Watchman Monitoring recognizes that data privacy is of utmost importance. We go to extensive measures to keep the data secure, and to ensure you and your users' confidence.
- The Watchman Monitoring Dashboard is secured via a TLS connection.
- User passwords are salted and one-way hashed to provide security at rest.
- SAML & Oauth2 Login is available.
- All credit card data is encrypted by an SSL/TLS connection when transmitting to a PCI-Compliant network.
- Our data center features tier one connectivity, power, and advanced security video surveillance with three layers of NOC monitoring.
- Judicious use of logging in all features, including the hosting platform.
- Mandatory code review on all code for computers and servers.
- Frequent penetration tests.
- Safe language use that precludes the possibility of buffer overflows, SQL injection, and other code flaws.
- A read-only approach to our client.
- Code signing on all binaries.
- Encryption and signing verification on updates.
- Access control measures to production environments, including signing keys.
- Enforcement of full disk encryption, local security measures, and other best practices.
- Extensive release testing.
- Database servers and other features are managed by AWS rather than internal ops.
- Access control for the Watchman Monitoring web site.
- Two Factor Authentication (2FA)/Multi-Factor Authentication(MFA) used throughout the development and hosting environments, and applications.
- Manual elimination of clients attempting to test exploits against the live environment.
- Inbound flood DDoS protection.
- 24/7 monitoring of internal systems.
- InfoSec staff in house.
- Additional information available upon request
Please also review our Privacy Policy.
How can this article be improved?
Please sign in to leave a comment.