We’re dedicated to keeping customers’ student, staff, and student data safe, demonstrated through the following procedures and best practices:
SOC 2 Compliance
To minimize risk and exposure to customers’ data, HubPod Schol receives annual SOC 2 Type 2 examinations on the company’s controls relevant to security, availability, and confidentiality for multiple applications. These examinations are conducted on HubPod Schools SIS.
Security Operations Center (SOC)
Security and maintenance responsibilities are on us as the cloud provider, and we take them very seriously. We depend on an SOC, which is a centralized unit that deals with security issues on an organizational and technical level. An SOC outlines audits, tools, and how we configure our network so we can keep information secure.
ISO 27001:2013 certification
HubPod School performs annual third-party audits of its security management system and has achieved the internationally recognized ISO 27001:2013 certification. The ISO 27001 certification outlines standards with annual, third-party audits that come in and evaluate our processes, trainings, and more.
We complete regular third-party penetration testing.
We complete vulnerability scans for static, dynamic, and software composition analysis, as part of our SDLC.
Next generation end-point protection
On all servers and devices
WAF and IDS/IPS
WAF (Web Application Firewall) and IDS/IPS (Intrusion Detection System/Intrusion Protection system) to protect our networks and devices
Secure software development/OWASP
Confirming that security is considered in the entire end-to-end process of developing software, including training, processes, code reviews, and vulnerability scanning.
Dedicated Security Team
Led by a Chief Information Security Officer
Robust Customer Data Handling Policies and Processes
Ensuring data residency, with no information going offshore, and strict policies and processes to handle data safely