Here is a summary of organizational structures and policies at OneIQ:
Information Security Officer
OneIQ has an Information Security Officer, who is responsible for compliance with the ISO/IEC 27001 standard, continuous improvement to our information security policies and procedures and incident management.
OneIQ has rigorous information security incident management procedures for mitigating security incidents and communicating security events.
New staff must undergo criminal record and employment verification checks before joining OneIQ and all contracts include a confidentiality agreement.
All staff must go through security training when they join OneIQ and at least once annually for refresh training.
2FA and SSO
All OneIQ systems have rigorous access controls and require single-sign-on (SSO) with two-factor authentication (2FA).
All endpoints used by staff have BitLocker encryption and security scanning software. Staff must use single-sign-on and follow clear-screen policies.