Security at VuNet: Our Commitment to Protecting Your Data
At VuNet, we understand the critical importance of security in today’s digital landscape. Our vuSmartMaps platform is built with the highest security standards to ensure your data is protected at every step.
Security Framework
- Architecture: The platform employs a three-layered architecture enhancing security across Data Acquisition, Analytics, and Consumption layers. This structure ensures robustness and scalability, with support for various operating systems and secure database configurations.
- Deployment: The platform is delivered as a software appliance consisting of a set of container-based services, across the data collection, data pipeline, data store, analytics engines and web service layers. Flexibility to deploy within the customer data centre, cloud or on public cloud.
Security Measures
The platform uses agent-based and agent-less (remote polling using standard interfaces and APIs) to collect telemetry from various application and infrastructure components. We perform secured telemetry data collection, sanitize collected data to replace sensitive data and transmit data in encrypted channels to safeguard your information. The data is collected, transmitted and stored securely in its entire life cycle – starting from acquisition, processing, analytics, visualization and till archival or destruction.
Our platform utilizes HTTPS for all API communications, ensuring your data remains secure in transit.
Integration with LDAP/AD provides secure authentication mechanisms, complemented by Role-Based Access Control (RBAC) for precise user access management.
All data movement and API calls between internal microservices and layers make use of SSL-based secure channels.
The platform employs data masking and disk-level encryption to protect your sensitive information. Credentials are securely stored, maintaining the integrity and confidentiality of your data.
Security Testing
Our platform undergoes extensive security testing, automated into the delivery cycle using customized DevSecOps pipelines. This ensures the highest levels of security.
The platform’s release process includes comprehensive security testing to ensure robust protection. This testing encompasses web and mobile application vulnerability assessments, network vulnerability assessments, secure code reviews, penetration testing, and reviews of the security architecture, configurations, and controls, alongside web application malware scans. These measures detect and remediate vulnerabilities like cross-site scripting and SQL injection, assess server and network configurations for security, and ensure the code’s integrity through both automated and manual reviews. Additionally, simulated attacks identify potential breaches and frequent malware scans protect the live environment from malicious code.
Compliance and Certifications
VuNet Systems has validated its security policy and controls, earning certifications under prominent compliance regulations. It achieved ISO 27001 certification, recognized for its automated framework for identifying security risks, centralized operational control, refined policies addressing comprehensive security concerns, and effective policy enforcement across the organization. Additionally, VuNet received SOC2 Type2 certification, demonstrating commitment to high availability, process integrity, confidentiality, and privacy, with enhanced controlled environments and streamlined processes.