EPAY Systems Achieves FedRAMP Certification

The distinguished FedRAMP security certification guarantees the highest quality security compliance, allowing EPAY Systems to compete in all government “Cloud First” initiatives.

EPAY Systems, a leading cloud provider of human capital management (HCM) solutions, today announced that they have successfully earned Federal Risk and Authorization Management Program (FedRAMP) certification and have been declared FedRAMP Ready. The certification comes after heavy investments in bolstering security measures and a comprehensive third-party auditing process. EPAY Systems pursued this certification in conjunction with their ongoing commitment to customer security and best business practices.

FedRAMP is a program spanning the entire government that delivers a uniform approach to security assessment, approval and on-going monitoring for cloud products and services. FedRAMP approval increases government agency confidence in the security of cloud systems in three major ways. First, by providing joint security evaluations and authorizations based on a standardized baseline set of security controls, then, by using approved third party assessment organizations to consistently evaluate a cloud service provider’s ability to meet the security controls and, lastly, by coordinating continuous monitoring services.

FedRAMP standards were set as a result of close collaboration with cybersecurity and cloud experts from the General Services Administration (GSA), National Institute of Standards and Technology (NIST), Department of Homeland Security (DHS), Department of Defense (DOD), National Security Agency (NSA), Office of Management and Budget (OMB), the Federal Chief Information Officer (CIO) Council and its working groups, as well as private industry. The program aims to accelerate the adoption of secure cloud platforms, increase confidence in the security of cloud solutions and achieve consistent security authorizations.

To achieve FedRAMP certification, EPAY Systems has heightened their overall security measures, resulting in reduced risk of cyber-attack, a 99.95% uptime, resistance to data exfiltration and increased trust for all customers. The company underwent a demanding process that required implementing technical engineering changes, meeting 350+ mandated security controls, passing a FedRAMP security authorization, and hiring a FedRAMP approved third-party organization to perform an independent audit of the cloud system. For increased preventative measures, change management and auditing software is utilized across the entire infrastructure. Detailed policies and procedures were instituted, monitored, and reported on for all the control families and thorough security and awareness training was mandated to anyone working on the system. To maintain FedRAMP certification, EPAY Systems is subject to ongoing assessment, including monthly vulnerability scans against all operating systems, infrastructure, databases and web applications, Plan of Action and Milestones (POA&M) management and continuous monitoring.

The government has decided to change the way they do business by shifting away from hosted systems to cloud-based solutions. The FedRAMP certification allows EPAY Systems to compete in new government “Cloud First” initiatives, and acts as a security stamp of approval for potential customers to host secure information on EPAY Systems’ servers.

“I am very pleased to receive FedRAMP certification,” said Rick Labus, Chief Information Officer at EPAY Systems. “It was an intensive process, but it is a measure of top level security compliance that will improve the security for all of our cloud users going forward.”

About EPAY Systems

EPAY Systems provides an integrated human capital management software system that helps businesses alleviate their HR burden, reduce labor costs, ensure compliance with labor laws and manage their employees more effectively. The company’s unified suite of HR technology and administrative services includes recruiting and applicant tracking, new hire onboarding, benefits administration, HR management, time tracking, workforce management, payroll processing, tax management, ACA reporting and performance management. EPAY Systems is the only FedRAMP certified provider of time and attendance technology. Headquartered in Chicago, IL, EPAY Systems delivers HR solutions to over 75,000 worksites across the globe. For more information, visit www.EPAYsystems.com or call 877-800-3729.