A New Security Milestone for Dell APEX: SOC 2
- February 7, 2023
Security is top of mind lately throughout organizations of all sizes across all industries, and few topics can single-handedly generate so much interest (and anxiety). In a recent survey of 1,000 IT decision makers from Dell’s Global Data Protection Index, 67% of respondents indicated they are concerned existing data protection measures may not be sufficient, and 69% indicated they are concerned about a disruptive event in the next year.¹
In addition to the ever-increasing importance of IT security, we’re also seeing a significant shift toward the adoption of as-a-service consumption models. IDC predicts that by 2026, 65% of tech buyers will prioritize as-a-service consumption models for infrastructure purchases to help restrain IT spending growth and fill ITOps talent gaps.²
From the moment Dell launched its Storage as-a-Service offer in May 2021, security of the solution has been a top priority. A rich set of proven security features that can meet corporate governance and compliance requirements, such as Data at Rest Encryption (D@RE) via self-encrypting drives, role-based access controls, audit logging and secure authentication, are just some of the capabilities inherent in the underlying infrastructure. Dell APEX Data Storage Services has been purpose-built to ensure the integrity and availability of your most valuable asset: your data.
Furthermore, the very nature of the Dell APEX Data Storage Services offer is that it is based on enterprise-class technology from Dell, the #1 leader in enterprise storage.³ Regardless of whether these systems are deployed on-premises in a customer’s data center or a Dell-managed interconnected colocation facility, the offer provides Dell APEX customers with complete control over their data and corresponding workloads. The ability to know exactly where your data resides and to easily access it without confusing billing arrangements or unpredictable egress fees can help satisfy many stringent audit and regulatory requirements.
In addition to the security features inherent in the underlying infrastructure and inherent to the APEX Data Storage Service offering, I’m pleased to announce that the Dell-managed APEX Data Storage Services offer has now received a System and Organization Controls (SOC) 2 Type 1 attestation report. This report is one of the most common security attestations expected from technology vendors. It is applicable globally and is not industry specific, subject to an annual refresh and only available to customers and prospective customers under nondisclosure agreement (NDA).
Curious what SOC is all about? It includes a standard suite of assessment programs for service organizations to demonstrate security to customers of a given service. Customers use the associated attestation reports to assess any security risks associated with that service. Here are the three types of SOC reports:
Stay tuned as we continue to build on this milestone, with SOC 2 Type 2 attestation in the queue as part of the next annual update for Dell APEX Data Storage Services. SOC 2 Type 2 provides additional security-related proof points and validates the processes currently in place.
Interested in accessing the SOC 2 Type 1 report? Contact your account representative or a sales representative.
Interested in more information on Dell APEX Data Storage Services? Learn more here.
1 Based on research by Vanson Bourne commissioned by Dell Technologies, “Global Data Protection Index 2022,” carried out August – October, 2022. Results were derived from a total of 1,000 IT decision makers worldwide from both private and public organizations with 250+ employees.
2 IDC FutureScape: “Worldwide Future of Digital Infrastructure 2023 Predictions,” October 2022. Doc # US48376222.
3 IDC WW Quarterly Enterprise Storage Systems Tracker, 2022 Q3 historical release, December 6, 2022. Ranking by vendor revenue.