Cloud Audit & Certification | International Data Center Authority (IDCA)

Please note, due to the COVID-19 global pandemic and restricted mobility, all IDCAaudits that require on-site visits, must be reserved minimum 90 days in advance.

Open

The logical arrangement of computing resources. Compute is a layer in which processing requirements of the application are defined in an abstract form. The compute cycle cloud would subsequently map to actual virtual or physical cores in the IT Infrastructure layer.

The components involved in the Compute layer of the AE^® include: Request a Compute Audit

Virtualization Infrastructure
Server Virtualization
Storage Virtualization
Network Virtualization
Virtualization Security
Virtualization High-Availability (HA)
Virtualization Operations
Cloud Infrastructure

Cloud Platform
Cloud Orchestration
Cloud Security
Cloud High-Availability (HA)
Cloud Operations
Virtualization & Cloud Efficiency
Virtualization & Cloud Management
Virtualization & Cloud Security

IT Infrastructure (ITI)

IT Infrastructure (ITI) is set of physical components at the information technology level, utilized for the application delivery, housed at the data center node. The ITI specifies the network, the servers, the storage, etc. infrastructure and related services that a given site is outfitted in order to meet the specifications of its supporting layers.

The components involved in the ITI layer of the AE^® include:

Data Center Systems Audit
Data Center Network Audit
Data Center Security Audit

Data Center Network Audit

Request a Network Audit

Logical Architecture
Physical Architecture
Network Saturation, Optimization and Performance
IPv4 and IPv6
Routing
IGP
BGP
OSPF, VRRP, ATM Frame Relay, MPLS

Peering
Layer 1-7 Switching
Access Switching
Distribution Switching
Core Switching
Load Balancing
Packet Shaping

Data Center Security Audit

Request Audit

Security Administration
Security Monitoring
Security Dashboard
External Application Security
Network edge security
Inter-Application & Intra-Application Security
Software Infrastructure Security
Packet Inspection Firewalls (PIF)
Application Firewalls

Filtering
VPN
Antimalware
System Upgrade
IDS
IPS
Encryption
Authentication
Logs

Data Center Systems Audit

Request a Systems Audit

Proxies, Application Severs and DBs
CPU, RAM and Disks
Utilization, Optimization and Performance
Software Infrastructure
Operating Systems (OS)
Clusters, Modular and Blade Servers
DAS, NAS, SAN
Data Compression
Data De-duplication
Data Encryption

Automatic Tiering
Thin Provisioning
Disk Health and Disk Fragmentation
Disk Arrays and RAIDs
Data Integrity
Virus Protection
Inter-System Redundancy
Backup, Mirroring and Replication
Data Recovery
Diversity

Site Facility Infrastructure (SFI)

A set of components, at the facility level, utilized for the application delivery, housed at the data center node.

The SFI specifies the power, cooling, etc. infrastructure and related services that a site is outfitted in order to meet the specs of its supporting layers.

The components involved in the SFI layer of the AE^® include:

Data Center Power Audit
Data Center Cooling Audit
Data Center Structured Cabling Audit

Data Center Power Audit

Request a Power Audit

Electrical Architecture
SLDs
Electrical Distribution
DBs
Electrical Redundancy
Electrical Capacity, Quality & Reliability
Switchgear
Circuit Breakers
Arc Management
Xformers
Static & Rotary UPS Systems
PDUs
Earthing & Grounding
Bonding
ATS & STS

Open Transition & Closed Transition
Load Walk-in & Parallel Operation
TVSS
EPO
System Monitoring
Electrical Wires
Busbars
Battery Configuration
Flooded & VRLA types batteries
Battery Rooms
Standby Generators
DC Power
Load Banks
Lighting
Labeling

Data Center Cooling Audit

Request a Cooling Audit

Cooling Strategy
Cooling Design & Architecture
Cooling Capacities & Possibilities
Sensible Heat Ration (SHR)
Cooling Types
CRACs & CRAHs
In-Rack Cooling systems
In-Row Cooling Systems
Cold Aisle & Hot Aisle Containment
Direct Expansion (DX)
Chilled Water Systems
Water-Cooled Systems
Free Air Cooling
Hybrid Cooling
Evaporative Cooling
Liquid Cooling
ΔT Management

Precision Air Conditioning
Measurements, Logs & Monitoring Systems
Humidification & Dehumidification
Heat Rejection
Air-Cooled & Water-Cooled Chillers
Air Quantity & Pressure Management
Static Management
Air Quality Treatment & Filtering
Temperature Management
Air Contamination Management
Distribution Paths
Piping & Plumbing
Drainage
Water Supply Management & Storage
Fire Zones, Extinguishers & Dampers
Fire & Flood Protection Systems

Data Center Structured Cabling Audit

Request a Structured Cabling Audit

Racks & Cabinets
Cabling Topology & Architecture
MDAs, HDAs, ZDAs, & EDAs
Horizontal Cabling
Backbone Cabling
Cabling Topologies
Single Mode Fiber
Multimode Fiber
UTP, FTP, STP

Cable Grounding
Cabling Distances
Cabling Separation
Cable Trays
Cabling Management
Intelligent Cabling
Color Schemes
Labeling

Site

An independently operated space to house data center infrastructure. The requirement specifications of Application, Platform, Compute, ITI, SFI and Topology dictate the qualifications and provisions of the Data Center Node Site.

The components involved in the Site layer of the AE^® include:

Data Center Site & Building Audit
Data Center Safety Audit
Data Center Site Security Audit
Data Center Telecom Audit
Data Center Utilities Audit

Data Center Site & Building Audit

Request a Site & Building Audit

Site Location
Lands
Natural Environment Hazards
Proximity to Risk-Prone Areas
Air Quality
Seismic Loading & Performance
Green Field or Existing Building
Neighboring Lands, Building & Activities
Data Center Building
Longevity & Flexibility
Dedicated or Shared Building
Ground Water Saturation, Water Table, etc.
100-Year Flood Plain Potential
Multi-Tenant Occupancy
Design
Wind Rating & Resistance
Noise Levels
Parking
Building Types
Building Structure & Construction
Building Materials & Components
Site & Building History
Transportation & Roads Access
Local Codes
Building Codes
Building Restrictions

Loading Capacities
Hanging Capacities
Glass & Windows
Required Spaces
Raised Floor & Suspended Ceilings
Clear Heights
Site & Building Reliability
Industry Relevance
Environmental Considerations
Accessibility
Loading Dock
Roofing
Doors & Gates
Entrances
Administrative Offices
Operations Center
Restrooms & Break Rooms
Offices & Support Areas
UPS & Battery Rooms
Fuel Storage Areas
Service Access & Corridors
Pathways
Exit Routes & Doors
Staging Areas
Shipping & Receiving Areas (Holding areas)

Data Center Safety Audit

Request a Safety Audit

Safety Systems & Methods
Safety Administration
Emergency Plan
Personnel Health Awareness & Training
Radiation Levels (Radio, Microwave, EMF, etc.)
Fire Rated Components
Fire Prevention
Fire Detection Methods
Aspiring Smoke Detection (VESDA, HSSD, etc.)
Fire Suppression Systems
Halocarbon & Inert Fire Suppression
Agents Quantities & Qualities

Water-Based Suppression
Flood Protection
Leak Detection
Signage
Exits & Escape Routes
Alarm
Strobe Light
Telephone/Intercom
Gas Release Abort Mechanism
First Aid Kits
Cleansing Facilities
AHJ Compliance

Data Center Site Security Audit

Request a Security Audit

Building Security
Site Security
Security Apparatus
Security Offices
Bullet Resistance
Monitoring
Perimeter Fencing
RFID
Surveillance
CCTV
DVR, NVR, etc.
Motion Sensing

Patrol Guards
Vehicle Management
Tracking & Tracing of Vehicles, People, Equipment
Access Points
Mantraps
Security Escort
Security Kiosks
Physical Barriers
Fences, Barricades, Gates, etc.
Cages
Authentication Systems (badge reader, biometric, etc.)

Data Center Telecom Audit

Request a Telecom Audit

Carriers & Providers
Symmetric, Asymmetric, TDM Transmission
Digital Signal, T/E Carrier System
Synchronous Transport (STS, STM, OC)
Dark Fiber
Peering Exchange
Delivery Paths
NLOS/LOS Wireless Communication
Provider SLAs

Redundancy
Diversity
Capacity
Entrance Rooms
Demarcation points
Terminations
Speed, Availability & Latency
Labeling

Data Center Utilities Audit

Request a Utilities Audit

Power Generation Sources
Power Transmission to Site
Power Feed Classifications
Power Supply Reliability
Electrical Substations
Utility Transformers
Electrical Entries & Redundancies
Gas Supply Sources
Gas Supply Capacities & Reliability
Onsite Power Generation

Fuel Storage
Cogeneration
Renewable Energy Possibilities
Water Supply Sources & Capacities
Gray Water
Water Storage
Water Treatment
Municipal or Private Sewer

Topology

The connectedness, continuity and boundaries signifying a set of correlations, connections, dependencies, and relations between various data center node sites for the delivery of the organization’s application. Topology specifies the physical location, interconnectivity and interrelation of data center sites (Physical Data Center Sites Map).

Specification of the Application, Platform and Compute as well as the requirements of the to-be-hosted SFI and ITI lead to selection and specification of the underlying Topology.

The components involved in the Topology layer of the AE^® include:

Data Center Cloud (DCC) Specification
Topology Architecture
BCP & Topology Alignment
Topology Utility Provisioning
Data Center Cloud (DCC) Implementation
Number of Data Center Nodes (DCNs) within Topology
DCN Specifications within Topology
Physical Data Center Cloud (DCC) Configuration
Topology Telecom
Inter-Connectivity between DCNs

Topology Security
Topology Resilience
Topology Capacity
Topology Availability
Topology AHJ Adherence
Topology Industry Relevance
Economics & Presence of Topology
Topology Personnel Skill Fitness & HR
Topology Maintenance & Management

“Comprehensive, Effective, Detailed and Groundbreaking”

IDCA cloud audits can be conducted at three (3) distinct phases of the cloud design, development and maintenance lifecycle:

Phase 1

Design Phase

If the ecosystem, application, IT, cloud or data center has been designed, IDCA can audit the drawings, schematics and design files to highlight all compliance flaws, efficiency gaps and vulnerabilities and provide you a comprehensive report per the findings. Upon completion of the design audit the organization will be graded and rated per IDCA G Levels and applicable certification will be issued.

Request Design Audit!

Stage 1
Audit Kickoff Workshop

Stage 2
Design Files Batch Submission

Stage 3
Design Assessment & Review

Stage 4
Compliance Analysis

Stage 5
Report Writing

Stage 6
Report Submission & Certification

Stage 7
Report & Certification Workshop

Phase 2

Build Phase

IDCA can audit already developed and built ecosystems, applications, IT, cloud or data center platforms before they become fully commissioned into live production. The audit will ensure lack of inconsistency and discrepancy of the completed project vs the original intents of the design and industry’s best practices per the IDCA standards. Upon completion of the audit the organization will be graded and rated per IDCA G Levels and applicable certification will be issued.

Request Build Audit!

Stage 1
Audit Kickoff Workshop

Stage 2
Design and Build Documentation Batch Submission

Stage 3
On-site Audit & Assessment

Stage 4
Compliance Analysis

Stage 5
Report Writing

Stage 6
Report Submission & Certification

Stage 7
Report & Certification Workshop

Phase 3

Operations Phase

IDCA audits can be conducted while live operations are underway to assess the true capabilities of the application IT, cloud, or data center and the entire application ecosystem. This exercise will ensure that all probably operational flaws, downtimes, inefficiencies and hurdles to be identified and highlighted. Upon completion of the audit the organization will be graded and rated per IDCA G Levels and applicable certification will be issued.

Request Operations Audit!

Stage 1
Audit Kickoff Workshop

Stage 2
Design and Build Documentation Batch Submission

Stage 3
On-site Audit & Assessment

Stage 4
Compliance Analysis

Stage 5
Report Writing

Stage 6
Report Submission & Certification

Stage 7
Report & Certification Workshop

Addressing the complexities of the Cloud

When thinking of the prevailing next-generation IDCA application audit and certification, answering some of the below questions can shed light into the immediate benefit for the application stakeholder:

How can you slash your cloud Opex by meaningful margins?

Can your cloud actually deliver the end-user needs?

Is your hybrid, public or private cloud ideal for your specific application needs?

How efficient is your cloud?

How secure is your cloud?

What are the true availability and reliability facts about your cloud infrastructure?

Does your cloud architecture provide you the right capacity and control for the coming years?

How can you improve disaster prevention, power and cooling robustness, structural reliability, safety and security effectiveness?

How can you improve your cloud documentation such as SOPs, policies and manuals?

Is your operation aligned with your infrastructure?

Are your cloud components technologically correct?

Are you future-proof?

Are you certified?

What is your ESR score?

Who's the auditor?Cloud Certified Auditor (CLCA)^®

At the midst of the data center, big data, and cloud management boom, official IDCA Cloud Certified Auditors (CLCAs)^® play a critical role in the coming age. For the information technology community, ensuring that the facilities and IT are in alignment to the business continuity, application and business needs and maintaining efficiency, security, safety, capacity, resilience, innovation and operability are key. A CLCA^® has traveled a long and extensive journey, fulfilling requirements after requirement to reach the stage of being able to assess and certify mission critical data centers. All CLCA™s have become a Cloud Authority (CLA)^®, which means they are industry veterans, with many years of in-depth expertise, successfully completed all IDCA education and certification ladder; have contributed significantly to the cloud industry and community; and on top of all the above, have completed the rigid CLCA^® program. The CLCA^® program is a highly certified auditors ideal for handling most complex clolud industry’s compliance needs, only available to certified CLAs.

ReportsComprehensive, detailed, informative, logical, educating, life saving and essential!

Due to its universally effective approach, IDCA audit reports are highly regarded for their comprehensiveness, details, and effectiveness for the organization under assessment. The audit reports typically become part of the organization’s educational process in order to educate and inform the cloud operations, maintenance, design and implementation staff to understand the mistakes, flaws and shortfalls and ensure such will not repeat themselves in the future. In addition, the report becomes a reference point for upcoming projects and a benchmark of compliance matrix for minimizing risks and non-compliances in the future. The cloud undergoing IDCA audit can expect to receive grade certification and classification per every high-level component of its infrastructure, i.e. SFI G1, Site G2, and G3. The report will also include the results of measurements and scans in accordance to IDCA.

Why IDCA?Application-centric, cutting edge, IT and Facility encompassing, Infrastructure and Operation enabling, educating, assuring, cutting-edge.

IDCA is the first organization in the world that addresses the cloud in its true essence and entirety. Having a comprehensive approach that validates both the logical as well as the physical cloud components, layers, efficacies, and disciplines is the cornerstone that all cloud providers and stakeholders of private cloud, public cloud, multi-cloud, or hybrid cloud are in-line with the true disciplines of the industry. IDCA has pioneered the notion of application-centric infrastructures and the Application Ecosystem (AE)^®. Therefore, it is an absolute advantage and invaluable resolution to follow IDCA’s cloud audit, assessment and certification guidelines.

Cloud AuditChoose the right Audit for your Cloud

IDCA provides audit services for your cloud infrastructure based on the seven efficaies of the Infinity Paradigm. Please select the right audit for your Cloud Infrastructure below:

CLOUDSecurity Audit and Certification

Cloud security breaches are one of the main cybersecurity root-causes of a critical breach to organizations processes and hurdle to business sustainability. IDCA’s cloud security audit and certification process ensures that there are no security loopholes or vulnerabilities.

CLOUDResilience Audit and Certification

Cloud resilience is the Cloud’s ability to recover from disaster as efficiently as possible. IDCA’s information technology resilience audit and certification process will ensure the optimization of data reliability and imbedded resilience.

CLOUDAvailability Audit and Certification

Availability of data denotes to the capability in maintaining the data while always serving organization needs without downtime or failure. IDCA’s Cloud availability audit and certification process will ensure the holistic and maximization of the information technology and data’s availability.

CLOUDEfficiency Audit and Certification

The efficiency of the Cloud is highly vital as it denotes to the resources that are spent on the data. IDCA’s efficiency audit and certification process ensures that the data runs as efficiently in order to ensure maximum output with minimum TCO possible.

CLOUDOperation Audit and Certification

Cloud operation denotes to the management and oversee of the cloud. IDCA’s operation audit and certification ensure the cloud has the correct oversight and management in order to ensure maximum delivery.

CLOUDCapacity Audit and Certification

Cloud capacity is the technology’s ability to respond to issues as well as performing as optimally as possible. IDCA’s efficiency audit and certification process ensures that the data runs as smoothly as possible whilst maintaining safe capacity.

CLOUDInnovation Audit and Certification

Cloud innovation relates to the creativity and innovation behind the technology. IDCA’s Cloud innovation audit and certification provides room for promoting innovative technology and methodologies that make the cloud operationally reliable and efficient.

DIGITAL INFRASTUCTURE AUDIT >

Cloud Audit and Certification

Cloud Layer Components

The are six layers of the Cloud architecture, infrastructure and operations that will be part of the IDCA’s Cloud Audit Process.

Compute

Virtualization Infrastructure

Server Virtualization

Storage Virtualization

Network Virtualization

Virtualization Security

Virtualization High-Availability (HA)

Virtualization Operations

Cloud Infrastructure

Cloud Platform

Cloud Orchestration

Cloud Security

Cloud High-Availability (HA)

Cloud Operations

Virtualization & Cloud Efficiency

Virtualization & Cloud Management

Virtualization & Cloud Security

IT Infrastructure (ITI)

Data Center Network Audit

Logical Architecture

Physical Architecture

Network Saturation, Optimization and Performance

IPv4 and IPv6

Routing

IGP

BGP

OSPF, VRRP, ATM Frame Relay, MPLS

Peering

Layer 1-7 Switching

Access Switching

Distribution Switching

Core Switching

Load Balancing

Packet Shaping

Data Center Security Audit

Security Administration

Security Monitoring

Security Dashboard

External Application Security

Network edge security

Inter-Application & Intra-Application Security

Software Infrastructure Security

Packet Inspection Firewalls (PIF)

Application Firewalls

Filtering

VPN

Antimalware

System Upgrade

IDS

IPS

Encryption

Authentication

Logs

Data Center Systems Audit

Proxies, Application Severs and DBs

CPU, RAM and Disks

Utilization, Optimization and Performance

Software Infrastructure

Operating Systems (OS)

Clusters, Modular and Blade Servers

DAS, NAS, SAN

Data Compression

Data De-duplication

Data Encryption

Automatic Tiering

Thin Provisioning

Disk Health and Disk Fragmentation

Disk Arrays and RAIDs

Data Integrity

Virus Protection

Inter-System Redundancy

Backup, Mirroring and Replication

Data Recovery

Diversity

Site Facility Infrastructure (SFI)

Data Center Power Audit