01

Organization Security


Organization Security
All employees in the organization have to sign contract to protect confidential information.
Organization Security
Only the authorized employee is able to access into identified customer data.
Organization Security
Training all employees to realize and understand data security measure.
Organization Security
Data Security Policy must be identified by top management.

02

Architectural Security


Organization Security
Granted permission to view the employee data is identified and is used differently in each employee level.
Organization Security
Creating User Role that is ease to manage User Group.
Organization Security
Able to identify granted permission to access into each menu as required by User Role.
Organization Security
The system can record the history of data editing, data changing that made by whom and when.

Organization Security
The system can access into employee important data such as salary, bank account and any other relevant data.
Organization Security
Access into code of data using AES which has a key length into 256 bits, support the largest bit size.
Organization Security
Provide to use Protocol HTTPs for secure communication service through the user.
Organization Security
Able to use with various types of Single Sign On i.e. LDAP, SAML, OPEN ID.

Organization Security
Support to log into the system with Multi Factor Authentication (MFA).
Organization Security
Provide SOX model to support User Password Management System.
Organization Security
Facilitate Web Service in API Model especially to interface with other systems.
Organization Security
Support to interface with other systems in a secure way of SFTP.

Organization Security
PDPA Service Center System is designed to control granted permission access into personal data.
Organization Security
Certify the system from OWASP Standard.
03

Data Center Security


Organization Security
Multiple layers of authentication for server area access
Organization Security
biometric authentication for critical areas
Organization Security
Camera surveillance systems at key internal and external entry points
Organization Security
24/7 monitoring by security personnel

Organization Security
Facilitate Backup system both in data and in application.
Organization Security
Provide warning message to keep from any unauthorized access and hackers.
Organization Security
Provide Firewall System in each Server Group to protect against system hackers.
Organization Security
System Lock is available and can be accepted only using by an authorized IP.

Organization Security
Using Code for communication between Web Browser and Web Server in term of https.
Organization Security
Certify with IS0/IEC 27001 and ISO/IEC 20000-1 Standards.
Organization Security
Fire Alarm System is provided.
Organization Security
Contain the system to protect against power shortage.

Organization Security
Provide Internet link more than one hub.