Information Security

This document outlines the basics of the Ideon Information Security program. For more information or to access our Aptible Room with policy and procedure details, please reach out to security@veric

Updated May 2021: Ideon expects a SOC II Type 2 on HiTrust Controls report August 2021 and HiTrust certification by 1/1/22.

Our Information Security Management System includes but is not limited to the following areas. Each area is supported by robust policies, procedures, and technology.

• Encryption and Key Management

• Human Resources Security

• Identity and Access Management

• Business Continuity

• Incident response

• Mobile Device Security

• Physical and Environmental Security

• Privacy Management

• Risk Management

• Secure System Development

• Technology Acceptable Use

• Vendor Management

• Governance

Policy version controlling, procedures, assets, and asset inventories are stored in our GRC tool Aptible Comply and managed by a cross-functional Security Team and a third party vCISO.

Security Team information

Tim Hochman, VP IT & Infosec

security@ideonapi.com