Security and Data Protection

OneVizion has implemented a defense-in-depth
information security strategy.

Through the implementation of multiple layers of security, we increase our security posture and reduce the risk of a single security failure leading to a breach or disruption to the business.

Defense in Depth Overview

A robust information security program has been deployed based on the ISO 27001 international standard for information security management. All OneVizion systems undergo rigorous internal and external audits to ensure the ongoing effective operation of our security control environment.

Data Change Visibility

Visual cues to alert users of updates within critical datasets, and built in reporting for change tracking and logging

Application Security

Static Code Analysis, code review, automated security QA, and hands-on UAT

Perimeter Security

Web Application Firewall and loadbalancing to provide stability and security in front of the web application

Threat Detection

Continuous monitoring of network and system activity for malicious and anomolous activity

Data Encryption

Data encrypted in transit and at rest throughout all application layers

Least Privilege by Design

Highly customizable role based security and extensive application logging for fine tuning of data access within the platform

Advanced Authentication

SAML, MFA and optional Passwordless authentication configurable on all instances

AWS Shield

AWS Shield is an always-on and automated DDoS protection service

Host Security

Platform, OS and 3rd party library patching and security scanning

Network Isolation

Logical separation of data into private network space, to minimize attack surface

Infrastructure

AWS hosted infrastructure configured in a Multi-AZ deployment