We have chosen Amazon Web Services (AWS) and Microsoft Azure cloud infrastructure for hosting solutions online.
Amazon Web Services
Amazon Web Services (AWS), the world’s leader in cloud infrastructure, is designed to deliver a flexible, reliable, scalable, and secure cloud computing environment with a high quality global network performance.
AWS provides secured data centers all around the world. You can find up-to-date information on the AWS global infrastructure here. AWS data centers are protected from unauthorized physical access and environmental hazards by a range of security controls.
You can find more information about AWS data centers and physical security here.
Microsoft Azure cloud infrastructure is designed to bring applications closer to users around the world, preserving data residency, and offering comprehensive compliance and resilience options for customers. You can find up-to-date information on the Microsoft Azure global infrastructure here.
Microsoft data centers are designed and operated in a way that strictly controls all physical access to the areas where customer data is stored. The extensive layers of protection include, for example, access request and approval, security checkpoints at each facility and screening of anyone entering the facilities.
You can find more information about Azure data centers and physical security here.
Cloud and data security is a shared responsibility between the cloud infrastructure provider and the client utilizing the cloud solution. In our case, it means that we trust Amazon Web Services and Microsoft Azure to manage the security of the cloud infrastructure and we are responsible for the security in the cloud environment.
In Trimble, we ensure infrastructure security and high availability of our cloud solutions by implementing and applying industry best practices to the infrastructure. This includes hardened Linux hosts with automatic patching, isolated VPC, data encryption, role-based access control and security groups. Whenever possible we utilize managed services like AWS Shield and AWS WAF protection. We have 24x7 SOC teams for monitoring alerts in our solutions.
You can read more about cloud security in AWS Whitepapers & Guides and Azure Security white papers.