Information Security Management System
![[del.icio.us]](http://www.cordiant.com/wp-content/plugins/bookmarkify/delicious.png)
![[Digg]](http://www.cordiant.com/wp-content/plugins/bookmarkify/digg.png)
![[Facebook]](http://www.cordiant.com/wp-content/plugins/bookmarkify/facebook.png)
![[MySpace]](http://www.cordiant.com/wp-content/plugins/bookmarkify/myspace.png)
![[Reddit]](http://www.cordiant.com/wp-content/plugins/bookmarkify/reddit.png)
![[StumbleUpon]](http://www.cordiant.com/wp-content/plugins/bookmarkify/stumbleupon.png)
![[Technorati]](http://www.cordiant.com/wp-content/plugins/bookmarkify/technorati.png)
![[Twitter]](http://www.cordiant.com/wp-content/plugins/bookmarkify/twitter.png)
Cordiant recognizes that security and confidentiality are critical for maintaining a long-term relationship with our customers. Cordiant has undertaken the following measures to accomplish this:
Physical Security
- Photo ID cards & Access Cards are issued to all employees.
- Restricted access to key systems.
- Visitors are provided with separate cards and are not allowed beyond specific access points.
- 24×7 availability of Security Guards.
Data Security
- Comprehensive Data Security Policy.
- Cordiant executes an NDA (Non-Disclosure Agreement) with each customer, ensuring that all information received and deemed to be confidential will be maintained in confidence.
- Cordiant further executes similar NDAs with each of its employees who are involved in projects for the customer.
- Tight human resources screening and reference checks are conducted to ensure credibility of Cordiant’s team.
- Data Security is maintained through passwords and access codes.
- Password Policy ensures authorized access to PCs and workstations.
- Monthly backups are stored at an off-site location. Removable backups are kept safe, with logs duly maintained.
- Random checks are made on emails that go out of the official mailbox.
- Confidential Documents Control Policy ensures access to important files and directories is given only to specific personnel.
- All Mail and Web Servers are located at an independent Internet Data Center.
- Clearly defined controls and safeguards are put in place.
- Regular awareness programs are conducted for employees on the essence of data security.
- Culture building activities with all team members at Cordiant ensures that every individual is aware of and respects the security rights of customers.
- Commitment of Top Management ensures that every activity at Cordiant is aimed to accomplish Security and Intellectual Property Protection.
Network security
- Software defined secure tunnels through the internet ensures a secure network.
- Data Security Firewalls are installed to prevent unauthorized access to the network.
- Each client’s process is run on a separate VLAN / VPN.
- Only client authorized personnel are allowed to access the network. This setup prevents others from accessing vital information.
- Anti-virus protection is installed on all desktops and servers.
- Firewalls and Intrusion Detection systems in place
- Monitoring of Network and Data Access using reliable software.
- Annual maintenance and scheduled preventive maintenance is in place for critical assets.
- Adequate spares are available for all critical infrastructure, thereby minimizing downtime.
- Frequent and surprise security audits are in force to assess any breach in the Multi-level Security Management.