Maintaining the integrity and security of data is the utmost priority for TeleTech Government Solutions (TTGS). We have systems and procedures in place to ensure that the security of personal and government data is never compromised. Below are some of the ways we demonstrate our commitment to security.

Network and Data Security

TTGS’ GigaPOP provides an architecture that secures both our business data and the confidential data of your constituents. Our data security architecture combines hardware controls, software systems, and operating procedures. Some of the critical features of TTGS’ network and data security are:

• Authentication – TTGS requires authentication to resources from the client and complies with government requirements for authentication allowing associates to reach client hosted applications and services.
• Encryption – We deploy private networks utilizing hardware-based encryption to secure network traffic.
• Firewalls – Each of our programs operates in a dedicated environment using firewalls to maintain separation at key networking points.
• Intrusion Detection and Prevention – TTGS’ intrusion detection system/intrusion protection system are early warning and real-time protection systems for malicious traffic, virus infections, and network attacks. These systems provide quick response time and mitigation information and actions to reduce or alleviate the impact of a potential intrusion.
• Desktop Protection – TTGS can disable recordable media devices, USB ports, printers, and cameras on computers used by associates to prevent unauthorized data downloading or transport.
• Virus Protection – TTGS employs the full suite of McAfee Anti-Virus products to minimize impact of virus activity on workstations, servers protecting the operating system, applications, and services.
• Audit Logging – TTGS applications provide audit trails and call histories for all associate sessions that log access denials by our network security system.

Physical Data Center Security

TeleTech Government Solutions (TTGS) engages security guards 24/7/365 to secure the facilities that house our data centers, also known as GigaPOPs. TTGS also monitors these facilities 24 hours a day by security cameras to reduce the risk from environmental threats, hazards, and personnel who do not have access privileges. To ensure physical security, TTGS observes the following information security practices:

• Data center security enforces restricted access to system hardware by site and by program based on limited access control lists.
• Authorized employees immediately inform the support desk of any communication, system problem, or other circumstance that may indicate a breach of security or other risk to the integrity of the TTGS network.
• Employees immediately report loss of keys, access cards, and photo identification cards to facilities management.
• Users report loss/theft of any TTGS computing devices/technology to the site IT manager.
• The presence and use of personal portable messaging or recording devices such as pagers, mobile phones, cameras, and smart phones are prohibited in data center areas.

Service Delivery Center Physical Security

TTGS’ service delivery centers are secured by implementing the following measures:

• Access control (key card) systems restrict personnel traffic at all TTGS site entries. Secured card keys and keypads allow authorized personnel to access secure areas once inside TTGS facilities such as data centers and site project areas.
• Employee entrances, exits, and other vital areas of the facility are monitored using closed circuit television (CCTV) systems by on-site security personnel. CCTV camera images are digitally recorded and stored for a minimum of 30 days. The CCTV system also offers remote monitoring functionality.
• Production servers, systems, and network gear are protected by locating them in secure data centers or network closets, and by using uninterrupted power supply (UPS) systems and backup diesel generators.
• Desktop users are required to keep a “clear desk” and “locked screen” to reduce the risks of unauthorized access to, loss of, and damage to, information.