THE SIS MANAGED
SOLUTION CENTER
SOC
aicpa.org/soc
Form
erly SAS 70 Reports AIC
PA S
ervic e Organization Contro
l Rep orts S E R V I C E O R G A N I Z AT I O N S
3. Serving as the SIS corporate headquarters, the new facility also houses the Managed Solution Center (MSC Data Center) which is designed to support our clients’ information technology requirements. The MSC is one of the first facilities in the stated to receive the new SSAE 16 designation.
GENERALBUILDING INfORMATION
19,700
sq. ft
1. Totaling over 19,700 square feet, this two-story facility in downtown Lexington, KY incorporates energy efficient utilities and state-of-the-art security.2. This is a single tenant facility, owned and occupied by SIS.
1. The 30-person classroom was designed with multiple purposes in mind. • The space can host internal and customer training sessions as well as client briefings. • The cloud training room can function as a customer work area in the event of a disaster or other situation that has left a customer data center nonfunctional. • The convertible classroom contains an isolated,
secure network to support testing, business recovery, and normal customer provided operational support during a disaster.
• The training room can support 20 – 30 mobile workstations. Customers can provide their own workstations or can obtain them from SIS.
1. Three Individual cubicles including phone & Internet connectivity for visitor or customer temporary use.
VISITOR WORk AREA
CLOUD TRAINING ROOM
24
x
7
Security
1. Single factor authentication for entry into the building and general operating facilities (ten controlled access points).
2. All guests and visitors are required to sign in and present picture identification (a valid form of US Government picture identification) which is scanned and stored with visitor log for audit purposes. 3. Two-factor authentication is required to gain access to the managed
services center as well as the actual data center. 1st is by badge and the 2nd is biometric (fingerprint).
4. Only authorized engineer and operational personnel have access to the data center. All other SIS and employees are escorted.
5. Fourteen security cameras monitor the physical aspects of the building & data center 24 x 7. Video cameras are motion and door access activated.
6. Inside the Managed Solution Center is a 24 inch raised floor for the data center, Network Operations Center (NOC), Build/Integration Room, and the UPS room.
BUILDING SECURITY
1. SIS provides managed services and helpdesk support 24x7 via Internet or telephone in partnership with DSS. The on-site NOC is currently staffed 1st & 2nd shift on-site, but accessible 24x7.
2. In additional to our operations team, SIS maintains five dedicated engineers to support our security, networking virtualization, storage and IBM Power systems.
1. The MSC features a secure server, storage, and network integration room for customer & data center deployments.
2. The center provides secure tape storage for local retention requirments.
NOC
(NETWORk OPERATIONS CENTER)
TECHNOLOGY INTEGRATION
(NETWORk OPERATIONS CENTER)
Virtualization
ization
Integration
ration
CENTER
1. The building has 2 separate power feeds from 2 separate power grids supplying electricity to the building. • The A Side feed is the primary feed and is pulled from the KU designated “primary grid” in Lexington which also serves LFUCG City Center, Police department, 911 services & Emergency Management. • The B Side power feed is the secondary feed and pulls from the KU designated “secondary grid” which also serves the Lexington Fire dispatch and backup center for Lexington Police & 911.
2. Dual Eaton Powerware 9395 UPS systems have a capacity of up to 400KVA running in parallel.
3. The power configuration includes automatic transfer switching from street to generator in 7 seconds.
• In the event of a failure the UPS supplies operational power to all raised-floor facilities until the generator switches over.
• Architecture is N+1 in design from UPS to each rack. The A & B Side feeds provide no more than 50% of the power that is required at all times. In case of a failure, each feed can then handle the load of the other. • Existing Kohler diesel generator plant is designed
to supply power to the entire facility to support continued operations with a 72 hour runtime at load. Generator is test run weekly and load tested quarterly. • UPS & Data Center are equipped with multi-stage
fire, water & hydrogen detection systems. Fire Protection is HFC 125 to protect the plenum above the ceiling, UPS Rooms, and under the raised floor.
1. The data center was built with a 2 ft raised floor, the ceiling height is 10 ft and there is a 3 ft plenum above the ceiling to return hot air to the air condition units.
2. There are currently 22 racks (47 U each) and we can accommodate 60 racks in our facility.
3. There is 400 KVA of redundant power supplied from two separate power grids.
4. Cooling is provided by up to six Stultz High Efficiency CRAC Units that run alternately every 7 days. Alternating operating mode is important to ensure they are operational in case of an emergency.
5. The Data Center uses a cold/hot isle configuration to provide a high level of cooling efficiency. The center features an engineered heat containment/removal system to eliminate high density hot spots.
6. There is dual power distribution in each rack (A+B) and all equipment has dual power feeds.
7. All system cabling is color-coded and supplied in suspended overhead cable tray system.
8. The SIS facility is located on the downtown fiber ring in Lexington and currently has multiple telecommunications providers installed for redundancy and high availability. 9. The MSC is capable of providing to 40 Gbps of bandwidth
using diverse physical Internet connectivity through Louisville KY, Columbus, OH & Atlanta, GA
10. Recently completed SSAE 16 designation.
1. The Managed Solution Center has redundant, fully-distributed meshed 10GB core routing technology delivered to the rows with up to 40GB of fiber connectivity to an individual host.
2. The Managed Solution Center utilizes a separate redundant FC SAN fabric to isolate storage traffic for performance purposes that is performance addressable by customer requirement. 3. The Managed Solution Center provides remote secure access into our network • VPN connections for IPSEC and SSL • Layer 2 MPLS and point to point connectivity • Private VLAN technology • Access restricted by VM within each pvLAN 4. Redundant Virtual Platforms for Availability for VMware & IBM Power • Hardware Security via IBM Power Hypervisor • No LPAR can access other LPAR’s data or traffic • OS Security Management available as optional services SIS, LLC • 165 Barr Street, Lexington, KY 40507-1321 (o) 859.977.4747 • (f) 859.977.4750 • (e) [email protected] • www.ThinkSIS.com 2011 SIS, LLC. All right reserved.
