Mosaic HCM

Payroll. Time & Labor. HR Management. One System. One Interface. One Employee Record.

Workforce One Infrastructure

Cloud-Based solutions demand world-class security and availability. The following describes the security features of the Workforce One platform.

Data Center Structure

Mosaic’s Workforce One platform is hosted in Carpathia’s data center in Dulles, Virginia. This facility is the most secure federally-compliant data  center in the industry, providing the maximum security available among commercial and federal data centers.

Constructed from the ground up to meet a superset of federal security mandates, this Tier III data center is backed by a defense-in-depth strategy for comprehensive physical, network, and policy-based security assuring customers that even their most sensitive data will remain secure.

The data center is constructed with concentric rings of security, biometric access points, 24/7 armed guards, and nearly-impenetrable Lampertz vaults.

This primary data center is backed up for disaster recovery in a separate Santa Clara, CA.  Certifications include; AT101 SOC2, Type 2, Systrust, PCI DSS Compliance, U.S. Commerce Dept. Safe Harbor Certification, and the DOD 8500.2 Standard for Sensitive Compartmented Information Facility (SCIF).  Data backups occur at the primary data center at 5 minute and 24 hour increments and streamed to the disaster recovery facility in real-time.

RSA Token Authentication

Multiple levels of password complexity are available and data is protected and secured with RC4 128 bit High-Grade Encryption.

For clients working from locations not protected by comprehensive firewalls and anti-spyware systems, two-factor authentication technology has been embedded across our suite of online applications through an integration of RSA technology.

Through an RSA Token (SecureID authenticator), a unique symmetric key is combined with a proven algorithm to generate a new one-time password (OTP) every 60 seconds. Coupled with a secret personal identification number (PIN) selected by each user, this OTP is used to facilitate a more secure way of logging into the applications from unsecure environments