Safety Management System Data Center Used by SMS Pro
Physical Data Security
NWDS hosts all SMS Pro data in a secure data center which is SAS 70 Type II certified. The data center includes:
- 24/7/365 staffing;
- Monitored access through multi-level security system;
- Leading-edge fire protection and climate control systems;
- N+1 fully redundant power and HVAC;
- Four local SONET fibers provide redundant carrier/neutral fiber access;
- Redundant, Tier 1 internet bandwidth with fully redundant, Carrier-class Cisco core routing and switching
Only authorized NWDS personnel are allowed to access NWDS servers.
Data Backups and Backup Storage Security
All data on SMS Pro servers are backed up on site at the data center's Web servers and moved to an off-site server on a daily basis during non-peak hours. Weekly reviews are conducted to ensure that airline SMS software backups are performing correctly. Thorough disaster recovery tests conducted on a quarterly basis.
Network Security and Network Monitoring
SMS Pro servers sit behind their own enterprise-grade firewall. The SMS Pro data center personnel and NWDS continuously monitor logs and alerts generated by firewall. NWDS also continuously monitors the server log(s) to ensure optimal performance and to capture any unauthorized or suspicious activity. Automated alerts are enabled from SNMP management tools that monitor all critical infrastructure components.
Airline SMS Software Application Security
By default, airline safety data on NWDS servers is not encrypted. By request, airline SMS sites can utilize Secure Socket Layer (SSL) to transmit and encrypt data. There is a performance hit with this configuration.
Each employee at your airline will have a unique username and encrypted password. Each airline has a unique portal ID (and often multiple division IDs) so that airlines are unable to access the data of other airlines. Your airline SMS Admin can configure permissions for each user and airline SMS role. NWDS can view detailed audit logs of all of airline SMS user activity.
NWDS staff continuously monitors and logs airline SMS portal activity for unauthorized or suspicious activity. NWDS security procedures and protocols are not available to review by airline clients because this review opens potential security holes.
Privacy of Data
All airline safety data remains confidential and NWDS will not disclose any data to third parties without the prior written consent of your airline management. The SMS Pro "Agreement for Services" includes this clause.
SMS Pro has a minimum 99.5% uptime guarantee not including scheduled maintenance to servers hosting the aviation safety management software. NWDS notifies airlines of scheduled maintenance in advance and perform scheduled maintenance in non-peak hours. Scheduled maintenance averages 4-6 hours a quarter, which may include upgrades to the safety management system software.