Planview adopts a culture of security because we understand that the security of our customer’s data is everyone’s responsibility and holds confidentiality of customer information as its highest priority.
A Formalized Cybersecurity Program and Strategy – Planview’s Cybersecurity Mission Statement: Deliver and maintain a “World-Class” cybersecurity program aligned to Planview’s threat landscape that best protects customer and Planview data, our systems, and our reputation. Our strategic cybersecurity program covers both Planview product security as well as Internal Corporate Security. The program includes strategic pillars, security roadmaps, security metrics, and periodic updates to executive stakeholders and independent auditing companies.
Multiple Lines of Defense – Planview understands that the only way to ensure our application security and protection of customer data is at an acceptable level is to approach security testing with multiple lines of defense for Planview SaaS applications as well supporting infrastructure and processes. Our lines of defense include: internal corporate security testing, product application security testing, 3rd party vendor penetration testing, Internal Audit, and external ISO and SOCII auditing firms.
Defense-in-Depth Security Model – Planview manages technical security model is based on industry best practices for paramount protection against the most from relevant threats. We leverage a defense-in-depth strategy with preventative and detective controls at each layer customer data is stored, processed or transmitted. Multiple security layers work together to provide superlative protective measures for systems and data.
Security and privacy by design – Planview takes a strong position of embedding information security and privacy in the early stages of new and existing product initiatives in order to ensure risk management is embedded early rather than a post consideration. With each step of the process to build and improve our products, Planview considers the impact to the security and privacy of customer data and embeds security best practices to prevent introducing new risks.
Protection of Customer Data – Protection of Customer data is achieved by encryption, access controls, and preventing data on ports and services. Customer data is encrypted in transit using the Transport Layer Security (TLS) protocol and when stored using the Advanced Encryption Standard (AES) algorithm. Encryption is not the only control that is essential to protecting customer data. Multiple controls are in place to prevent unauthorized access to data including: stringent access controls, network segmentation secure password parameters, role-based access permissions (least privilege), and multi-factor authentication.
Planview Enterprise One™ Security Details
See how Enterprise One ensures data is kept secure and private.Review the details for
Planview PPM Pro™ Security Details
See how PPM Pro ensures data is kept secure and private.Review the details for
Planview Projectplace™ Security Details
See how Projectplace ensures data is kept secure and private.Review the details for
Planview LeanKit™ Security Details
See how LeanKit ensures data is kept secure and private.Review the details for
Planview Spigit™ Security Details
See how Spigit ensures data is kept secure and private.Review the details for
Questions? Get in touch with us.
We want to hear from you. Contact Planview’s security team to get the answers.Email security team