ReSource Pro named to Inc. 5000 for 16th time >>
Search
Search

Security

Suspendisse accumsan non sem eget viverra. Sed ultrices tincidunt interdum. Vestibulum blandit orci dui, ac pulvinar dui lacinia at.

Our security commitment

Hundreds of insurance organizations of every size place their trust in us. We’re committed to earning and retaining that trust by ensuring our processes and systems are secure and transparent from the start.

Building trust through security

Process excellence means reliable, trustworthy products and services - that’s why we build our security requirements into everything we offer.

Secure Infrastructure

Data is processed within secure client environments or certified US cloud infrastructure

Data Security

Industry-standard encryption protects data in transit and at rest

Access Management

Role-based access and identity controls limit administrative privileges

Network Security

Secure, encrypted network connectivity supports reliable data transmission

Secure Development

Security testing and code quality embedded across development lifecycle

Vulnerability Management

Regular assessments reduce risks across systems and applications

Privacy Governance

Privacy-by-design principles and transparent data handling practices ensure responsible processing and protection of personal information.

Regulatory Compliance

Adherence to applicable regulatory requirements and independently audited compliance programs support ongoing alignment with industry and legal standards.

Physical Security

Strict enforcement of clear desk, visitor procedures, and restricting removable media at all operations centers

Resilience & Response

24x7 detection and tested incident response and continuity planning ensure reliable service delivery

Learn more about how we protect your data

Our Privacy Policy explains how we collect, use, and safeguard your information, reflecting our commitment to transparency and responsible data stewardship.
Our privacy policy

Our certifications, accreditations and awards

ReSource Pro holds industry-recognized certifications and accreditations that reflect a robust and independently validated security framework.

Our compliance program and operational controls are built to support secure, resilient, and scalable services as organizational and operational demands grow.

Security Certifications: ISO27001:2022 • SOC 1 Type II • SOC 2 Type I

Industry Recognition: CSO Award x 2

Global Certifications and Award

MANAGEMENT SYSTEM CERTIFICATION

In-house expertise

Meet our experts
In-house Expertise Profile Picture Test

Laura Brown

VP, Information Security
  • North America
  • 20+ years of experience in Cyber Security, IT Risk Management & Governance
20+ years of experience in Cyber Security, IT Risk Management & Governance

Laura is a seasoned technology leader with a strong background in financial services, including insurance. Prior to joining ReSource Pro, Laura led cross-functional teams at Fortune 500 companies, ensuring the security of sensitive information such as health data and credit card information.
Todd Yu

Todd Yu

Manager, Information Security, China
  • Asia
  • 12+ years of experience
12+ years of experience

Todd is an ISMS Advanced Professional and his security expertise spans project management, data privacy compliance, and cloud security, providing clients with peace of mind in a rapidly evolving digital landscape.
Rakesh Ramadas

Rakesh Ramadas

Assistant Manager, Information Security, India
  • Asia
  • 12+ years of experience
12+ years of experience

Rakesh implements ReSource Pro’s comprehensive Information Security programs and Global Security Operations Center, managing internal and external penetration projects, ISO certification and SSAE18 SoC Type2 Attestation. He is an IRCA Certified ISO 27001 Lead Auditor with previous experience managing IT infrastructure including Data Centers and ISO 27001 implementation.
Challenge Chen

Challenge Chen

Senior Manager, Information Security, U.S.
  • North America
  • 13+ years of experience
13+ years of experience

Challenge contributes and oversees the execution of goal security and risk management strategy at ReSource Pro and leads a high performing global security team. He is an ISMS Advanced Professional with both a Project Management Professional (PMP) Certification and Lean Six Sigma Green Belt Certification.

Al Security & Governance

Business-Driven AI
  • Productivity enablement
  • Performance & scalability
  • Human-validated outputs
  • No autonomous decisions
Secure Al Platform
  • Secure IT infrastructure
  • TLS for data transit
  • Access control & authentication
  • Incident response & forensics
Governed & Ethical Al Use
  • Approved Al use cases
  • Clear oversight & accountability
  • Responsible use aligned with ethical principles
  • Regulatory and contractual alignment
Enterprise-Grade Security
  • ISO 27001 alignment
  • HIPAA safeguards
  • NIST-based controls
  • Incident readiness
Data Protection by Design
  • Data minimization
  • Sensitive data protection
  • Purpose limitation
  • No model training
Controlled Al Inputs
  • Authorized data inputs
  • Prompt-level controls
  • Limited data exposure
  • De-identified processing
Validated Al Outputs
  • Trusted Al outputs
  • Human-in-the-loop
  • Decisions backed by evidence
  • Quality assurance
Transparency & Trust
  • Clear Al boundaries
  • Client transparency
  • 24/7 monitoring and alerting
  • Observability and auditability
ReSource Pro Security FAQs

Frequently asked questions about Security

How We Protect Your Data and Operations

How does ReSource Pro help insurance organizations reduce operational and third-party risk?

ReSource Pro reduces risk through a mature operating model built on formal governance, standardized processes, and continuous oversight. Security, compliance, and operational controls are embedded across our delivery teams and supported by documented procedures, access controls, and independent third-party attestations. This approach helps ensure security, compliance, and operational stability across client engagements.

ReSource Pro safeguards client data through a mature security program with encrypted cloud environments, controlled access, and continuous monitoring. Our processes follow regulatory requirements and industry standards, supported by independent certifications including ISO/IEC 27001:2022, SOC 1, and SOC 2.​
All technology and automation workflows operate under formal governance, approval processes, and clearly defined responsibilities. Actions are logged, roles are restricted by need-to-know, and periodic audits confirm compliance, making all processes traceable, auditable, and transparent.​
ReSource Pro applies AI to enhance speed and consistency while preserving human judgment where it matters most. AI is used for approved operational tasks, with clearly defined inputs, governed workflows, and human validation for sensitive outputs. This ensures results are accurate, explainable, and reliable—so clients can confidently use AI-assisted outputs in real insurance workflows.​
ReSource Pro’s AI is designed to produce trusted, business-ready outputs, not just automation. Rather than relying on opaque “black-box” models, we embed AI into governed workflows with clear accountability, observability, and human oversight. This approach ensures AI outputs are consistent, auditable, and aligned with real insurance decision-making—so clients gain measurable value, not just technology.​
We support client security and compliance reviews through structured due diligence processes, responding to security questionnaires and assessments in a controlled and consistent manner. Our program is supported by independent third-party certifications and documented security and resilience practices.

Client security portal

Are you an existing client and need security resources now? We’re here to help.

Visit client portal