DATA SECURITY

You are here:

Home
Data Security

Overview

ProSearch focuses on Cybersecurity to protect our customers assets and to stay out of the news. It is a critical priority that every project and business decision made has security in mind. Best of breed technologies and security frameworks are used to properly secure the infrastructure from bad actors and malicious activity.

Physical Security

Physical Security is an integral part of the comprehensive information security plan, and the ProSearch head-quarters handle this subject very aggressively. Below are a few of the following physical security controls:

CCTVs throughout all entrances
24x7x365 Onsite Security Personnel
Alarms throughout the premises
Two-factor access control: Biometric & Card readers
Man-Traps
Network Operations Center
UPS Backup Power within the Data Center
Environmental Controls within the Data Center

Logical Security

The ProSearch Environment utilizes the following methods to protect client data:

MONITORING & LOGGING

ProSearch performs monitoring and alerting on security events within the network. Security data is collected via a Monitoring Agent and Windows Event Forwarding. Meanwhile, ProSearch monitors its Environment and exports events to a SIEM for analysis. Alerts and reports are monitored and responded to.

ANTIVIRUS / ANTIMALWARE

ProSearch performs monitoring and alerting of antimalware events for the General Environment. ProSearch utilizes Next-Gen Anti-Virus protection with built-in AI. Alerts and reports are monitored and responded to while being exported to a SIEM for analysis.

THREAT DEFENSE

ProSearch performs real-time threat hunting analysis of network traffic, searching for bad actors performing any malicious activity. Denial of Service attack prevention is employed for the platform. Penetration testing is performed on an annual basis. ProSearch adds extra layers of protection by additional controls including Web Filtering, IDS, DLP, and Vulnerability Scanning.

NETWORK ISOLATION & MULTI-FACTOR AUTHENTICATION

Administrators with privileged accounts connect to a Jump Box in order to remotely administer a Server. Productions Servers only accept connections from these Jump Boxes. 2-Factor Authentication is used alongside privileged accounts to connect to the Jump Boxes.

NETWORK SECURITY GROUPS

Role-Based Access Control is used to restrict system access to authorized users. Roles are created for various job functions and ProSearch uses RBAC to control to separate duties and simplify common operations.

DATA SEGREGATION

ProSearch provides data segregation at the following levels:

Storage isolation: Data storage is isolated amongst multi-tenant environments through logical and physical access. RBAC is used to grant access to data based on the concept of least privileged.
SQL isolation: SQL Databases are isolated through separate databases using privileged SQL accounts.
Network isolation: The Network Environment is logically separated from all other environments within the infrastructure to block communication between subnets.

INCIDENT RESPONSE

ProSearch has established a mature incident response program that focuses on containment and recovery. Logs and VHD images are analyzed to provide forensic information to customers when needed.

Administrative Security

ProSearch is ISO 27001 certified. Developed to provide a model for establishing, implementing, operating, monitoring and maintaining an information security management system (ISMS), it is widely recognized as the highest security standard in the industry for examining the efficacy of an organization’s overall security posture.

Additional administrative controls include:

Security Awareness Training held on an annual basis
ISO 27001 Awareness Training held on an annual basis
Full time Cybersecurity Team
Local and State Regulatory Awareness Training
Annual Internal/External Risk Assessments and Audits
Random Phish Testing of ProSearch employees
Secure Code Training for Developers