Why GSQA® Software-as-a-Service?
Perfect Platform
Software-as-a-Service (SaaS) is a perfect platform to exchange critical material and quality information with your suppliers. Your company requires a constant flow of information in your supply chain including your many suppliers, supply chain partners, co-manufacturers and your plants. This ensures compliance with company documentation, regulatory requirements, specifications, and enterprise performance standards. Many companies attempt to manage this information via a variety of disparate systems and tools. Those include stand-alone quality systems, ERP quality modules, document management systems, e-mail, spreadsheets, and paper. These cobbled-together approaches result in wasted time, poor process enforcement and higher corporate risk.
GSQA® puts all quality processes and documentation into one platform because it was developed as native SaaS. Using a web browser for access, GSQA provides global reach, transparent data management, and easily configurable quality processes via well-developed workflows without custom coding. Deploying GSQA results in measurable process improvements and efficiencies productivity, yield and the quality of finished goods.
Key characteristics of a perfect platform for supply chain quality management and supplier quality assurance are as follows:
Infrastructure Level
- Native SaaS – not converted
- 99.98% up time over 15 years – certified
- Operations audited by Fortune 1000’s
- Certified for Nuclear Regulatory Commission security and data management; ISO 9001; 2008, 1OCFR part 21, QCS-1/PF-1
- Enterprise grade open architecture platform
- Hardened Solaris servers, Sun OS and Oracle database
- CIS CAT benchmarked
- Secure data storage and backup
- Dedicated Hardware
- Physical isolation options
- Redundant site and disaster recovery systems
- Proactive Intrusion Detection (IDS) and Security Monitoring
- Sourcefire Intrusion Prevention System with VRT feeds
- Distributed DMZ applications and hardware
- External and internal port scans
- Palo Alto Next Generation Firewalls with Deep Packet Inspection and Application Awareness
- DoS Detection and Mitigation
- Root Kit Scanning and Detection
- Multi-tier AVS; Inbound & Outbound
- Patch Management
- 24 hr video surveillance and recording
GSQA® Application Level
- OWASP Vulnerability tested including but not limited to:
- Buffer overflows, cross-site scripting error handling, session IDs
- Command injection; Unprotected parameter passing, weak authentication, etc.
- Application intrusion detection and prevention including but not limited to:
- Session hijack monitoring, ID lockout, IP lockout
- Comprehensive Password management options
- Meets or exceeds Bellcore 815 Password Guidelines
Additional Features
- SOX compliant Issue tracking and ticketing System with audit trail (ARS with Oracle backend)
- Contractual Service Level Agreement (SLA)
- Fortune 1000 insurance compliance levels
- Documented Software Development and Lifecycle (SDLC)
- Distributed Denial of Service (DDoS), hijack, and hacker response protocols
- Documented and auditable infrastructure and process
- Mature, tested code (15 years in production)
- Multi-tier software development and regression testing
done in a four state environment
- Legacy backend connectivity and integration
- Automated data input and export via industry standard protocol
For more information . . .