NEXT has an asset management policy in place to protect data that is stored and accessible via endpoints, such as company workstations and laptops.
All corporate endpoints are protected against internal threats and local vulnerabilities via Drata. All devices are continuously monitored for the following checks:
Screen lock enabled
Latest security updates
Malware detection and anti-virus
Personal firewall enabled
Encrypted SSH keys
Password management software
Removable media and offline backups
NEXT prohibits use of removable media and offline backups to mitigate both the risk of data loss as well as the risk of malware being introduced.