Nebula-IMS takes the security and privacy of your data extremely seriously, which is why Nebula-IMS is hosted within a secure Virtual Private Cloud inside Microsoft Azure Web Services (Azure). We take advantage of Microsoft’s job zero approach to data security that is trusted to host some of the world’s largest web applications. Companies such as:- Rio Tinto, Schneider Electric, 3M, LG, HP, McAfee, Honeywell, Webjet, Fox Sport, Dell, Fedex, Comap, Samsung, Reuters & Aston Martin. Microsoft Azure is responsible for managing the security of the underlying cloud environment. The Azure cloud infrastructure has been designed to be one of the most flexible and secure computing environments available, designed to provide optimum availability while providing complete client segregation.
Azure’s world class, highly secure data centres utilise state-of-the art electronic surveillance and multi-factor access control systems. Data centres are staffed 24x7 by trained security guards and IT professionals, and access is authorised strictly on a least privileged basis.
All Azures’ data centres have been independently certified to meet the requirements of an extensive list of global security standards. Azure meets a broad set of international and industry-specific compliance standards, such as General Data Protection Regulation (GDPR), ISO 27001, HIPAA, FedRAMP, SOC 1 and SOC 2, as well as country-specific standards, including Australia IRAP, UK G-Cloud and Singapore MTCS. Rigorous third-party audits, such as those done by the British Standards Institute, verify Azure’s adherence to the strict security controls these standards mandate.
Nebula utilises multiple private networks and firewalls to limit access to sensitive data. All traffic to Nebula-IMS is encrypted over HTTPS using 2048 bit industry standard SSL encryption, and is restricted to web clients capable of TLS 1.1 or higher. (see Nebula-IMS’s full security Profile for further information.)