How MacStadium Provides World-Class Security

Whether you’re a single developer or a global organization with a large dev team, MacStadium offers the same level of security for all of our customers. Over the past two years, our Chief Information Security Officer, Darrell Stinson, and his team have brought best-in-class security practices to MacStadium and all of our data centers, pushing for massive change and advocating for the security of our customers' computing environments.

In this accelerated two-year approach, MacStadium made the rapid and enterprise-wide changes needed to provide a world-class security posture validated through internationally accepted frameworks:

• ISO 27001: Solid Information Information Security Management System (ISMS).
• ISO 27017: Certifies information security aspects of cloud computing and implementation of cloud-specific information security controls.
• ISO 27018: Protection of personal data in the cloud for customers sensitive to controls necessary for securing PII.
• SOC 1 and 2 Type 2: Evaluates an organization's ability to effectively implement relevant Service Organization Controls.
• GDPR-compliant practices.

“Processes like this can be painstaking, but at MacStadium, we were able to make the changes because of the excellence and willingness of our teams,” Stinson said. “Our network security engineers, operations engineers, and MacStadium employees across the organization all worked together, asking what they could do to improve their processes to make sure we could not only obtain these certifications within our aggressive time frame but improve our overall security habits.”

By design, MacStadium’s security posture is built with a security-first mentality. Security is only one tier - regardless of the size of your Mac cloud, you receive the same level of security. This is just another way MacStadium offers our customers peace of mind.

With state-of-the-art encryption, backup power generators, continuous cooling, multi-factor authentication, 24/7 remote hands and eyes, continuous monitoring, an elaborate integrity testing program, and established partnerships for incident response, Stinson’s team at MacStadium has been able to put forward one of the industry’s most robust security programs at each of our data centers, all with the goal of keeping our customers and their data safe.

“In my professional opinion, MacStadium has a world-class security posture that rivals any other major cloud services provider. We openly and honestly communicate our policies, practices, and certifications through our public website, so any customer or potential customer can see how seriously we take security,” Stinson said. “We have never had anyone turn away from MacStadium because of a lack of security. We’ve had zero breaches, and our customers trust us with the crown jewels of their business - their intellectual property - every day. We’re proud to be their partner in keeping that safe.”

If you’d like to know more about our security practices at MacStadium, download certifications, or see any additional documentation, including our privacy policy - check out our Legal and Security pages on our website. If you have any questions about our security practices or certifications contact us at support@macstadium.com.