Making Your Property Safe

Bleum addresses the security concerns of the most cautious customers with single-minded determination to protect their IP and Data privacy.

While Bleum has always been focused on security, it validated that its development center meets the highest infosec standards in the world when it passed ISO 27001 in August of 2006. To achieve this certification Bleum systematically identified all of the company's security assets, the impact if they were compromised and the probability that it would happen. We used the results of this analysis to prioritize our risk mitigation activities to systematically reduce the possibility of a security event close to zero.

Intellectual Property

Bleum works on many state of the art systems for financial institutions that contain business logic that is part of our customer's competitive advantage.

Data Privacy

Bleum is able to adapt to the needs of our customers and provide rock solid data privacy. At the beginning of every engagement Bleum's project managers work with our customers to identify sensitive data and to devise strategies to eliminate risks to the integrity and confidentiality of that data.

Business Contingency Management

Bleum has solid BCM processes, and BCP is revised after risk assessment every 4 months. Disaster, fire, earthquake, and power failure are all covered in Bleum's BCP. The test of BCP is performed annually. The scenarios in BCP are covered in testing, and the results are analyzed and revised accordingly.

---

Bleum Security Program Supported by Three Pillars

Bleum takes a holistic approach to security to ensure that holes do not exist in our coverage. No single approach could completely cover all risks, so Bleum approaches security from three different perspectives.

Cultural

Bleum is a pure software service company. We have no product, so no conflict of interest could ever arise over the intellectual property of our customers. Further, as a pure service company our entire business depends on us unswervingly protecting the privacy of our customers data. Further, from their first day Bleumies are trained on our rigorous security practices, and receive continuous reminders including frequent security quizzes to ensure awareness.

Operational

Bleum has a multitude of operational processes that provide a layered defense to protect our customer's property. These processes are certified to the highest levels of security with our recent ISO 27001 achievement. For our customers we offer three different levels of security depending upon their needs: Basic, Advanced, and Critical. At the most critical level, physical access to your development center will be restricted to your development team and cctv cameras ensure compliance at all times. In fact, Bleum's cleaning staff are not permitted access to our most secure development centers. Instead Bleum employs robots like the one pictured at the top of this page to ensure a clean environment without compromising security.

Legal

Having years of experience navigating China's legal system in pursuit of true safety for our clients, Bleum has the knowledge to make this final layer of defence dependable. Employees sign solid employment contracts as well as separate IPR contracts and these are supported with further articulation in the employee handbook. Bleum also conducts background checks on all employees during their first three months in the organization.