Security

Each client's security requirements are different, so our consultants will work with you to determine the right balance between security, convenience, and cost. Noggin has a long experience working with security sensitive applications for corporate and government clients, and we have key staff with Australian Government security clearances.

There are many security options available such as these common ones:

Application security

• Enforce tough password selection policies to protect against brute force attacks.
• High grade encryption security (128 bit / 256 bit)
• Password expiry procedures to prevent against long-term compromises.
• 2-factor authentication using hardware tokens.
  
• 2-factor authentication using SMS - good for when sending hardware tokens is to a large number of users is infeasible & not practical (such as online banking).
  

System security

• Compartmentalise system accounts so that should an account be compromised the damage is limited.
• Fine tuning of the hosting environment's firewall as well as the server's firewall to only allow a bear minimum of access at a network level.
• Disable any non-essential remotely accessible services
• Network level security to restrict remote access to those who need it
• Encrypted file systems to prevent against physical theft.
• Third party penetration tests.
• System monitoring & maintenance agreements to apply security patches as soon as possible.
  

For more information or to speak with a Noggin account manager, please contact us.