Information Security Overview

QA Assistant software has been reliably available as a web-based application with greater than 99.999% server up-time since 2006. Security is prioritized with industry best practices employed to ensure our clients receive the best protection against fraudulent use of our products and services.

Data Center Statistics

New Production Servers Statistics

  • 100% Up Time since 2012
  • 2x Six-Core Xeon Processors
  • Up to 32 GB RAM
  • RAID 6 SSD Disk Arrays
  • Hot-swap Drives, Power Supply Units, and Cooling Fans

Real Estate Summary

  • Located at CenturyLink Boston, MA
  • 30,400 sq.ft. total building interior
  • 12 in. raised floor (flood protection)
  • Energy Star Certified

Electrical Summary

  • NSTAR provides power feeds
  • Generator configuration = N + 1
  • Minimum two fuel replenishing companies

Mechanical Summary

  • Cooling system configuration = N+1
  • Cyxtera manages humidity and temperature to strict ASHRAE standard
  • Seismically braced racks

Fire Detection and Suppression

  • VESDA provides early warning detection
  • FM200

User Authentication

Each user signs into our software using a unique username and password. Passwords are stored as a hash using strong algorithms. Forgotten passwords may be reset by following a multistep verification process using the original email address for the person’s account. While using our software, a person’s credentials are verified using various techniques including server-side authentication and additional password prompts.

Programming in Security

QA Assistant software applications are developed in-house with security a priority. Every request to view or edit information on our servers and through our software is first evaluated by combining server-side information with access credentials to ensure the person making the request has the authority to do so.

Data Encryption

A secure connection using HTTP/2 over HTTPS to QA Assistant Studio is forced at a server level using SSL 3 sha256 bit encryption with 2048 Bit RSA exchange.

Encrypted information and 3rd party documents are stored using a minimum of AES-256 encryption and unique private keys per account.

24/7 Technical Support

QA Assistant servers are monitored 24 hours a day, 7 days a week with automated systems to identify potential hardware issues and mitigate any DDoS attacks. Experienced engineers and technicians are on site 24/7 to provide hardware maintenance and support. QA Assistant engineers also have 24/7 access to live, highlyskilled technical and server support specialists as well as direct access to our servers via SSH / Secure Shell / SFTP, using the command line directly on the server for fast, secure server management.

Data Center Security

QA Assistant Studio servers are maintained at CenturyLink / Cyxtera’s Boston Data Centers which combines a hybrid-ready information security fabric with best-in-class data centers. Cyxtera provides some of the most powerful logical and physical security systems available and utilizes a centralized global security operations center with 24/7 secured access monitoring including motion and breach sensors, provides multiple challenge points throughout, and grants permissions-based access to all data center areas. Each data center supports hundreds of external and internal video surveillance cameras. Server cages and cabinets are outfitted with locking mechanisms. Implementing ISO27001 compliance standards within the data center provides a model for establishing, operating, monitoring, and improving an Information Security Management System (ISMS). The ISO 27001 certification demonstrates CenturyLink complies with and enforces information security processes.

IP Network

The CenturyLink IP network provides lowlatency, secure, reliable and high availability connectivity between geographically spread out locations. Cross connects to their Global Tier 1 backbone and a broad range of carriers, including global and regional providers, bypasses internet congestions and ensure bestin-class network reliability and performance.

Additional network features include:

  • A redundant network of multiple fiber trunks from multiple sources
  • Redundant power on the premises
  • Multiple backup generators

Production Servers

QA Assistant servers are specially selected for our software and built with the most reliable server components, including 2x Six-core Xeon processors, up to 32 GB RAM, RAID 6 disk arrays, and SSDs for the most I/O-intensive operations. The hot-swap disks, power supply units, and cooling fans allow repairs or replacement of these components while the machine stays online. This design brings the hardware reliability to the highest level.

Spare Servers

We keep a spare/standby server in each server rack. If a production server fails, it will be immediately replaced by a spare server, and the latest backup will be restored. This way we can offer you a 99.9% uptime guarantee.

Automated Daily Backups

In addition to the RAID-6 SSD disk arrays which ensure business continuity and availability, QA Assistant’s servers and customer information are automatically backed up twice daily so they may be restored in the event of a failure.

QA Assistant Support Team

Our experienced QA Assistant Support Team is available to provide expert assistance to our customers 24 hours, Monday through Friday via email. Our team will respond to your question within 1 business day, and often much sooner.

Additional Information

For more information about QA Assistant LLC, our products and services, please visit
https://www.QAAssisatnt.com
https://www.centurylink.com/business.html

Updated: 10 July 2019