About Us I Security & Disaster Recovery
Company at a Glance
Infrastructure
Technology
Security & Disaster Recovery
Process
People
Partners
Honors & Certification
Security & Disaster Recovery
CPI's network is designed to provide redundant internal protections and to allow secure communications with clients and vendors.

The backbone is Internet Gateway Architecture that connects resources while maintaining an acceptable level of security and functionality. An additional level of protection is in place as a safeguard against any internal security compromise. Internal firewalls protect all key servers and VLAN settings separate segments on the same network within our organization.

Essential security components of CPI's network include:
Policy and Procedures
DMZ
Firewalls
Switch
Host Operating System Hardening
Security Monitoring
Vulnerability Assessment
Availability
      Ability to maintain a certain rate of uptime on all established services
Timely replacement of any failed component

Additional features
Additional controls exist at each layer that provides security functionality, such as:
Encryption
Remote Access Restrictions
System Access Control and Auditing
Application Access Control and Auditing

Internet access assurance
Four high-speed Internet services connect CPI to the world. All four lines are provided by different independent vendors to assure reliability through redundancy. Bandwidth data transfer rates are 8M, 4M, 4M and 100M/share.

CPI has a dedicated 2M line from the China production center to the U.S. headquarters.
 

Disaster Recovery
CPI also has an Uninterruptible Power Supply (UPS) and backup generator. In case of a serious network problem, CPI's Incident Response Team will follow a disaster recovery plan to restore production within the shortest possible time. Several off-site facilities may be used to recover production if the main facility is unavailable.

These procedures determine how the Incident Response Team handles three categories of problems:

  • If the full production area and data center server room are unusable, production can be recovered on 6 to 12 hours at four pre-selected computer training classrooms off-site.
  • If 60 percent of on-site equipment is unavailable, a backup server room will be used. Pre-configured backup servers, routers and switches will be set up and data will be restored from backup storage files that are updated daily or more often. A backup virtual private network (VPN) connection will be reconfigured.
  • If more than 40 percent of primary equipment can be used, pre-configured backup servers, routers and switches will be set-up and backup data will be restored. The backup VPN connection will be reconfigured and a backup Internet connection will be used.
Copyright 2006 CPI