ProShop SAFE Protects Sensitive Data, Facilitates Security Compliance

Photo Credit: ProShop

ProShop ERP’s ProShop SAFE (Secure Access File Ecosystem) is a secure, cloud-based ERP file management system said to enable companies to achieve multidimensional, roll/user-based data security compliance for multiple standards such as NIST 800-171, CMMC, ITAR, HIPAA, SOC, GDPR and ISO-2700X.

The ProShop SAFE ensures that only authorized users have access to specific files and folders managed through the unified credentials and authentication of their ProShop login, the company says. Combined with ProShop’s GovCloud hosting suite of features, the software is said to dramatically limit a shop’s Controlled Unclassified Information (CUI) footprint and thereby simplifies and economizes compliance efforts, as well as protecting other sensitive company and customer data. (Future versions will even streamline marking of CUI, CTI, FCI and more).

Beyond facilitating achievement of CMMC and ITAR standards, ProShop SAFE also ensures that an employee cannot accidentally delete or move critical information they are not authorized to act on. The platform is the only shop management ERP/MES/QMS software specifically designed for defense and aerospace CNC machining and manufacturing with these levels of security controls.

ProShop SAFE is a managed encrypted file store (end to end, and at rest) that securely and seamlessly translates into the browser experience. User-definable File Access Security Groups (FASG) within the User Module of ProShop enable security administrators to define permissions of all folders and files within the file store, and provide read/write/execute or forbid access to any configuration of approved folders, subfolders and files.

When a ProShop login is authenticated via a user’s ProShop credentials and 2-Factor Authentication (2FA) (if enabled), the files and images are immediately available and visible in the ProShop browser interface. The user can view and manipulate those files with the secure cloud file store and in-memory of the device, without the need for them to be downloaded to the user’s device. This limits the storage footprint of CUI information within a shop and makes it considerably simpler to achieve CMMC and ITAR requirements for control of CUI. When the ProShop session is closed, the file store is immediately removed and access to any files within it is terminated.

In many ERP systems, files may be stored in a database which requires that anything beyond simple viewing of a file in the browser must include downloading the file to the local device. That adds significant risk, cost and complexity to the process of meeting CMMC Level 2 requirements. Conversely, in ProShop SAFE, files are stored in human-readable and browsable file structures, and are access-controlled across all folder hierarchies. The platform even enables access to subfolders housed within upper level folders without providing access to the upper level folder itself. This level of control is essential for safe and effective management of files that employees need to effectively perform their jobs.

Paul Van Metre, president of ProShop USA, says that data security is critical, especially in the defense and aerospace industry. “A business that is out of compliance with data security standards can lose contracts,” Van Metre says. “Application of ProShop SAFE accelerates and simplifies fulfillment of a wide range of security requirements, avoiding possible loss of work while saving money and time.”