Merlin's cloud-native architecture offers flexibility, redundancy, high availability and enhanced security options.
Increased Security and Flexibility
Sherlock Integrated Search was purpose-built for the AWS Cloud. For increased levels of security, we chose a cloud-native architecture that included designing our sites to run in separate virtual private clouds (VPCs). We also chose against using the standard multi-tenant model in favor of building our sites using a unique single-tenant architecture. There are a host of advantages to single-tenant sites including greater security, no commingling of data and the ability to spin sites up and down at will. It also allows us to redefine hosting pricing and to be the first to offer Cloud Utility Pricing.
We offer a host of security options designed to ensure control over your data access from upload to archive. In addition to cloud monitoring and active firewall management, we use these best practices to protect data from improper access:
We structured operations practices to meet or exceed applicable industry standards for privacy and data security both in the U.S. and around the world. To support that objective, all Sherlock deployments are hosted in Amazon Web Services (AWS), one of the leading cloud infrastructure and services providers. Like many of the world’s leading cloud based software providers, we use AWS to provide infrastructure, networking and advanced security services. We then integrate security best practices into software design and data practices.
From the beginning, our goal was to create a cloud-based software platform that drives business value while meeting or exceeding our client’s data protection requirements. Merlin works every day to earn the trust of our clients to host their data in the cloud more securely than if it was behind their own firewalls or private data centers.
Those new to the public cloud may fear they are compromising security for speed, scalability and cost savings. In fact the opposite is the case. Rather than build our own data centers, as we have done in the past, we chose Amazon Web Services (AWS) as our infrastructure partner. AWS was the first to offer secure public cloud services and it is the leader worldwide on cloud security.
Thus, from the beginning, we purpose-built Merlin’s software platforms to run on the Amazon cloud and to take advantage of the many security features and services it offers.
1. Physical Security
AWS maintains highly-secure facilities which are locked-down and monitored at all times. We have decades of experience managing our own environments across private data centers and find AWS to be more secure for a number of reasons, including the fact that they are staffed with many of the best information security professionals in the world. In addition, their locations are not publicly disclosed and customers are not allowed to enter the facilities. Only well-screened employees are allowed to enter and then only on a strict need to access basis.
AWS has been providing infrastructure for government agencies and other large entities around the world for more than a decade. As a result, it needs to carry an extensive list of security certifications from multiple ISO badges, to FedRAMP (U.S. government required), to PCI, HIPAA, SOC and dozens of others. AWS carries over 40 U.S and international audit certifications.
AWS simplifies the use of industry leading encryption technology for securing data in transit and at rest. Encryption ensures that data is only accessible by authorized identities and/or services regardless of the location of that data.
AWS provides a highly available infrastructure spanning the entire globe. Each AWS region contains several availability zones made up of multiple distinct and highly secure data centers. Deployments on AWS can leverage these data center resources to maximize service availability in ways that couldn’t otherwise be reasonably achieved.
5. Security Services
We take advantage of multiple services offered by AWS to protect client data to supplement our security practices. If you need extra security for your site, we can offer a wide range of special options to further strengthen the protections inherent in a single-tenant environment. Ultimately, you can take control of your complete site.
Our goal in developing the Sherlock platform was to create a cloud-based software product that drives business value while meeting and typically exceeding our clients’ data protection and privacy requirements. The Merlin team works every day to earn the trust of our clients to host their data in the cloud more securely than if it was behind their own firewalls.