Parlance Security is based on the following criteria:
Access should be limited to only those with a legitimate business need and granted based on the principle of least privilege.
Security controls should be applied consistently across all areas of the enterprise.
The implementation of controls should be iterative, continuous, and maturing across the enterprise.
1. Data Protection
Customer data is encrypted at rest.
Transmission of data in transit is always encrypted using TLS 1.2 or IPSEC.
2. Product Security
Parlance utilizes 3rd party external penetration testing at least annually and remediates findings within our SLA.
Parlance performs vulnerability scanning internally and across the enterprise and remediates findings as quickly as possible.
3. Enterprise Security
All corporate devices are centrally managed and utilizing antivirus and malware protection. We utilize MDM to enforce secure configuration of endpoints.
Parlance utilizes VPN technologies for secure remote connectivity.
All Parlance employees are mandated to take monthly training to ensure that each employee is educated in the best network practices.
