Infrastructure Capabilities
Openwave has an excellent state-of-the-art ISO 27001:2013 certified Offshore Delivery Center (ODC) at Chennai, India. Some details of the Physical and IT infrastructure are given below :
This is a 10,000 sq.ft facility spanning 3 floors with around 200 seats for project teams. It also includes conference rooms, meeting rooms, training rooms, dedicated blocks for each technology related projects, etc.,
We maintain our IT infrastructure at high performance levels in terms of Availability and Reliability (99.9% uptime). Some of the features are as follows:
- Minimal downtime
- Web Servers
- Load Balanced
- Private Network
- Managed Firewall
- Window Server 2003/Linux Server
Openwave has standardized extremely reliable components to maximize system- and application-level uptime. With high mean time between failure (MTBF) and internal redundancy, our infrastructure as a whole can sustain multiple losses of components before the application itself is impacted.
Openwave has a well-documented security policy, formulated as per the ISO / BS7799 best practices. A detailed Security Procedures document describes procedures and activities to be carried out as per this security policy. These policies and procedure documents ensure confidentiality, integrity and availability of information assets.
- Network Security
- Desktop & Server Security
- Physical Security
- Openwave has taken several initiatives to protect its network from internal and external hacking.
- Sonicwall NSA 2400 Firewall has been deployed on all Openwave Internet gateways to control access to the offshore network via Internet
- Separation of Client network by firewall / Creation of air gapped network
- Intrusion Detection Systems can be based on any specific requirement from our clients.
- A regular analysis of firewall and IDS logs is also done to detect suspicious activities.
- Symantec Firewall at the desktop level
- Symantec Enterprise security manager
- Openwave network can be segregated into Trusted zone , DMZ and distrusted zones
- Intrusion detection systems have been installed at gateways. The logs are continuously monitored to detect and handle unauthorized intrusions
- Changes to configurations and access list on these systems go through a formal change management process eliminating misguided or inadvertent changes. The change management process is in place for all infrastructure related changes – internet downloads, software installations, requirement for additional privileges or admin rights, Network changes, changes to access control lists on routers/ firewalls, domain servers among others.
- All O/S /Firewalls/routers/Web facing servers are hardened prior to use in accordance with standard procedures and are tested periodically for compliance to these checklists.
- Appropriate content filtering products have been deployed for the mail and the internet gateway
- Admin rights on desktops/servers and Internet access are strictly controlled and given after the approval through proper workflow
- Default services that are not required are blocked / disabled wherever not deemed necessary
The Symantec Antivirus End-Point projection 11.0 software controls scanning operations. The Virus Scan Enterprise software supports both servers and workstations. Auto protection is enabled in all the desktop and servers.
All drives are scanned on a daily basis for both server and desktop. Scanning includes local and network drives, as well as e-mail messages and attachments. Any detected, virus infected files are cleaned / quarantined as per the policy.
Domain Based Access Control List (ACL) is implemented for the entire folder structure. Based on ACL, users are granted read-only or modify access.
Service Packs and Hot fixes are the patches from Microsoft for desktop and server. Service packs are used to patch a wide range of vulnerabilities and bugs. Hot fixes are meant to patch more specific problems.
- Network Attached Storage (NAS): Openwave has an Online Backup with NAS, in case the server or HDD is down (for whatsoever reason), so as to restore the DATA and Server to uptime within a couple of hours.
- LTO4 Backup : Openwave has an LTO4 Tape Drive with Cartridges for External Backup. We have daily, weekly & monthly backups with Incremental, Differential and Full Backup. Our backup extends to our remote locations as well.
The following are in place for physical security:
- Physical Security is the first level deterrent in our layered security approach. Our ODC has a dedicated Admin Head to oversee these controls.
- Security starts with assigning ODC a separate work module for its development activities.
- Each center/premise is guarded by 24*7 security guards recruited from reputed security agencies.
- Background checks are carried out for security guards
- All associates are provided with a valid photo identity card, which is required to be displayed at all times while the associate is in the premises.
- Access to each business premise/location, especially critical business information processing facilities is controlled by a physical access control system. Access Logs for the critical area are monitored regularly.
- Access to ODC/Projects work module is restricted only to associates of those particular ODC/Projects.
- A well-defined mechanism is in place for granting, reviewing and revoking of access in the ODC / Projects / Premises.
- Sound visitor management policies are in place to control entry into the ODC. Logs are maintained for visitors.
- Visitors are restricted from visiting the work areas
- Media/property movement is restricted, controlled, recorded and analyzed
- Equipment Reuse and Disposal Policy is in Place
- Controls are in place for equipment disposal and reuse to ensure information is not compromised through these means
- Maintenance/repairs by third party is allowed only in the presence of the asset custodian
- Non Disclosure Agreements have been signed with all our third party vendors
- Openwave follows a 'Clear Screen and Clear desk Policy' to reduce risk of unauthorized access, damage to and loss of information both during and outside working hours
- Adequate power backup arrangements are in place for any contingency and unwarranted situation
- Premises and Equipments are suitably protected against environmental hazards
- Openwave has a well developed fire prevention and detection program (fire alarms) and drills are carried out periodically to test the same
- Cameras, Video or other recording equipment are not allowed inside the work premises