|
 By
providing customers with ISAE 3402 audit reports, Penta can help them
control the costs of regulatory compliance, as well as offer assurance that it
has established effective internal controls over the hosting of customer data.
Penta’s preliminary audit, conducted by KPMG, a global professional services
firm, focused objectives in the following areas which will be fully audited by
December 2009:
- Physical access administration
- Physical access security
- Environmental control
- Data backup configuration
- Data backup administration
- Computer operations monitoring
- Service level management
- Logical access configuration
- Logical access administration & monitoring
- Segregation of duties conflicts
- Identification management
- Remote access management
- Network security
- Malware management
- Infrastructure continuity
“In today’s global economy, it is critical for service organizations such as
Penta to adhere to the highest regulatory standards on behalf of its clients”,
said Farhad Khalilnia, CEO of Penta. “We look forward to the successful
validation of our controls and processes while helping our customers minimize
the costs and risks of their own separate review.”
In partnership with Penta, companies can reduce the costs and complexities of
managing their IT infrastructure and applications via the Software as a Service
(SaaS) model, while simultaneously improving application availability,
performance, security and now compliance.
|
