Get comprehensive control over your account’s security. Centrally manage access policies with Single Sign-on, Role-Based Access Control, and SCIM user provisioning.
We utilize strong encryption protocols to safeguard your data at all times. Data-in-transit is encrypted using TLS 1.2+ and data-at-rest is encrypted using AES-256 or greater, ensuring an extra layer of protection.
We leverage high-availability configurations to minimize downtime and maintain seamless service. Our transaction logging setup enables us to achieve point-in-time recovery (PITR), providing you with peace of mind and data integrity.
WorkStep is compliant with relevant data protection regulations, including SOC 2 type II and regularly performs security audits and vulnerability assessments (audit report available upon request).
Industry best practices and world-class protocols and response.
WorkStep is a fully cloud-based service. Our Virtual Private Cloud (VPC) is hosted on Google Cloud Platform (GCP) Amazon Web Service (AWS). WorkStep is fortified with advanced security features, including a stateful firewall and intrusion detection system (IDS). These measures actively monitor and defend against potential threats. Our internal networks are protected with IAM (Identity and Access Management) authorization, ensuring that only authorized individuals have access to sensitive resources.
At WorkStep we take your data protection seriously. Our rigorous incident response processes and monitoring mechanisms guarantee your data is always protected. We conduct frequent application testing and scanning, alongside third-party vulnerability audits, to ensure a robust platform.