We’re pleased to announce that ftrack has passed a full security audit and penetration test by the highly respected cybersecurity consultant Bishop Fox.

We take security very seriously and continuously work towards providing the best security possible when managing projects or reviewing media via ftrack’s platform. This new assessment means that ftrack’s software continues to meet the high-security requirements of the creative industries today.

Let’s take a closer look.

What did ftrack’s security audit involve?

We hired Bishop Fox to ensure that ftrack meets the highest standards of cybersecurity testing. This is of critical importance to us as more of our customers expand their global workflows and cloud-based pipelines.

We chose Bishop Fox as they come with an impressive pedigree. Bishop Fox specializes in security consulting services for various Fortune 100 companies and eight of the top 10 global technology companies around the world. They also work with major studios, so we knew they were the right people for the job.

The assessment team conducted a hybrid application assessment of ftrack. This included a rigorous evaluation of the ftrack web application and a deployment review of ftrack’s cloud infrastructure.

The end goal of the assessment was to monitor, evaluate and identify any security issues in these areas. To do so, Bishop Fox simulates real-world exploitation techniques. These include automated application vulnerability scanning, code review and manual penetration testing techniques to rapidly locate avenues of a potential attack.

We’re very happy to share that, having put ftrack through its paces, the assessment team confirmed that the platform has passed all risk criteria.

Why we did this

ftrack aims to make your working life easier via efficient, effective project management tools. That goal can only be achieved if you’re also working in confidence that your information is secure.

At ftrack, we understand that the security of your projects is business critical. Cloud-based implementations of ftrack are in use on productions by major studios, but we know that every user and every team – no matter the size – relies on our platform to make their data secure and confidential. That’s why we strive to ensure any sensitive data remains under lock and key.

This positive assessment is but one more milestone towards the critical act of protecting this data. We’re making a big investment in our security team so that you and other customers can work in the confidence that – even in a world where cloud-based tools and globally remote workflows are the norm – you can demonstrate to your clients that ftrack is secure and safe for use.

More from the blog

Six ways media review will make you more productive

| Productivity, Review | No Comments
We're making a big investment in media review – something recently highlighted by our acquisition of Cospective. We're working together to create the best review technology available to the creative...

O2 Post – customizing ftrack and building a DaVinci Resolve pipeline

| API, Developer, Product, Q&A, Studio | No Comments

O2 Filmes reveals its custom DaVinci Resolve integration and how it makes decisions with data from ftrack.

Five quick-and-easy ways to remove tracking markers in Nuke

| Integrations, Product, Studio | No Comments

MPC compositor Josh Parks reveals some quick-and-easy approaches to win you back some time.

Breaking down ftrack’s official support of Python 3

| Developer | No Comments

We break down our support of Python 3 and what it means for our users.

ftrack @ b’Ars 2019

| Events | No Comments

Come and say hi this 6-7 December!

Meet Neil Wilson, cineSync Product Manager

| Company, Q&A | No Comments

Learn about Neil and his role in the global ftrack organization.

5 minutes with…Jason Monroe, Deputy Head of 3D at The Mill LA

| Q&A | No Comments

In the first of two interviews with The Mill, we speak with the LA studio’s Deputy Head of 3D, Jason Monroe.

Two-Factor Authentication (2FA) comes to ftrack

| Product, Release, Review, Security, Studio | No Comments

ftrack CTO Magnus Eklöv, takes a closer look at 2FA in ftrack, how to use it, and why we’ve introduced it.