System and Network Security
1. PRODUCTION SYSTEM ACCESS
At Encoding.com, only authorized members of the Operations Group have access to production systems. This means that no other employee, contractor, or anyone outside this restricted group can physically enter the place where production systems reside.
2. AUTHENTICATION PROCEDURE
All production systems at Encoding.com are accessed through bastion hosts and remote access to the bastion hosts requires multi-factor token-based VPN access.
3. PASSWORD POLICIES
Encoding.com maintains strict password policy settings related to password strength, length, and expiration time.
4. ACCESS LOGGING
At Encoding.com production system access audit logs (success/failure) is logged both locally, and in a central log repository. Access to the logs are restricted to appropriate personnel in the Operations Group.
5. PRODUCTION SECURITY PATCHING
Encoding,.com follows a strict process in which standard security patches are applied within 30 days of release and critical patches are applied as appropriate to the risk.
6. SOFTWARE BUILD PROCESS
At Encoding.com, all systems are built based on a standard build configuration defined by the Operations team and vetted by Security & Risk Management. Changes to the standard build configuration follow the standard change management procedure.
7. VULNERABILITY SCANS AND PENETRATION TESTING
At Encoding.com vulnerability scans are performed and reviewed weekly and third parties are engaged periodically to perform both penetration and application vulnerability testing.
8. FIREWALLS
Encoding,.com leverages industry-standard enterprise firewalls for filtering traffic between the production environment and other internal corporate networks.
9. MONITORING
At Encoding.com, the production application and underlying infrastructure components are monitored 24x7x365 by dedicated NMS (Network Management Systems). Critical alerts generated by these systems are sent to 24x7x365 on-call Operations staff members and escalated as appropriate to Operations management.
Updated about 1 year ago