Products
Security is perhaps the most important attribute of a Catalyst system. We came out of a large law firm so we were used to handling highly-confidential materials for large clients. In 2000, when we started hosting highly-confidential information for one of the largest insurance companies in the world, its chief security officer demanded that our security systems look like theirs. We agreed and made that happen. When other large insurance and corporate clients came onboard, they sent teams to inspect our facilities and hired ethical hackers to try and gain improper access. Their attempts failed.
Multiple Layers of Security
We provide a number of security layers to protect client data. We keep our servers in a locked area (cage) in a highly-secure data center under 24-hour guard with constant video monitoring.
Access to our system is protected at the application level by a unique name and password combination. While users select their own passwords, the system can be configured to match almost any password protocol, e.g. letters and numbers, no repeating digits, or length. After three failures, the password must be reset by an administrator.
Transmissions between users and our servers are encrypted using SSL (secure sockets layer) which is the highest commercially available. If you want further protection, we can provide special dynamic tokens that generate a special PIN every time you log in. Documents can be locked down so that the user cannot print, copy text, or even save and email them to another.
Servers are protected by redundant, industrial-grade firewall hardware devices so that if one fails the other kicks in immediately. Servers are hardened according to vendor best practices. Traffic is restricted to necessary ports needed with public facing systems having the smallest allowed traffic profile. Software updates are maintained through valid licensing for our operating systems and applications. Patches are tested and deployed as quickly as possible.
 |
Next: Back to the Catalyst CR Overview |  |