Founded in 2024
IT Service Alliance, along with its affiliates: PARSEC Group, BCL Mainframe Services, and Salem Automation, recognizes that the confidentiality, integrity, and availability of the information and data we create, maintain, and host are essential to our success and to protecting the privacy of our partners.
As a service provider, we understand the importance of transparency in our security practices, tools, resources, and shared responsibilities, ensuring our customers can trust IT Service Alliance as a secure and reliable partner.
This Security Posture outlines the key measures we take to identify and mitigate risks, implement industry best practices, and continuously strengthen our security and compliance framework.
Founded in 2024
Controls (48)
Here are the controls implemented at IT Service Alliance to ensure compliance, as a part of our security program.
Product security (3)
Production System User Review
Vulnerability Remediation Process
Centralized Management of Flaw Remediation Processes
Data security (9)
Identity Validation
Termination of Employment
Production Databases Access Restriction
User Privileges Reviews
User Access Reviews
Encrypting Data At Rest
Inventory of Infrastructure Assets
Data Backups
Testing for Reliability and Integrity
Network security (7)
Impact analysis
Limit Network Connections
External System Connections
Transmission Confidentiality
Anomalous Behavior
Capacity & Performance Management
Data used in Testing
App security (2)
Conspicuous Link To Privacy Notice
Unauthorized Activities
Corporate security (27)
Code of Business Conduct
Organizational Structure
Roles & Responsibilities
Competency Screening
Personnel Screening
New Hire Policy Acknowledgement
Security & Privacy Awareness
Performance Review
Periodic Policy Acknowledgement
Automated Reporting
Incident Reporting Assistance
Third-Party Criticality Assessments
Assigned Cybersecurity & Privacy Responsibilities
Internal Audit using Sprinto
Periodic Review & Update of Cybersecurity & Privacy Program
Management Review of Org Chart
Management Review of Risks
Management Review of Third-Party Risks
Subservice organization evaluation
Segregates Roles and Responsibilities
Testing
Incident Handling
Asset Ownership Assignment
Data Governance
New Hire Security & Privacy Training Records
Periodic Security & Privacy Training Records
Updates During Installations / Removals
