Virtru utilizes Virtual Private Networks (VPCs) to segregate network traffic across our cloud services.
In the backend, when a customer interacts with Virtru, they do so only via our public DNS endpoints (subdomains on the virtru.com domain) which direct traffic to load balancers in our public subnets.
Our public load balancers direct traffic to our internal networks. Only Virtru employees have direct access to internal services, access which is heavily limited and gated with multiple factors of verification. Internal services are designed to function entirely within our internal networks, requesting data from other internal services and from select secure cloud services, accessible via VPC Endpoints.
Any requests leaving our internal networks are intercepted and dropped unless destined for an allowed external service.