Greg McCulloch, MD Interxion UK looks at how to secure your data centre

According to recent research from analyst house IDC, physical security is one of the most important elements of the data centre, second only to resilience, in the eyes of the customer. In the same IDC report, security is also cited as one of the top three benefits of a colocation data centre, as opposed to in-house.

A colocation facility will benefit from higher levels of security than an in-house data centre simply because the storing of data is the sole purpose of the company. Similar levels of security, such as 24x7 monitoring and strict personnel access, are not only more difficult in-house due to the cost and complexities of such solutions, but can also be overlooked as other business issues also demand attention.

However, it is essential for any data centre to fully protect itself and its data, be it in-house or a colocation facility. So what can be done to ensure that data is safe and secure, and to minimise the risk of security breaches? The latest security technology, from CCTV cameras to card-access entrances, means that several different solutions can be implemented in the data centre to ensure minimal risk.

The key to a comprehensive security solution lies in concentric layers of protection, from the property perimeter and entrances, to the interior infrastructure and critical areas within the data centre.

The property perimeter can be protected by numerous methods, such as fencing, boulders and landscaping, in order to prevent and deter both vehicle and pedestrian access to the property. Minimal signage is also recommended on the building exterior, in order to prevent recognition of the data centre. Access-controlled gates at the entrances of the property, coupled with intercom and CCTV camera systems, manned by onsite security personnel, can ensure that entrances are monitored and secure at all times and can limit the traffic flow into the site to authorised vehicles only.

Entrances should also be protected with alarm systems and card-access technology, allowing only staff or authorised personnel to enter the building. With a colocation data centre, customers will also require access to the site, meaning that an increase in security is needed, as they must also show valid identification to onsite security staff. Alarm systems can also be used on critical areas within the data centre, such as generator hatches, cooling towers, and rooftop HVAC equipment, to deter intruders.

However rigorous the external security is, the interior of the data centre must also be protected. Should an unauthorised person gain entry to the building, the following methods should be in place to prevent access to the critical areas within the data centre: card-access space, whereby an authorised customer or member of staff must present a valid security card to gain entry to a specific room; remotely operated internal CCTV cameras; and 24x7 staff patrols. Advances in technology means that additional measures can be taken to prevent unauthorised access to rooms; biometric technology can scan fingerprints and irises, to prevent ID fraud, and man–traps can limit capacity to one-in-one-out and include weight sensors to alert security staff to any additional personnel and/or equipment entering or leaving a secure zone.

Similarly, protection must be given to the network infrastructure within the data centre, as it too can be vulnerable to interference. Secure rooms with locked cabinets can prevent unauthorised access to equipment, and network security can be heightened with the use of anti-tamper cages surrounding cables coming in and out of the data centre. The network can also be protected from failure with the use of diverse routing, ensuring two routes are available for the cabling between the carrier and the customer, reducing the risks that cable interference can have on the customer’s connectivity. Other aspects of data centre safety can include alternative power routes to prevent failure, secure ventilation systems, and controlled generator fuel storage.

In any kind of data centre, IT and data security is paramount, with firewalls, passwords and backup software in place to protect the data. But as a result of the importance placed on IT security, physical security can sometimes be overlooked. In a colocation data centre however, these methods are second nature – the equipment is the heart of the company, and the focus is 100% on monitoring and managing it effectively, in order to ensure the data is consistently protected. As such, it is of no surprise that security is one of the top three reasons that customers are choosing to outsource their data and put it in the safe hands of the experts.