Outsourcing, especially in the field of IT, is tricky because IT departments often handle their enterprises’ most sensitive information. To feel more secure in your IT outsourcing decisions, decision makers should begin handling outsourcing decisions similarly to how they handle employee turnover. When an IT professional resigns his or her job, even on the best of terms, the individual is asked to depart immediately, not after the standard a two week notification period. This is for security purposes, as various passwords and security apparatus known to the departing employee will require updating to cut off outside access into corporate networks.
This high level of attention to detail when it comes to IT security in employee turnover is a standard which enterprises should apply to their IT outsourcing decisions as well. Before you make a decision on which third-party vendor to outsource your work to, consider the question where a vendors servers are located.
When we consider major cloud infrastructure providers like Microsoft, one should expect the software giant to have servers throughout the world that cover about 19 different regions. Likewise, top-tier IT organizations will often have servers located throughout the globe in locations such as their nearshore or offshore development facilities. That said, it is important to know in which countries IT providers’ servers are located. To avoid exposing sensitive corporate data, you’ll want to assure your third-party vendor doesn’t have servers located in countries with legislation that gives governments’ access to servers.
Take China as an example. In February, the Chinese government proposed counterterrorism legislation that demands the government be given access to any server located within its borders. One Newsweek article—that referred to the proposed legislation as “the patriot act on steroids”—said China’s new law would require companies with servers located in their country to turn over all communications. Furthermore, the legislation asks companies to build backdoors into their encryption structures through which government officials can gain access.
Essentially, this could put your organization at risk if your IT outsource provider has servers located in China and your data passes through them. Understanding the risks involved with owning servers in countries where foreign governments put heavy restrictions on data and communications, AAJ has insured that our offsite servers in our nearshore and offshore development centers are located in friendly nations, such as Argentina, where your data will be just as secure as it would be here in the United States.
To learn more about outsourcing solutions and how they can provide you high-quality and secure services, click here.