Accela SECURITY

Enhanced Security and Compliance Management

The security landscape is shifting every day, which makes the relationship between government agencies and their technology provider particularly important. Across industries and within government entities, there is an increased frequency of data being compromised through methods such as ransomware, phishing, seizing of credentials when not using multi-factor authentication, and distributed denial of service (DDoS) attacks. By working together to define and implement security protocols, Accela can help agencies be proactive against these costly threats.

The Costs of cybersecurity

The costs to defend against just ransomware attacks is growing extremely fast. It was estimated that businesses and governments spent average of $8B in 2018, $11.5B in 2019, and $20B in 2020 protecting systems against cyberattacks (cyberexperts.com).

Enterprise software is naturally interdependent on operating systems, applications, libraries, databases, and other technologies across numerous providers, and securing it all can be costly. In government, this is particularly true. City and state IT systems often fall in the crosshairs of hackers, and with tight budgets and limited staff, self-hosted customers struggle with the management of system vulnerabilities, including regular updates. To help minimize security exposure, governments are migrating legacy applications to the cloud.

“From an access and cybersecurity standpoint, migrating to the cloud allowed us to shed some of the liability.”

Ryan Fernandes

Director of Technology Services for the City

Accela’s investments in security

Given the increase in public attacks and industry breach events, Accela maintains significant investment levels in our security architecture and infrastructure.

Our SaaS environment includes Accela’s optimized clusters running in Microsoft’s Azure infrastructure. The combination of our internal security measures, and the advanced security capabilities of Azure ensure Accela’s SaaS customers are receiving the highest degrees of protection possible across physical datacenters, infrastructure, and operations.

  • A SaaS-Centric, Default Deny, Zero-Trust security posture to help maintain a high degree of security and data integrity

  • Deep security expertise and use of leading-edge monitoring, alerting, metrics, and automation including Azure Security Center, Azure Advanced Threat Protect, Azure Firewall, Cloudflare, Carbon Black, Tenable, Rapid7, and Veracode

  • Development of all software in accordance with our “Secure SDLC” protocols, including security requirements identified and implemented throughout our entire development process

  • Mandatory annual training covering security awareness, health data integrity, and data privacy for all Accela employees

  • 3rd party integrations that are facilitated via a secure API as well as a growing collection of secured standard adapters

  • Annual audits conducted for SSAE18 SOC2 TYPE2, HIPAA HITECH, PCI-DSS SAQ-D Service Provider, and California Consumer Privacy Act (CCPA) compliance

“With Accela, I no longer have to be concerned with applying updates and patches to the application and infrastructures.”

Tim Gajda

State division Administrator, State of Michigan

A better approach to security

Accela and Microsoft are working closely together to provide customers with a highly secure environment — at a lower cost — letting customers focus more about providing high quality services to their citizens, and not threats to their IT infrastructures.

Resources