Search
Search

Our security commitment

Security built for insurance. Validated by independent experts.

Our certifications, accreditations and awards

Recognized by CSO for innovation in cybersecurity risk management and operational resilience.

Our compliance program and operational controls are built to support secure, resilient, and scalable services as organizational and operational demands grow.

Security Certifications: ISO27001:2022 • SOC 1 Type II • SOC 2 Type I

Industry Recognition: 2026 CSO Award

Global Certifications and Award

MANAGEMENT SYSTEM CERTIFICATION

Building trust through security

Process excellence means reliable, trustworthy products and services - that’s why we build our security requirements into everything we offer.
Hard Drive icon

Secure Infrastructure

Data is processed within secure client environments or certified US cloud infrastructure

Database icon

Data Security

Industry-standard encryption protects data in transit and at rest

Padlock icon

Access Management

Role-based access and identity controls limit administrative privileges

Network icon

Network Security

Secure, encrypted network connectivity supports reliable data transmission

Code Monitor icon

Secure Development

Security testing and code quality embedded across development lifecycle

Bug Antivirus Shield icon

Vulnerability Management

Regular assessments reduce risks across systems and applications

Portrait Lock icon

Privacy Governance

Privacy-by-design principles and transparent data handling practices ensure responsible processing and protection of personal information.

Check icon

Regulatory Compliance

Adherence to applicable regulatory requirements and independently audited compliance programs support ongoing alignment with industry and legal standards.

Fingerprint icon

Physical Security

Strict enforcement of clear desk, visitor procedures, and restricting removable media at all operations centers

Desktop Lock icon

Resilience & Response

24x7 detection and tested incident response and continuity planning ensure reliable service delivery

Learn more about how we protect your data

Our Privacy Policy explains how we collect, use, and safeguard your information, reflecting our commitment to transparency and responsible data stewardship.
Our privacy policy

In-house expertise

115 combined years of InfoSec experience
Meet our experts
In-house Expertise Profile Picture Test

Laura Brown

VP, Information Security
  • North America
  • 20+ years of experience in Cyber Security, IT Risk Management & Governance
20+ years of experience in Cyber Security, IT Risk Management & Governance

Laura is a seasoned technology leader with a strong background in financial services, including insurance. Prior to joining ReSource Pro, Laura led cross-functional teams at Fortune 500 companies, ensuring the security of sensitive information such as health data and credit card information. Laura brings Fortune 500-level security governance to insurance agency operations, ensuring client data is protected to the highest industry standards.
Todd Yu

Todd Yu

Manager, Information Security, China
  • Asia
  • 12+ years of experience
12+ years of experience

Todd is an ISMS Advanced Professional and his security expertise spans project management, data privacy compliance, and cloud security, providing clients with peace of mind in a rapidly evolving digital landscape.
Rakesh Ramadas

Rakesh Ramadas

Assistant Manager, Information Security, India
  • Asia
  • 12+ years of experience
12+ years of experience

Rakesh implements ReSource Pro’s comprehensive Information Security programs and Global Security Operations Center, managing internal and external penetration projects, ISO certification and SSAE18 SoC Type2 Attestation. He is an IRCA Certified ISO 27001 Lead Auditor with previous experience managing IT infrastructure including Data Centers and ISO 27001 implementation. Clients benefit from penetration testing and ISO audit processes run entirely in-house, with no reliance on third-party security vendors.
Challenge Chen

Challenge Chen

Senior Manager, Information Security, U.S.
  • North America
  • 13+ years of experience
13+ years of experience

Challenge contributes and oversees the execution of goal security and risk management strategy at ReSource Pro and leads a high performing global security team. He is an ISMS Advanced Professional with both a Project Management Professional (PMP) Certification and Lean Six Sigma Green Belt Certification. Challenge’s global team provides clients with a consistent, auditable security posture across every ReSource Pro delivery location.

Al Security & Governance

Deepfake Technology icon
Business-Driven AI
  • Productivity enablement
  • Performance & scalability
  • Human-validated outputs
  • No autonomous decisions
Padlock icon
Secure Al Platform
  • Secure IT infrastructure
  • TLS for data transit
  • Access control & authentication
  • Incident response & forensics
Artificial Intelligence Brain icon
Governed & Ethical Al Use
  • Approved Al use cases
  • Clear oversight & accountability
  • Responsible use aligned with ethical principles
  • Regulatory and contractual alignment
Browser Bookmark icon
Enterprise-Grade Security
  • ISO 27001 alignment
  • HIPAA safeguards
  • NIST-based controls
  • Incident readiness
Desktop database lock
Data Protection by Design
  • Data minimization
  • Sensitive data protection
  • Purpose limitation
  • No model training
Download Box icon
Controlled Al Inputs
  • Authorized data inputs
  • Prompt-level controls
  • Limited data exposure
  • De-identified processing
AI robot face icon
Validated Al Outputs
  • Trusted Al outputs
  • Human-in-the-loop
  • Decisions backed by evidence
  • Quality assurance
Search category icon
Transparency & Trust
  • Clear Al boundaries
  • Client transparency
  • 24/7 monitoring and alerting
  • Observability and auditability
ReSource Pro Security FAQs

Frequently asked questions about Security

How We Protect Your Data and Operations

How does ReSource Pro help insurance organizations reduce operational and third-party risk?

ReSource Pro reduces risk through a mature operating model built on formal governance, standardized processes, and continuous oversight. Security, compliance, and operational controls are embedded across our delivery teams and supported by documented procedures, access controls, and independent third-party attestations. This approach helps ensure security, compliance, and operational stability across client engagements.

ReSource Pro safeguards client data through a mature security program with encrypted cloud environments, controlled access, and continuous monitoring. Our processes follow regulatory requirements and industry standards, supported by independent certifications including ISO/IEC 27001:2022, SOC 1, and SOC 2.​
All technology and automation workflows operate under formal governance, approval processes, and clearly defined responsibilities. Actions are logged, roles are restricted by need-to-know, and periodic audits confirm compliance, making all processes traceable, auditable, and transparent.​
ReSource Pro applies AI to enhance speed and consistency while preserving human judgment where it matters most. AI is used for approved operational tasks, with clearly defined inputs, governed workflows, and human validation for sensitive outputs. This ensures results are accurate, explainable, and reliable—so clients can confidently use AI-assisted outputs in real insurance workflows.​
ReSource Pro’s AI is designed to produce trusted, business-ready outputs, not just automation. Rather than relying on opaque “black-box” models, we embed AI into governed workflows with clear accountability, observability, and human oversight. This approach ensures AI outputs are consistent, auditable, and aligned with real insurance decision-making—so clients gain measurable value, not just technology.​
We support client security and compliance reviews through structured due diligence processes, responding to security questionnaires and assessments in a controlled and consistent manner. Our program is supported by independent third-party certifications and documented security and resilience practices.


As frontier AI models become more capable and embedded in insurance operations, ReSource Pro continuously evaluates emerging risks including data exposure, model reliability, and compliance implications as part of our AI security and governance framework. Our security team monitors developments across the AI landscape to ensure clients have a clear, insurance-specific point of view on what new models mean for their operations, and what controls are in place to protect them.

Client security portal

Existing clients can access our full security documentation, audit reports, and compliance questionnaire responses through our secure portal.

Visit client portal