Compliance
Avaya ensures the security of our assets and of the data we handle on customers’ behalf by complying with laws, regulations, policies, and customer commitments.
Structured for success
Avaya’s Ethics, Integrity and Security (EIS) team is led by our Chief Compliance Officer and is strategically placed with our worldwide law team to ensure independent governance, Board of Directors oversight, and transparency to our stakeholders. EIS has teams for physical and information security, business continuity, industry certifications, third party risk management, and ethics and compliance.
Security
Avaya security teams operate in two workstreams: the protection of people and assets and the protection of Avaya and customer data. Robust business continuity and crisis management plans maintain our employee safety and operations. The Information Security team ensures the protection and availability of Avaya’s information assets, which includes information entrusted to us by our customers. We understand that threats to our network and information come from many different vectors and are extremely fluid. We approach security by:
- Security operations and best practices
- Platform and network security
- Availability and continuity Incident response
- Continuous assessment and improvement
Digital Operational Resilience Act (DORA)
The Digital Operational Resilience Act (DORA) is an EU regulation that aims to enhance financial entities' IT security and operational resilience, including banks, insurance companies, and investment firms. DORA mandates stringent requirements for ICT risk management, incident reporting, operational resilience testing, third-party risk management, and information sharing.