Bold Group currently uses Amazon Web Services (AWS) for hosting our Business Management products such as SedonaOffice, AlarmBiller, and Managely. By leveraging AWS hosting services, your company gains a robust, flexible, and secure cloud infrastructure.
AWS and Bold Group prioritize security, providing a comprehensive set of tools and features to protect your data and applications. This includes encryption, identity and access management, and compliance with various industry standards. Below are some of the security and redundancy features in place for our current offerings.
Security
- 24/7/365 Staffed Network Operations Center for continuous monitoring
- CrowdStrike antivirus
- CloudFlare Domain and Web Application Security
- Duo 2-factor authentication
- Sumo Logic log monitoring and notifications
- Tenable vulnerability management
- Password policies (minimum of 16 alpha-numeric, resets every 90 days)
- Lockout policies (6 bad attempts locks credentials, 12 bad attempts locks source IP)
- Whitelisting only known allowed IP addresses
- Triple backup storage protocols (online failover, near-line backup, off-site cold storage)
- MS360 offsite backup storage (AWS S3 as backend)
- Ongoing security audits with internal and parent companies' security teams
- Eliminated all default Windows credentials
- All 3rd party vendor access requires written authorization
- 2FA VPN only access for external administrative users
Redundancy
- All VMs hosted in AWS EC2 with regular image backups for quick recovery.
- Dual AD setup (primary, secondary) with the ability to spin up a backup in EC2 from image.
- AWS EC2 allows for additional resiliency via copying images and/or disk snapshots across regions/availability zones.
Upgrades and Procedures in Flight
- SOX compliance across all Bold Group infrastructure
- FSU systems migrated to AWS EC2
- End to End data encryption, at rest and in motion.