Cybersecurity multinational Kaspersky Lab’s new data centre in Zurich, Switzerland, will process malicious and suspicious files shared by users of Kaspersky Lab products in Europe, and forms part of its Global Transparency Initiative, says Kaspersky Lab CEO Eugene Kaspersky.
The relocation of data processing is part of a major infrastructure move designed to increase the resilience of the company’s information technology (IT) infrastructure to risks of data breaches and supply-chain attacks, and further prove the trustworthiness of its products, services and in-house processes, he says.
Threat-related data coming from European users will be processed in two data centres, which provide world-class facilities in compliance with industry standards to ensure the highest levels of security.
The data, which users have actively chosen to share with Kaspersky Lab, includes suspicious or previously unknown malicious files and corresponding metadata that the company’s products send to Kaspersky Security Network for automated malware analysis.
“Protection of customers’ data, together with the safety and integrity of infrastructure, is a top priority and this underpinned the file processing relocation, which is expected to be complete by the end of 2019,” says Kaspersky.
The data centre is also part of its relocation commitment to ensure the integrity and trustworthiness of its products.
However, files comprise only part of the data processed by Kaspersky Lab technologies, albeit the most important one.
The relocation of other types of data processed by the company’s products, consisting of several kinds of anonymised threat and usage statistics, will be done during later phases of the Global Transparency Initiative.
“The centre will provide governments and partners with information on products and their security, including essential and important technical documentation for external evaluation in a secure environment.”
These two major developments will be followed by the relocation of data processing for other regions and, in phase two, the move to Zurich for software assembly. Switzerland is among the world’s top locations in terms of the number of secure Internet servers available, and it has an international reputation as an innovative centre for data processing and high-quality IT infrastructure.
Being in the heart of Europe and, simultaneously, a non-European Union member, it has established its own data privacy regulation that is guaranteed by the State’s constitution and federal laws. There are strict regulations on processing data requests received from authorities, he adds.
“Transparency is becoming the new normal for the IT industry – particularly for the cybersecurity industry. As a technological company, we are focused on ensuring the best IT infrastructure for the security of our products and data, and the relocation of key parts of our infrastructure to Switzerland places them in one of the most secure locations in the world,” says Kaspersky.
“The Global Transparency Initiative is enhancing the resilience and transparency of our products. We believe that steps such as these are just the beginning – for the company and for the security industry as a whole. The need to prove trustworthiness will soon become an industry standard,” he emphasises.
The company has also engaged a multinational professional services firms to conduct an audit of its engineering practices around the creation and distribution of threat detection rule databases, with the aim to independently confirm their compliance with the highest industry security practices, he concludes.