Skip to main content

We’re pleased to announce that ftrack has passed a full security audit and penetration test by the highly respected cybersecurity consultant Bishop Fox.

We take security very seriously and continuously work towards providing the best security possible when managing projects or reviewing media via ftrack’s platform. This new assessment means that ftrack’s software continues to meet the high-security requirements of the creative industries today.

Let’s take a closer look.

What did ftrack’s security audit involve?

We hired Bishop Fox to ensure that ftrack meets the highest standards of cybersecurity testing. This is of critical importance to us as more of our customers expand their global workflows and cloud-based pipelines.

We chose Bishop Fox as they come with an impressive pedigree. Bishop Fox specializes in security consulting services for various Fortune 100 companies and eight of the top 10 global technology companies around the world. They also work with major studios, so we knew they were the right people for the job.

The assessment team conducted a hybrid application assessment of ftrack. This included a rigorous evaluation of the ftrack web application and a deployment review of ftrack’s cloud infrastructure.

The end goal of the assessment was to monitor, evaluate and identify any security issues in these areas. To do so, Bishop Fox simulates real-world exploitation techniques. These include automated application vulnerability scanning, code review and manual penetration testing techniques to rapidly locate avenues of a potential attack.

We’re very happy to share that, having put ftrack through its paces, the assessment team confirmed that the platform has passed all risk criteria.

Why we did this

ftrack aims to make your working life easier via efficient, effective project management tools. That goal can only be achieved if you’re also working in confidence that your information is secure.

At ftrack, we understand that the security of your projects is business critical. Cloud-based implementations of ftrack are in use on productions by major studios, but we know that every user and every team – no matter the size – relies on our platform to make their data secure and confidential. That’s why we strive to ensure any sensitive data remains under lock and key.

This positive assessment is but one more milestone towards the critical act of protecting this data. We’re making a big investment in our security team so that you and other customers can work in the confidence that – even in a world where cloud-based tools and globally remote workflows are the norm – you can demonstrate to your clients that ftrack is secure and safe for use.

More from the blog

How machine learning is optimizing VFX workflows

| News, Productivity, Q&A, Tips & tricks | No Comments
Technicolor, The Foundry, and Framestore discuss machine learning and how it will impact VFX workflows in the years to come.

Pipeline developers invited to the ftrack Connect 2.0 public beta

| Announcements, Developer, New features, Product | No Comments
Following a successful private beta of ftrack Connect 2.0, we are pleased to invite pipeline developers to join the platform’s public beta.

Join the cineSync Play public beta – ftrack’s free-forever local player

| Announcements, cineSync, New features, Product, Release | No Comments
Join the public beta of cineSync Play—ftrack’s free-forever local desktop player for frame-accurate review of frame sequences and file sequences.

Meet Tommy Kiser, ftrack’s Head of Professional Services (AMER)

| Company, Team | No Comments
We’re pleased to welcome Tommy Kiser to ftrack. He’ll be working with our users to help them leverage ftrack’s solutions and deliver the best work possible.

Using scientific theory in your Houdini FX

| Integrations, Tips & tricks | No Comments
Kate Xagoraris reveals how you can incorporate real-world physics in otherworldly Houdini FX.

What is a Pipeline TD and how can I become one?

| Tips & tricks | No Comments
Lead Pipeline TD Clement Poulain discusses the pipeline TD role in post-production and reveals how you can set yourself up for a role in the industry.

How to set up effective production goals with Fudge Animation

| Animation, Productivity, Q&A, Studio, Tips & tricks | No Comments
The Fudge team discusses how they create effective and achievable production goals that result in great animation, without going over deadline.
Smart vectors 7

Smart Vectors in Nuke – Tips and tricks

| Integrations, Tips & tricks | No Comments
Compositing expert Josh Parks reveals his advice for getting the most out of Smart Vectors in Nuke, a quick and efficient way of achieving tracking results.