About Us

Contact us

Sales inquiries

Media inquiries

Job inquiries

Related Information

About UsThe Bleum AdvantageSecurity

Security

Bleum takes the security of your proprietary information very seriously.

Our 3-pronged approach takes into account physical, operational and legal aspects to security, with arrangements further tailored to meet the specific needs of our partners. We also understand that intellectual property is top of mind for partners when they choose China as an outsourcing destination. Bleum's security management protocol addresses these concerns.

Bleum was first accredited ISO 27001 status in August 2006, and recertified in July 2011. The British Standards Institute's ISO27001 is the current best-in-class standard for Information Security Management Systems. Bleum also employs the same Palo Alto Security Networks used by the U.S. National Security Agency (NSA).

In addition, Bleum's exhaustive security protocol addresses:

Physical security:

Biometric Access Biometric Access to server rooms and development centers

USB All PCs and laptops have USBs and 3rd party storage device capability disabled

circuit television monitors 24/7 closed circuit television monitors in every room and at every doorway

  • Stringent office layout procedures. Development centers for banking and financial services clients are either window free or have work stations facing the interior of the room. This prevents observation of information from outside the Bleum building.
  • Personal PCs and storage devices, including USBs, are forbidden from entering all Bleum facilities. Storage lockers, outside development centers, are available for employees to securely store their belongings.
  • Extensive web content management, risk-monitoring and page filtering mechanisms in place following all governing laws of the host country.

 System security measures:

  • Participation in the Open Web Application Security Project (OWASP)
  • Redundant core units
  • Segregated network distributed area
  • Network behavior monitoring system
  • Firewalls between each development center
  • Enterprise-level anti-virus system
  • Penetration test & network evaluation
  • Intrusion Detection System (IDS)
  • Palo Alto Networks (IPS+URL Filter+Application Firewall)

Legal aspects:

  • Bleum adheres to the Trade-Related Aspects of Intellectual Property Rights (TRIPS) agreement.
  • All employees subject to security background checks.
  • Employees sign non-disclosure agreements and contractually commit to IP protection, which can additionally be done directly with clients if required.

 Cultural aspects:

  • As Bleum is a service provider, there is no potential conflict of interest in product development.
  • Security training is an integral part of employee development. It is included in both on-boarding and in monthly security examinations given to all employees.
  • Bleum employs a comprehensive disaster recovery plan and business continuity management system.

RSS
Copyright © 2011 Bleum Inc. | Contact Us | Sitemap | Links and Resources | Careers | 沪ICP备05007456号