013
- January 2013
- December 2012
- November 2012
- October 2012
- September 2012
- August 2012
- July 2012
- June 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- November 2011
- October 2011
- September 2011
- August 2011
- July 2011
- June 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- December 2010
- November 2010
- October 2010
- September 2010
- August 2010
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- February 2010
- January 2010
- December 2009
- November 2009
- October 2009
- September 2009
- August 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
Featured Videos