Virtustream, a cloud software and infrastructure as a service (IaaS) provider, has added software-based ‘data at rest’ encryption to its cloud services portfolio through a partnership with Vormetric, a vendor of enterprise encryption and key management.
With this extra protection, Virtustream’s xStream cloud management software and Virtustream cloud IaaS services provide highly secure and compliant solutions — the company said — that enable enterprises, governments and service providers to safely run mission-critical applications in private, public and hybrid clouds.
The company will now offer Vormetric’s database and file encryption solution to customers needing an additional layer of security to satisfy internal sensitive data policies and compliance mandates regarding business data.
For enterprises required to comply with regulatory guidelines and compliance frameworks such as NIST 800-53, DIACAP, FedRAMP, FISMA, ICD503, G-Cloud, CSA Recommendations, ISO27001, HIPAA/HITECH, PCI, SSAE16/SAS70 and other industry standards, this new service provides the ability to protect sensitive data in the cloud.
"File-level encryption is the most effective and flexible approach to cloud data security for enterprises concerned with regulatory compliance, protecting their IP and meeting contractual obligations around customer data," said Bruce Johnson, vice president for worldwide sales and service operations at Vormetric. "By offering Vormetric Encryption through a pay-as-you-go model, Virtustream is providing comprehensive, built-in and transparent security for any database, that can follow customer data — whether it is in the cloud or a datacentre."
Virtustream claims it is the first cloud provider to offer the Vormetric solution in a SaaS model with elastic, consumption-based pricing — services are priced per virtual CPU of each database server, as opposed to traditional perpetual licensing models.
"It can be challenging to get large enterprises to trust the cloud, so this partnership with Vormetric provides a significant security measure required to overcome that concern," said Pete Nicoletti, director of security and compliance at Virtustream. "With Vormetric’s solution, we now have a database encryption security option suitable for customers who are required to comply with executive mandates or compliance frameworks but have not yet deployed encryption at their database or application layer. Adding this capability will make moving mission-critical data to the cloud a more feasible option for any enterprise looking for immediate risk reduction and cost savings."