isolved understands the importance of security and operational risk management. We continuously assess our risk and security capabilities and are committed to continuing our strategic investments in people, processes and technologies that ensure the most comprehensive protection of our customers, partners, employees and assets. We conduct independent assessments, have board-level visibility into strategic cybersecurity and operational risk objectives, leverage industry-leading providers and have dedicated resources to ensure viable risk and security management.
Risk analyses including various testing of cyber, system and process controls are conducted on a regular basis either internally or by a certified third-party provider across the following control types to ensure necessary and ongoing safeguards.
Administrative safeguards include training, documentation, practices, policies and procedures that define business and personal-use practices in accordance with the organization’s security and compliance goals. These can apply to employee hiring, termination, equipment, Internet usage, physical access to company facilities, separation of duties, data classification, auditing and security and/or other risk training. Read More
Technical safeguards include hardware, software and other technology mechanisms used to protect assets. Some common examples are authentication solutions, firewalls, antivirus software, intrusion detection systems (IDSs), intrusion protection systems (IPSs), constrained interfaces, access control lists (ACLs) that protects access to/from data, networks and systems. Read More
Physical safeguards include mechanisms used to prevent or detect unauthorized access to physical areas, systems or assets. This may include but not limited to security badges, locking doors, access cards, biometrics access controls, video cameras, surveillance cameras, motion sensors, fire suppression, and other environmental controls like HVAC and humidity controls. Read More
This security section of the isolved Trust Center is designed to cover aspects of what the isolved team manages from application hosting, telecommunications, desktops, networking, infrastructure, cybersecurity, vendor management, software development lifecycle and fraud prevention.
Given the fact that isolved and its affiliated companies receive hundreds of audits, cyber and risk-related requests annually, we are hopeful that our audit management approach and this Trust Center will provide enough detail to satisfy your requirements. However, we can provide additional information under Non-Disclosure Agreement (NDA) and, in some circumstances, are willing to host an on-site review with select executive management and expert resources. Please contact your isolved business partner for additional information.
The content of this Site is provided for informational purposes only. isolved does not provide legal, tax, accounting or investment advice, and nothing on this Site is intended to be or should be relied upon as such. isolved makes no representations that the information on this Site is current, accurate, complete, valid or suitable for any purpose, and will not be liable for any errors or omissions, delays in the publication of information, or for any losses, injuries or damages arising from the use of the content of this Site for any purpose whatsoever. All information provided on this Site is on an as-is basis. Information and resources linked to third-party sites are beyond the control of isolved and isolved shall have no responsibility whatsoever for the acts or omissions of any such third parties. No endorsement of any third-party product or service is expressed or implied.
Should you have any concerns regarding security, privacy, compliance, accessibility, ethics or fraud prevention, please contact our Chief Information Officer, Chief Information & Security Officer, and our General Counsel & Chief Compliance Officer by clicking here: Report a Security Concern