TAMI recognises that the confidentiality, integrity and availability of information and data created, maintained and hosted by us are vital to the success of the business and privacy of our partners.
As a service provider/product, we understand the importance in providing clear information about our security practices, tools, resources and responsibilities within TAMI so that our customers can feel confident in choosing us as a trusted provider.
This Security Posture highlights high-level details about our steps to identify and mitigate risks, implement best practices, and continuously develop ways to improve.
Controls (44)
Here are the controls implemented at TAMI to ensure compliance, as a part of our security program.
Product security (4)
Production System User Review
Situational Awareness For Incidents
Vulnerability Remediation Process
Centralized Management of Flaw Remediation Processes
Data security (9)
Identity Validation
Termination of Employment
Production Databases Access Restriction
Multi-factor Authentication
User Privileges Reviews
User Access Reviews
Encrypting Data At Rest
Inventory of Infrastructure Assets
Data Backups
Network security (2)
Limit Network Connections
Anomalous Behavior
App security (3)
Conspicuous Link To Privacy Notice
Secure system modification
Approval of Changes
Endpoint security (3)
Malicious Code Protection (Anti-Malware)
Full Device or Container-based Encryption
Endpoint Security Validation
Corporate security (23)
Code of Business Conduct
Organizational Structure
Roles & Responsibilities
Competency Screening
Personnel Screening
New Hire Policy Acknowledgement
Security & Privacy Awareness
Periodic Policy Acknowledgement
Automated Reporting
Incident Reporting Assistance
Risk Framing
Risk Assessment
Fraud
Third-Party Criticality Assessments
Assigned Cybersecurity & Privacy Responsibilities
Internal Audit using Sprinto
Periodic Review & Update of Cybersecurity & Privacy Program
Subservice organization evaluation
Segregates Roles and Responsibilities
Asset Ownership Assignment
New Hire Security & Privacy Training Records
Updates During Installations / Removals
Inventory of Endpoint Assets
