Connecting people with technology since 1996.

Security and Compliance with Opus Interactive

Your critical infrastructure is our priority. Opus Interactive brings more than two decades of standards and processes to proactively scan, identify, maintain, and protect your mission critical workloads.  Security is top of mind from firewall to facility, verified by third-party audits, certifications, and authorizations.

Infrastructure

  • PCI-DSS
  • HIPAA Compliant
  • FedRAMP-Ready (Moderate) Authorized
  • SOC 2 Type 2

Designations

  • WBENC WOSB (#191390)
  • WBENC WBE (#1901917)
  • Indian-owned Economic Enterprise
  • State of Oregon COBID (#11484)
  • SSAE-16 Type I & II Audited

Facilities

  • Grid redundancy in Western Interconnect, Eastern Interconnect, and Texas Interconnect
  • USGBC LEED Gold Certification (STACK Hillsboro, OR)
  • Uptime Institute M&O Certified (STACK Hillsboro, OR)
  • ISO 9001 Certified (STACK Hillsboro, OR)
  • ISO 27001 Certified (Tata Portland, OR)
  • USGBC LEED Silver Certification (Tata Portland, OR)
  • TIA-942 Certified Data Center
  • FISMA High Rated (Iron Mountain Manassas, VA)
  • FISMA High Rated (Databank Dallas, TX)

Team

  • Certified Systems Engineers
  • Certified Systems Administrators
  • Certified Technology Specialists
  • ITIL Certified Professionals
  • Redhat Certified Engineers
  • MSP Alliance Service Provider
  • Certified Enterprise Service Provider

PCI DSS (186 unique security controls)

The PCI DSS applies to all entities that store, process, and/or transmit cardholder data. It covers technical and operational system components included in or connected to cardholder data, with specific requirements surrounding; network, data, vulnerability management, access control, network monitoring and testing, and information security.

HIPAA (50 unique security controls)

HIPAA administrative safeguards are a critical piece to the larger health data security puzzle that all covered entities must put together. The safeguards governing administrative, physical, and technical security are not only a federal requirement, but they all play an important role in ensuring that sensitive health data remains secure and out of the reach of unauthorized individuals.

SOC 2 Type 2 (42 unique security controls)

SSAE 18 SOC 2 addresses a service organization’s controls that relate to operations and compliance, as outlined by the AICPA’s Trust Services criteria in relation to availability, security, processing integrity, confidentiality and privacy.

FedRAMP Ready (Moderate) Authorized (316 unique security controls)

The Federal Risk and Authorization Management Program (FedRAMP) is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services.

Moderate Impact systems accounts for nearly 80% of CSP applications that receive FedRAMP authorization and is most appropriate for CSOs where the loss of confidentiality, integrity, and availability would result in serious adverse effects on an agency’s operations, assets, or individuals. Serious adverse effects could include significant operational damage to agency assets, financial loss, or individual harm that is not loss of life or physical.