We’re pleased to announce that ftrack has passed a full security audit and penetration test by the highly respected cybersecurity consultant Bishop Fox.

We take security very seriously and continuously work towards providing the best security possible when managing projects or reviewing media via ftrack’s platform. This new assessment means that ftrack’s software continues to meet the high-security requirements of the creative industries today.

Let’s take a closer look.

What did ftrack’s security audit involve?

We hired Bishop Fox to ensure that ftrack meets the highest standards of cybersecurity testing. This is of critical importance to us as more of our customers expand their global workflows and cloud-based pipelines.

We chose Bishop Fox as they come with an impressive pedigree. Bishop Fox specializes in security consulting services for various Fortune 100 companies and eight of the top 10 global technology companies around the world. They also work with major studios, so we knew they were the right people for the job.

The assessment team conducted a hybrid application assessment of ftrack. This included a rigorous evaluation of the ftrack web application and a deployment review of ftrack’s cloud infrastructure.

The end goal of the assessment was to monitor, evaluate and identify any security issues in these areas. To do so, Bishop Fox simulates real-world exploitation techniques. These include automated application vulnerability scanning, code review and manual penetration testing techniques to rapidly locate avenues of a potential attack.

We’re very happy to share that, having put ftrack through its paces, the assessment team confirmed that the platform has passed all risk criteria.

Why we did this

ftrack aims to make your working life easier via efficient, effective project management tools. That goal can only be achieved if you’re also working in confidence that your information is secure.

At ftrack, we understand that the security of your projects is business critical. Cloud-based implementations of ftrack are in use on productions by major studios, but we know that every user and every team – no matter the size – relies on our platform to make their data secure and confidential. That’s why we strive to ensure any sensitive data remains under lock and key.

This positive assessment is but one more milestone towards the critical act of protecting this data. We’re making a big investment in our security team so that you and other customers can work in the confidence that – even in a world where cloud-based tools and globally remote workflows are the norm – you can demonstrate to your clients that ftrack is secure and safe for use.

More from the blog

5 minutes with…Kimberley Walker, VFX Coordinator at Artifex

| Uncategorized | No Comments
Kimberley walks us through her career from compositor to coordinator, her day-to-day at Vancouver VFX studio Artifex, and what excites her about the future of visual effects. Can you tell...

An introduction to ftrack’s integration with Nuke Studio

| Integrations, Product | No Comments
Nuke Studio is a powerful tool for compositing workflows, while ftrack Studio enables scheduling and asset tracking across productions. Taken alone, they're vital tools in the production process. Together, via...

ftrack @ IBC 2019

| Events | No Comments

ftrack is heading to IBC 13-17 September – and we’d love to meet you there!

7 tips for managing an unpredictable workload

| Productivity | No Comments

Reduce stress and increase productivity in creative roles – how to deal with an unpredictable workload!

Vision Holdings connects Seoul, Shanghai and Tokyo with ftrack Studio

| Case Study, Q&A, Q&A, Studio | No Comments

Iman Javaherypour, VFX Supervisor at Vision Shanghai, discusses the impact of ftrack Studio.

New improvements in ftrack Review!

| Release, Review | No Comments

Managing your versions and assets is about to get even easier.

5 minutes with…Raphael A. Pimentel, Animation Director at Luma Pictures

| Q&A, Q&A, Studio | No Comments

Luma Picture’s Animation Director discusses animation, mo-cap and the importance of a solid plan.