Security

We combine enterprise-class security features with state of the art physical security of our servers and networks to ensure your data is always protected. Our customers rest easy knowing their information is safe, their interactions are secure, and their organisations are protected.

Data center & network security

We ensure the confidentiality and integrity of your data with industry best practices.

Physical security

Learnsby servers are hosted in some of the most secure facilities available today in locations that are protected from physical and logical attacks.
Our data center facilities maintain state-of-the-art physical security including secured perimeter, 24/7 manned security, camera surveillance, intrusion detection systems, two-factor authentication with biometric access control, and other electronic means.
Learnsby leverages Amazon Web Services (AWS) data centers.

Network security

Our network is protected by redundant firewalls, best-in-class router technology, secure HTTPS transport over public networks, regular audits, and network Intrusion Detection and/or Prevention technologies (IDS/IPS) which monitor and/or block malicious traffic and network attacks.
Our network security architecture consists of multiple security zones. More sensitive systems, like database servers, are protected in our most trusted zones. Other systems are housed in zones commensurate with their sensitivity, depending on function, information classification, and risk. All networks are encrypted.
Our Security Incident Event Management (SIEM) system gathers extensive logs from important network devices and host systems. The SIEM alerts on triggers which notify the Security team based on correlated events for investigation and response.
Major application data flow ingress and egress points are monitored with Intrusion Detection Systems (IDS) or Intrusion Prevention Systems (IPS). The systems are configured to generate alerts when incidents and values exceed predetermined thresholds and uses regularly updated signatures based on new threats.
Access to the Learnsby Production Network is restricted by an explicit need-to-know basis, utilizes least privilege, is frequently audited and monitored, and is controlled by our Operations Team.

Encryption

Communications between you and Learnsby servers are encrypted via industry best-practices HTTPS and Transport Layer Security (TLS) over public networks. TLS is also supported for encryption of emails.

Availability & continuity

Our databases are stored on efficient Flash Memory devices which are actively replicated. Backups are made once a day and kept for 3 days
Our Disaster Recovery (DR) program ensures that our services remain available or are easily recoverable in the case of a disaster. This is accomplished through building a robust technical environment, creating Disaster Recovery plans, and testing.

Application security

We take steps to securely develop and test against security threats to ensure the safety of our customer data.

Secure development (SDLC)

Learnsby utilizes security controls to limit exposure to OWASP Top 10 security flaws. These include inherent controls that reduce our exposure to Cross Site Scripting (XSS), Cross Site Request Forgery (CSRF), and SQL Injection (SQLi), among others.
Testing and staging environments are separated physically and logically from the Production environment. No actual Service Data is used in the development or test environments.

Application vulnerabilities

The source code repositories for Learnsby are continuously scanned for security issues via our integrated static analysis tooling.

Product security features

All communications with Learnsby servers are encrypted using industry standard HTTPS over public networks, meaning the traffic between you and Learnsby is always secure.

Secure authentication

You may use Active Directory, LDAP, or an external database for end-user authentication and automatic user creation.
Learnsby provides custom password rules for all your users. Only administrators can change the password security level.
Learnsby follows secure credential storage best practices by never storing passwords in human readable format, and only as the result of a secure, salted, one-way hash.

Additional product security features

Access to data within your Learnsby LMS instance is governed by access rights, and can be configured to define granular access privileges. Learnsby has various permission levels for users (administrator, manager, course creator, instructor, non-editing instructor).
Learnsby can be configured to only allow access from specific IP address ranges you define.
All communications with Learnsby servers are encrypted using industry standard HTTPS over public networks. This ensures that all traffic between you and Learnsby is secure during transit. Additionally all outbound email from your Learnsby LMS instance, supports Transport Layer Security (TLS), a protocol that encrypts and delivers email securely, mitigating eavesdropping and spoofing between mail servers.
Learnsby uses DKIM (Domain Keys Identified Mail) and DMARC (Domain-based Message Authentication, Reporting & Conformance) for signing outbound emails from your Learnsby LMS instance.

Best practices

Learnsby provides a range of security options to ensure your data is protected and secure. But an ounce of prevention is worth a pound of cure. By following these best practices, you can increase the security of your Learnsby LMS instance.

Learn more