• Overview
• Features
• Benefits

< Back to Features

The UK's most secure (ISO 27001) data centre facility

ActiveOffice has partnered with The Bunker Secure Hosting, the UK leader in ultra secure data centre hosting. Our primary data centre in Kent is an ex Ministry of Defence (MoD) command and control centre, built 30 metres below ground by the UK government to protect people and technology from nuclear attacks.

This ISO 27001 accredited exceptional facility, addresses the security and availability requirements of even the most demanding of customer, supporting with absolute assurance all of your most demanding business critical IT solutions.

Physical Security

Our ultra secure data centre facilities addresses every potential threat that could compromise in any way the availability and security of the services that we offer. From the perspective of physical security, our hosting facility features include:

• 3.5 metre high perimeter fence
• Rigorous security vetting procedures for all hosting personnel
• Multiple security entry systems.
• Three metre thick reinforced concrete walls.
• Solid-steel entry blast doors to the hosting suites
• Military electromagnetic pulse protection (EMPP)
• Tempest RFI intrusion protection
• 24-hour sentry and MoD-trained guard dogs security
• Extensive CCTV facilities both inside and outside the facility
• Monitored Fire Detection Systems
• Monitored climatic control systems
• Secure Power Supply & back-up generator power
• Diverse & separate routed Internet connectivity from separate supplier

Application & Network Security

Our approach to application and network security mirrors our commitment to physical security. ActiveOffice have deployed a multi layered security approach including highly available security solutions from the industry's leading security specialists.

In addition to providing defensive layers throughout the network, our defence in depth strategy uses multiple technologies to prevent security threats. Removing any dependence of a single layer security technology to defend against an attack, means we can eliminate single points of failure within our overall security architecture and provide great security threat mitigation for our customers.

Our approach includes:

• Multi vendor access control mechanisms
• Multi vendor firewalls layers
• EAL 4 Certified Firewalls
• Multi vendor Anti Virus scanning
• Multi layer SPAM detection

ISO 27001 Quality Standards

All of our services have been designed and constructed to the internationally recognised ISO27001 standard.
Our ISO 27001 infrastructure provision encompasses both the physical and logical aspects of our information security and the standard is highly applicable to providers of SaaS services such as ActiveOffice. The ISO27001 underpins our attention to quality in respect to appropriate protection of the information assets that we hold on behalf of our customers.

Our business culture encapsulates flexibility and security and as an organisation we are responsive, innovative and always practical. We are also ever mindful of the enormous trust and responsibility that has been vested in us by our customers and by delivering a BSI ISO 27001 endorsement of our Data Centre Facilities we hope to reinforce this sense of endemic culture.

Our  security ethos is not just about making sure a firewall is installed in the best place to prevent hacker attacks or that an Intrusion Detection System (IDS) has been configured correctly, it is also about making sure that we use formal Change Control Processes with back-out plans. It’s also about having a well thought out Business Continuity Plan so that should a disaster occur, no matter how remote the possibility, we have a pre-prepared and tested plan in place to help us recover with the minimum disruption to any of our customers.

In conjunction with The Bunker we now also benefit from an ISO 27001 compliant Information Security Management System (ISMS). The first activity when designing the ISMS was a formal Risk Assessment of all aspects of our business – Physical, Logical and People. The results from this allowed us to develop new policies and processes where necessary and put controls in place where we were vulnerable. Once this was done, we introduced a Continuous Service Improvement Plan and Audit Programme to ensure we don’t become complacent, we are constantly striving to improve our security to ensure the risk of The Bunker losing the Confidentiality, Integrity or Availability of information, whether it be our own or our customers’, is - and remains - at an acceptably low level.

In February 2008, The British Standards Institute (BSI) carried out a rigorous assessment of our chosen Information Security Management System and confirmed that it fully meets the requirements of the ISO 22001 standard.

Statement of applicability: The management of information security relating to the provision of Ultra* Secure, Ultra Available managed hosting and data centre solutions.