Tinto Technology Data Security

Data security is vitally important to modern business.

Easy to say perhaps, rather more difficult to achieve.  Here at Tinto Technology, we employ a range of data protection techniques including

• hardware and software firewalls
• user and group access controls, enforced by security policies
• data encryption systems
• secure hardware disposal

Using combinations of some or all of these techniques, we are able to ensure client’s data remains secure.  While securing your data, we strive not to over engineer the solution.  Delivering data security is based on detailed risk profiling conducted with the client.  Typically, we deliver a risk review document, from which you are able to choose systems and technologies to suit your risk profile and budget.

Data integrity and validity.

Data Integrity is equally important as Data Security.  There is little point having secure systems if the information held is corrupt or otherwise compromised.

Hand in hand with the measures taken to secure your data, we can provide secure, robust and verified data storage, backup and retrieval.  Once again a these system are designed after a thorough review of the disaster recovery policies of our clients.  This often leads to a tiered approach to data backup:

• secure system images held on permanent media at two or more locations.
• automated system baseline and incremental images stored on a local high reliability, remotely managed secure storage (e.g. a managed RAID server).
• frequent automatic off-site backup of critical data, allowing for recovery in a disaster scenario.

Tinto Technology System Security

You have antivirus at home, but what about your business systems?

It is startling to consider, but many commercial organisations rely on residential grade security measures to secure their business systems.

A business system often includes multiple entry and exit points for data and frequently allows flexibility of hot-desking - the ability of an employee to access their data from any PC connected to the network.

These features generate unique challenges that are often overlooked.

The four pillars of system security.

At it’s lowest levels, system security often means working within four constraints:

• Perimeter protection delivered by a hardware firewall
• Robust network based anti-malware and end-point protection
• Procedures to test and deploy system security patches
• Access controls to prevent changes to software security settings

As can be seen above, no single control can be effective.  It is by a combination of hardware and software systems, coupled with procedural control that a secure system is delivered.

Tinto Technology is experienced in delivering all four of these requirements.  At your request, we can conduct a thorough system review to identify any weak points and propose improvements to your systems.

We can follow this up with implementation of upgrades and procedural training.  Also, if necessary we can arrange for a penetration test to be attempted on your system by a third party who can independently audit the system.