We take security very seriously. WORQ has been assessed against the ISM to hold data up to a Protected level. Australian Government Information Security Manual (ISM) | Cyber.gov.au
We conduct comprehensive audits of our applications, systems, procedures and networks to ensure that your data is protected.
WORQ has designed with disaster recovery in mind. The data is protected by two availability zones and three availability sets and infrastructure is deployed to 2 regions. We can handle a data centre destruction event.
In the case of the database region failure (2 data centres being destroyed) we take backups to another region and can restore the database to that. In this case we can achieve a Recovery Time Objective of 4 hours and Recovery Point Objective of 30 minutes.
We monitor and comply with the CIS Microsoft Azure Foundations Benchmark. This policy is actively scanned and enforced.
We monitor and comply with the Azure Security Benchmark. This policy is actively scanned and enforced.
Regulatory Compliance details for Azure Security Benchmark – Azure Policy | Microsoft Docs
We monitor and comply with the ISO 27001:2013 controls . This policy is actively scanned and enforced.
Regulatory Compliance details for ISO 27001:2013 – Azure Policy | Microsoft Docs
We monitor and comply with the PCI-DSS standard. This policy is actively scanned and enforced.
Payment Card Industry (PCI) Data Security Standard (DSS) – Microsoft Compliance | Microsoft Docs
If you think you may have found a security vulnerability, please get in touch with our security team at [email protected]