Who We Are

SOC 2 Certified

Reach implements the Trust Services Criteria for Security, Availability, Processing Integrity and Confidentially from the SOC2 audit standard and is validated annually by an external, AICPA registered, audit agent.

Independent Penetration Testing

CyberCX is the leading provider of professional cyber security and cloud services across Australia and New Zealand. Reach leverages CyberCX's service to conduct application penetration testing.

CIS Server Hardening Benchmarks

Reach subscribes to and implements server hardening protocols as published and maintained by the Center for Internet Security to ensure Reach's infrastructure meets or exceeds configuration standards for best practise security.

AWS Shield DDoS Attack Mitigation

Reach uses the full suite of AWS security tools, including AWS Shield, that provides Distributed Denial of Service (DDoS) detection and automatic inline mitigations that minimize application downtime.

Threat Detection and Monitoring

Reach uses the full suite of AWS security tools, including AWS GuardDuty that continuously monitors for malicious activity and unauthorized behaviour to protect accounts, workloads, and data.

AWS Environment Security

AWS Security Hub provides you with a comprehensive view of your security state in AWS and helps you assess your AWS environment against security industry standards and best practices. Reach leverages Security Hub to monitor compliance with the CIS AWS Foundation Benchmark.

AWS Resource Monitoring

AWS Config provides a detailed view of the configuration of AWS resources in your AWS account. This includes how the resources are related to one another and how they were configured in the past so that you can see how the configurations and relationships change over time. Reach leverages Config to monitor configuration changes, enforce best practice rules and monitor compliance.

Workload Vulnerability Scanning

Amazon Inspector is a vulnerability management service that automatically discovers workloads and continually scans them for software vulnerabilities and unintended network exposure. Reach leverages Inspector to monitor hosts of vulnerabilities and validate mitigations.

Web Application Firewall

AWS WAF is a web application firewall that lets you monitor the HTTP and HTTPS requests that are forwarded to your protected web application resources. Reach leverages AWS WAF to protect all Internet facing websites and resources.

Surface Scanning

Reach regularly carries out scans of the Reach portals to ensure that SSL and Header support are properly configured at all times.

OWASP Secure Coding Standards

Reach coding standards include mitigations for the OWASP Top10 software coding vulnerabilities.

System Performance Monitoring

In addition to AWS system tools, Reach deploys New Relic active system monitoring tools to track performance and capacity of all active services and equipment. Breach thresholds are alerted automatically to the Reach engineers to remedy before system errors.

Virus Protection

BucketAV is an open-source antivirus engine to detect trojans, viruses, and malware. Reach leverages BucketAV to provide anti-malware protection for file upload handling within its application platform stack.

Encryption

All Personal Identification Information (PII) data is encrypted at all times. We use 256-bit encryption for all data at rest and 2048-bit private keys for site connections.

Data Sovereignty

Reach ensures data sovereignty by setting up servers in each jurisdiction. At no time will data leave the client's jurisdiction.

Currently Reach has self-contained and quarantined infrastructure in USA, Australia, UK, Canada, Hong Kong, Singapore and EU.

Global Data Privacy Regulation Compliance

Reach can comply with international privacy regulations as may be required for each project's jurisdiction. This includes GDPR, CCPA, and Australia's Data Privacy Act.

Software Development Lifecycle Management

Reach uses Git hosted on Microsoft Azure for source code management and control; version control and rollback; and branching.