Security & Hosting

Advanced Security Measures

To Keep Your Information Safe

 

Geographic Solutions adheres to a detailed risk assessment and defense process to properly define requirements and design appropriate security solutions. Our comprehensive security program is an integral part of our product design and development lifecycle. We maintain a strong focus on data Confidentiality, Availability, and Integrity (CIA) to ensure the satisfaction of all client security policies.  

 

The security architecture we have established leverages an integrated set of enterprise services so that our clients can focus on business goals rather than security implementation. We have a dedicated team of experienced operations staff that handle all of the security measures, database maintenance, and system upgrades for each of our client sites.

 

 
 

StateRAMP Authorized

Geographic Solutions’ Virtual OneStop® (VOS Sapphire®) software suite has achieved StateRAMP Authorization, reaffirming its commitment to data security and compliance.

StateRAMP, a nationally recognized risk authorization management program, provides a standardized approach to assessing cloud products. Achieving StateRAMP Authorization through this third-party assessment and review demonstrates Geographic Solutions’ dedication to meeting the highest security and compliance standards. This achievement also reflects the company’s commitment to delivering a secure and reliable solution that government agencies and organizations can confidently rely on to safeguard their data and operations.

VOS Sapphire® effectively manages all federally funded partner programs under the Workforce Innovation and Opportunity Act, labor exchange, case management, job aggregation, labor marketing information, service and fund tracking, human services, federal reporting, and unemployment insurance benefits.

Flagship products/modules within the Virtual OneStop® software suite include VOS Sapphire®, Virtual LMI®, Virtual OneStop Reentry Employment Opportunities (VOS REO)®, America’s Labor Market Analyzer (ALMA)®, America’s Virtual OneStop®, Virtual Career Center®, Reemployment Exchange (REX)®, and the Geographic Solutions Unemployment System (GUS)®.

HITRUST e1 Certified

Geographic Solutions attained a HITRUST e1 certification for its Virtual OneStop product suite.

HITRUST’s assessment and certification process gives organizations — and their stakeholders, customers, and regulators — the confidence they’re looking for in their risk management and compliance programs.

The HITRUST CSF®, the foundation of the HITRUST Assurance Program is the HITRUST framework – a comprehensive, flexible, and efficient approach to compliance and risk management that has been adopted on a global scale. Organizations, big and small, local and global, trust the HITRUST Framework (HITRUST CSF) as the highest standard.

SOC1 Type II, SOC2 Type II, and SOC3 Certified

Geographic Solutions undergoes SOC audits annually. The audit reviews and assesses the broad range of controls we set to verify that our personnel, facilities, systems, and software operate securely and effectively for Geographic Solutions’ services. Geographic Solutions is currently SOC1 Type II, SOC2 Type II, and SOC3 certified.

Service Organization Controls (SOC1®) Type 2 are a series of accounting standards that measure the security and control of information for a service organization.

A service auditor's examination performed in accordance with the Statement on Standards for Attestation Engagements (SSAE) represents that a service organization has been through an in-depth audit of its control objectives and control activities, including controls over information technology and related processes.

The SSAE is a widely recognized auditing standard developed by the American Institute of Certified Public Accountants (AICPA).

SOC2 Type 2 is an audit of the information security controls of the organization based on the NIST 800-53 controls. This audit focuses on the information security control alignment, which directly results in an adequate baseline for information security here at Geographic Solutions.

SOC3 summarizes the material of SOC2 and excludes details and results of the testing performed during the audit. Results of the SOC3 are suitable for public viewing.

ISO 27001:2022 Certified

Geographic Solutions carries certifications for International Organization for Standards: ISO/IEC 27001:2022 (adherence with 27017:2015, 27018:2019, 27701:2019, 22301:2019, 20000-1:2018, 9001:2015)

ISO Standards are internationally agreed upon by global experts in making a product, managing process and delivering services or supplying materials that come from a unified body and wisdom of people with expertise in their subject matter to ensure solutions conform to industry best practices globally.

The ISO/IEC 27001 standard provides companies of any size and from all sectors of activity with guidance for establishing, implementing, maintaining and continually improving an information security management system.

Conformity with ISO/IEC 27001 means that an organization or business has put in place a system to manage risks related to the security of data owned or handled by the company, and that this system respects all the best practices and principles enshrined in this International Standard.

We Mitigate the Risks So Your Agency Doesn’t Have to

Comprehensive, Dedicated Hosting Services

That Ensures System Security and Performance

 

Geographic Solutions has two bi-coastal hosting facilities that provide the hardware, security, and infrastructure to support the demand required by large, mission-critical applications. They include full redundancy with real-time replication of data to shadow hosting facilities to eliminate the chance of data loss due to interruption in service. This infrastructure provides elasticity for peaks and valleys in usage and traffic flows.

  

Our company’s Network Operations Center (NOC) monitors and coordinates all hosting facility services to ensure that service level commitments meet the standards needed for high availability and reliability from the technical system solution we provide. Our current systems function under our Software-as-a-Service (SaaS) operating model, which provides annual or multi-year agreements for hosting, maintenance, and upgrades.

Benefits of Our SaaS Solution

 

  • Cost Control

  • Full Redundancy

  • Optimized Hosting Service

  • Comprehensive Support

  • Rapid Resolution of Issues

  • Easy Upgrades and Flexibility

  • Multiple Testing Environments

  • Disaster Recovery Capability

Our Responsive Approach

To Operations and Maintenance

 

We are committed to delivering specialized operations, maintenance, and support services to all of our clients. Along with seamless system upgrades on a routine basis, we ensure enhancements and maintenance take place continuously to improve your user experience.

 

Additionally, our SaaS model has allowed multiple state and local agencies to remove reliance on their own technical resources – ultimately freeing them from purchasing additional hardware or third-party software purchases. There is also no requirement for a client-provided webmaster, system administrator, programmer, or database expert to support the system.

Request More Information

About Our Approach to Operations and Hosting