World-class infrastructure and data protection
for your peace of mind
iEmployee has partnered with a leading provider of fully managed network and business services to provide world-class, 5-level infrastructure and data security: at the physical, network, server, application and data levels. These are designed for one thing only — to ensure the data regarding your workforce remains private, secure and available 24/7.
Physical Infrastructure
- Bunker-type, VESDA fire-proof, facility features 24-hour manned security, biometric access control, video surveillance, and caged and locked data center.
- Power supplied by redundant grids, with redundant UPS and backup generators.
Network Level
- Highly scalable and redundant online infrastructure with failover capabilities and multiple fibre connections.
- Real-time monitoring of all network, server and application stability and security.
- Best-of-class firewall and router technology and entry level Network Intrusion Detection System that monitors and proactively blocks worms, hackers, and other undesirable access.
- All log files are retained and proactively analyzed for suspicious traffic.
Server Infrastructure
- State-of-the-art server technology.
- Storage arrays utilize RAID 1 and RAID 10 and production web servers utilize RAID 5 mirroring to assure consistent availability.
- Servers run carrier-class network operating systems and are updated to latest patch levels.
- Servers are hardened by removing all unnecessary software and services.
Application Level
- Each user is assigned a unique user name and password that is authenticated in conjunction with a company name at each login.
- You, as the Customer, define an internal administrator to manage your users and login accounts. iEmployee and its hosting provider will not provide access or passwords to any person other than your designated internal administrator. You can set passwords to require alphanumeric and/or special characters. Additionally, you can turn on/off “Forgot Password” functionality, and require users to reset their passwords at scheduled intervals.
- After authentication at the login level, each request to an authentication-required page checks for the SID query string, and checks the GUID to the session table in our SQL database to ensure that artifact is still valid.
- iEmployee does not use "cookies" to store other confidential information, but instead implements advanced security methods based on dynamic data and encoded session IDs.
Data Security
- Incremental daily, weekly and monthly backups are made of all production systems and databases.
- Backups, verification and restores are handled offsite from the hosting facility.
- Encrypted backups are regularly migrated to iEmployee’s corporate headquarters. In the event of a catastrophic failure in the hosting facility, iEmployee can rapidly bring all systems back online at its high-bandwidth corporate headquarters.