Staying Secure
At Parmenion we prioritise the security of your and your clients' data. Here's a breakdown of how we do it, and some steps you can take to do the same.
Beware of scammers impersonating Parmenion
Parmenion will NEVER ask you for your password or PIN. If you're unexpectedly contacted by someone claiming to be from Parmenion and they're pressuring you for sensitive information, stop all contact and call us on our official phone number 0117 204 7678.
At Parmenion, we prioritise the security of your and your clients' data. We've made significant investments in our systems, processes, and infrastructure to make sure both you and your clients are as protected as possible.
We adhere to industry standards, focusing on ISO 27001, NIST, and SANS, recognised international benchmarks for managing information security.
Our security efforts encompass all aspects of our business, covering multiple departments, processes, propositions, and people. This comprehensive approach allows us to holistically manage risks, providing you with the highest level of protection. This includes:
- Clear segregation of duties
- Centrally controlled single sign-on and software permissions
- Multi-factor authentication access
- Mandatory training and security awareness program
- Regular penetration testing and phishing exercises
- Proactive vulnerability management
- Security incident and event monitoring
- 256-bit AES encryption, digital certificates and HTTPS
To counter constantly evolving threats, we employ multiple layers of security controls to create a robust defence. We've noticed an increase in impersonation attempts, often stemming from phishing emails.
To combat such threats, we continuously monitor and employ process checks, and we will promptly notify you of any unusual account behaviour.
Our internal security team works tirelessly to detect and address cyber security risks. We engage with industry experts to conduct external testing of our platform and internal networks, further ensuring our security. Our stringent Supplier Management policy involves rigorous due diligence on all new suppliers, and we have Incident Response plans in place to respond to emerging threats.
How you can keep ahead of attackers
Enable multi-factor authentication (MFA): MFA is a powerful tool to protect against impersonation attacks. Our platform offers MFA through our app, and it's easy to set up.
Cybersecurity training and contingency planning: Provide regular cybersecurity training to your staff, including incident reporting procedures. And make sure you have up-to-date contingency plans, including backups and incident response procedures.
Be wary of changes in client behaviour: Stay vigilant for changes in how your clients contact and interact with you, especially those pushing for urgency.
Apply security updates: Keep your software and systems up to date to patch vulnerabilities.
Regulatory compliance: Remember your regulatory requirements and promptly notify the relevant authorities if personal data has been compromised.
Password management: Use a password manager to store and create strong, unique passwords. And change your passwords immediately if you suspect a breach. Registering for free services like haveibeenpwned.com are an easy way to get notified if your data has been included in a breach.
Report suspected concerns: Get in touch with us if you have any concerns. We're here to help and can implement additional security measures if needed.
Stay informed: Stay up to date with the latest cybersecurity threats and mitigation techniques.
How to enable MFA with Parmenion
Multi-factor authentication (MFA) is a security method that requires users to give two or more bits of evidence (known as ‘factors’) to verify their identity when logging in to an online account. The factors usually take the form of something you know (i.e. your username and password) and something you have (e.g. an app on your mobile device).
We offer MFA through our app, and it's easy to set up.