Security

Security is extremely important to Orbita and is integrated into our day-to-day culture to protect your data from potential threats.

Information Security Architecture

Orbita maintains a highly secure cloud-based solution that is built on a secure infrastructure. Policies, procedures, and security controls are in place to meet or exceed the high standards of our customers as data is handled by people, processes, and technology supporting Orbita solutions.

 

Information security systems and frameworks are used to ensure that Orbita systems and data managed within are protected from harm. It is through these systems that we have integrated administrative, technical, and physical safeguards to protect against potential threats.

Network and Communications

All systems are protected using firewalls, IDS, and IPS systems which are in place to prevent unauthorized access and detect against potential intrusions and monitor for suspicious activity.

Data Protection

All data-in-transit and data-at-rest are encrypted using industry-standard cryptographic controls.  All transmissions between services and critical end-points are protected using encryption to protect the transmission of confidential data.

Vulnerability Scanning and Security Testing

Vulnerability scanning and security penetration testing are performed regularly to protect systems, networks, and services ensuring that no threats exist to Orbita solutions. Any potential threats that are discovered are reviewed and acted upon accordingly.

Security-by-design

Orbita’s solutions start as secure and remain secure. A highly trained development team, competent in developing secure solutions lead the architecture, development, and maintenance of Orbita solutions. The team follows secure development practices that:

  • Establish secure defaults for all systems and configurations.
  • Ensure safe and secure error handling that do not expose potentially compromising information.
  • Do not trust services by default and disable to all services that are not used.
  • Enforce Separation of duties including roles defined within development, testing, support, and approvers for changes.
  • Ensure all code is developed in manageable form with proper documentation to maintain knowledge control of changes and approvals.
  • Address security issues at root cause.

Patching and Updates

Critical patches and updates to all Orbita systems and services are tested then applied as soon as available and validated from the internal team. Testing within sandboxes is performed to ensure performance and function of the patches and updates are safe and appropriate for Orbita systems.

Disaster Recovery and Continuity Management

Orbita takes data integrity very seriously. As stewards and partners of Orbita Customers, we strive to assure data is protected from unauthorized access and that it is available when needed.

All critical data is backed up and tested regularly. Backups are stored in a safe and secure manner in a different location to ensure timely recovery with little to no downtime from any unplanned outages.