OREANDA-NEWS. CROC has become the first systems integrator in Russia to develop Security-as-a-Service (SecaaS) based on certified information security tools.

In order to offer a new service, CROC implemented a centralized security node as a basis for future deployment of personal data system security in line with a customer's model of potential threats. Security-as-a-Service will enable Russian companies to outsource a range of security system deployment and operational issues and to avoid penalties and interruptions thanks to minimum time requirements and financial expenses, as necessary information security services can be deployed in CROC's centralized security node within 1-2 days.

"Subject to regulatory requirements, many of our customers may only use certified information security tools in order to protect their systems; especially businesses that work with personal data. As a result, such customers are unable to opt for using cloud resources, even when impressed by their benefits. However, certified security tools can now be used for both system colocation in CROC's cloud-based centralized security node and Security-as-a-Service in one of our data centers. Indeed, this service has already attracted first customers from the insurance and healthcare sectors," said Mikhail Bashlykov, Head of Information Security, CROC.

From the technical perspective, Security-as-a-Service means a secured virtual environment with information security services which are based on tools certified by the Federal Service for Technical and Export Control (FSTEC) and Federal Security Service of Russia (FSB) and include firewalls, cryptographic protection of communication channels (IPSec VPN), and intrusion prevention (IPS).

CROC is the number one IT infrastructure creation company in Russia (IDC reports, 2002-2013). CROC is the fifth largest IT company in Russia (RIA Rating, 2013), the fifth largest consulting business (Expert Rating Agency, 2013), and one of Russia's top 200 private companies (Forbes ranking, 2013).