Pomeroy Security Policies

Pomeroy maintains a set of security principles, appropriate use policies, and vendor compliance standards for all those working at or with the company. These are designed to be enforced via proper controls, and are overseen by the IT Security Manager (internally) and audited by a 3rd party firm for annual SSAE16 compliance.

The main documents that pertain to the security stance of the company are listed below in PDF formatted files:

Internal Acceptable Use Policy
This is a document that states how those using Pomeroy resources are to act in a secure manner. These points are also covered in security awareness training. PDF

Pomeroy Vendor Compliance Questionnaire
In order to reinforce the security principles to which Pomeroy adheres, critical mission vendors are regularly sent this document to update their points of compliance. PDF

Additional details and qualifications can be requested from the Pomeroy IT Security Manager — ITSecurityManager[AT]pomeroy[dot]com