Security Policy

Updated: December 30, 2021

Squire deploys the resources necessary to implement, operate, and sustain a robust cyber security posture. Squire utilizes industry proven technology and practices to protect the confidentiality, integrity and availability of corporate data and resources.

I. Data Security

Squire prevents loss or disclosure of data in the event of lost hardware or an attempt to send sensitive data out of the Squire network.

• Laptop HD Encryption: protects data stored on laptop hard drives in case the laptop is lost or stolen;
• USB Ports: USB devices are managed on all Squire user endpoints with the ability to secure and lock if necessary;
• Data Loss Prevention: monitors outgoing data for potential movement of sensitive data.

II. Protection From Data Loss & Corruption

Squire maintains and updates a documented "Business Continuity and Disaster Response Plan”.

III. Application Level Security

Squire has made an investment in technology and tools to implement an automated process for security and privacy controls.

• Authentication: The following outlines the authentication process and procedure for use of computer equipment, devices and the Squire systems and networks.
• Accounts: All users are assigned a unique username before allowing them to access system components or data.
• Two-Factor: Utilized for remote access and for certain privileged user access.
• Passwords: The following are a few processes used for Squire system access:
• Passwords are for individual users;
• The system enforces a password change when the user first logs on to the system or when the password is reset;
• Passwords will be changed in the event the system has been compromised;
• Passwords are changed periodically and not re-used;
• Minimum password length and complexity is enforced.

IV. Internal IT Security

We maintain a dedicated internal security team that routinely monitors our environments for vulnerabilities.

• Anti-Virus & Anti-Spyware: Squire monitors devices for viruses/malware and remedies those identified.
• Advanced Malware Protection: Squire detects & blocks malware based on behavioral analysis.
• Vulnerability Management: Squire uses technology tools to scan for vulnerabilities and apply patches.
• Vulnerability Scanning: Squire utilizes security software that identifies exploitable vulnerabilities, internally and externally.
• Dynamic Application Security Testing (DAST): Squire utilizes dynamic application security testing tools that interacts with a web application through the web front-end in order to identify potential security vulnerabilities in the web application and architectural weaknesses, including OWASP vulnerabilities;
• Patching Tools: Squire utilizes patching management software that detects where patches are needed and applies them.

V. Network Security

These technologies prevent and mitigate attacks against network resources integrity and availability.

• Web Application Firewall (WAF): Squire protects web applications from a variety of application layer attacks such as cross-site scripting (XSS), SQL injection, and cookie poisoning, among other vulnerabilities and attacks;
• Distributed Denial of Service Attack (DDoS) Mitigation: Squire implements technology to protect against DDoS attacks that will send multiple requests to the attacked web resource with the aim of exceeding the website's capacity to handle multiple requests and prevent the website from functioning correctly.