Technology & Security Overview
User Provisioning
OperationsHERO offers Single Sign-On (SSO) via Microsoft and Google accounts, with an option for standard email and password setup. The platform provides customizable user roles and permissions, allowing organizations to restrict data access based on job functions. Administrative controls enable easy management, data access, and activity visibility.
Reliability & Performance
- Built on Google Cloud Platform for hosting, with Cloudflare for traffic monitoring, DDoS protection, and caching
- Current uptime exceeds 99.97%
- Infrastructure runs on optimized Kubernetes instances for high performance
- Regular maintenance occurs weekly, typically Thursday through Saturday between midnight and 2 a.m. ET
Privacy of Your Data
OperationsHERO collects only necessary information for platform functionality. We use Gemini Enterprise for AI features while keeping data secure and unshared with third parties. Customer data remains the organization's property and is never sold. Custom import tools facilitate seamless transitions from competing CMMS platforms.
Security Features
Data protection includes:
- SHA256 RSA certificates for HTTPS encryption in transit
- AES-256 for data at rest encryption
- Two-factor authentication enforced for internal users
- Strong password policies following least-privilege access principles
- Comprehensive disaster recovery protocols
- Incident response procedures
Compliance Standards
OperationsHERO aligns with the following standards:
- SOC 2 Type I
- StateRAMP
- TX-RAMP
Google Security Compliance Center reporting shows passing scores across OWASP, SOC2, PCI DSS 3.2.1, CIS Kubernetes, ISO 27001, and NIST CSF assessments.
API Security
APIs employ standard encryption mechanisms for both transit and storage. Cloudflare provides DDoS mitigation and Web Application Firewall protection with real-time monitoring and advanced threat mitigation capabilities.
Questions?
For security-related inquiries, please contact us at security@operationshero.com
