Ushur Security Framework Whitepaper

In this overview, we discuss both the challenges of delivering security and our comprehensive prevention, detection, mitigation, and management strategy, broadly covering the following topics:

• Encryption of data in Flight and at Rest
• All data is fully sanitized, anonymized and randomized
• Customer Specific Encryption Keys
• Toggle between medium and high-anonymization
• Credentials are stored in an encrypted database

Granular RBAC enables IT to onboard citizen developers while remaining compliant and secure

• Multi-factor, data-driven and biometric authentication for enterprise and end users
• System authorization through granular roles-based access controls (RBAC) that follows Principles of Least Privileges
• Manage RBAC for every user at the role, functionality and data level
• Segment permissions by process, data feed, orchestration, design and more
• Enable citizen developers with the process but not the metadata

Global reach & high availability

• Redundancy across availability zones
• 20+ regions and growing
• 49+ countries for SMS
• Virtual private clouds for networks
• Multi-AZ load balancers for resilience
• CDN for resilience and performance

Disaster Recovery

• Seamless upgrades with zero downtime
• High availability with automatic failover for disaster recovery
• Network isolation per customer
• Data residency requirements
• Ushur cloud accounts

Compliant with strict industry regulations and standards

• Fully committed to security and data protection with comprehensive compliance certifications
• We go above and beyond the requirements needed by aligning with frameworks such as CIS, and OWASP
• Audit reports, Certifications, vulnerability analysis and/or Attestation from independent, third-party auditors.
• Stringent security measures enable Ushur as a secure platform to facilitate sensitive customer data