Onboarding and offboarding
Polygon Labs follows a defined process for onboarding and offboarding service providers. Each new service provider receives a preconfigured laptop that auto-enrolls in a Mobile Device Management (MDM) system. MDM controls application usage and enforces security policy requirements on approved operating system versions and patch levels. User access to shared services and approved SaaS tools is provisioned with the least privileges required to perform their role. Access rights are role-based and assigned according to the functional team. Polygon Labs uses single sign-on (SSO) technologies to automate access administration across SaaS tools. Automating provisioning and removal of access reduces the risk of human error and supports efficient auditing. When a service provider leaves the company, HR updates their status in the HRIS system. This automatically removes their access to SSO-integrated platforms. IT is immediately notified to initiate a wipe and recovery of the corporate device.Security awareness training
All service providers complete security awareness training during their first weeks. Training is delivered through a SaaS platform that provides an integrated approach to email and security education. Key features include:- Industry-specific modules: Content mapped to key industry standards and security frameworks, including ISO, NIST, PCI DSS, GDPR, and HIPAA.
- Real-world assessment: Service providers are tested on real-world threats using de-weaponized phishing simulations.
- Comprehensive reporting: Primary indicators of risk are tracked across the awareness training platform, with user risk scores to guide remedial action.
- Risk insight: Click behavior data identifies high-risk users.
- Program structure: 12-month programs with rapid deployment.