With security, risk and privacy concerns so prevalent, our clients know they can trust the ever-evolving tools, technologies and safeguards ADP has in place to help provide confidentiality, integrity, and availability of our clients’ information.
ADP’s global security practice areas include:
- Global privacy and data protection
- Cyber and information security
- Critical incident response
- Operational risk management
- Controls assurance
- Client security management
- Business continuity planning
- Third-party risk management
- Security testing and analysis
- Credential assurance
- Fraud and diversion management
- Security and privacy awareness training for employees
Our multiple layers of protection help ensure that security remains an integral part of our business… and yours.
At ADP, our systems security architecture is based on leading security technologies strategically deployed at key ingress/egress points of our large heterogeneous network, coupled with layered protections at our critical hosts and logical protections at the core data level itself.
Central to the coordination of incident response activities is the ADP Critical Incident Response Center (CIRC) which monitors, collects alerts/incidents and initiates triage and forensic investigations, incident containment, eradication and recovery.
ADP has developed its security program by incorporating industry leading practices and recognized standards such as the International Standards Organization (ISO) 27001/27002 series. ADP continually reassesses its information security program to stay current with the ever-evolving threat landscape.
ADP’s approach to physical security has two objectives -- create a safe work environment for ADP associates and protecting sensitive data held in ADP data centers and other strategic ADP locations.
Policies and Procedures
ADP has enacted a global set of security policies and procedures for our locations, associates, and vendors. In addition, ADP has established a security incident reporting team to investigate security incidents with timely notification of any affected client involved in an incident.
Associate Training and Awareness
ADP requires associates to take information security awareness training. ADP associates are trained to help protect client confidential information in their possession, be aware of social engineering and phishing attempts against ADP and follow the proper protocols when transmitting or receiving confidential information.
As a corporation concerned about security and privacy, ADP has forged strong alliances with law enforcement, government agencies, security organizations and associations to help keep us at the forefront of security and privacy developments. ADP is a member of many security and privacy organizations including:
- E-Fraud Network
- FBI InfraGard
- Financial Services Information Sharing and Analysis Center
- Global Center for Threat, Risk and Vulnerability
- High Technology Crime Investigation Association
- Information Risk Executive Council
- Information Security Sharing Forum
- Information Systems Audit and Control Association
- Information Systems Security Association
- International Association of Privacy Professionals
- International Security Managers Association
- National Cyber-Forensics and Training Alliance
- National Cyber Security Alliance
- Security for Business Innovative Council
- U.S. Secret Service Electronic Crimes Task Force