A Proven Track Record of Security & Compliance
For more than 25 years, manufacturers in aerospace, defense, and other IP-sensitive sectors have relied on Aegis to keep data safe and operations compliant. We develop all software in-house, never outsourcing, and run our business from DFARS-compliant nations. With CMMC certification, enterprise-wide cyber monitoring, and fully transparent, audit-ready controls, Aegis delivers the confidence regulated manufacturers demand.
- No Contractor Development: Every line of code is written by Aegis employees, no third-party or offshore developers, protecting your IP and reducing supply-chain risk.
- Company-Wide Cyber Safeguards: We continuously scan our internal systems, use endpoint protection, and monitor threats. Every portal, log-in, and tool we use to support you starts from a secure foundation.
- Unified Data Protections: ITAR data is managed only by cleared U.S. personnel, and Aegis never reuses or discloses customer information so your proprietary and regulated data always stays private and under U.S. protection.
Secure Operational Practices by Design
Aegis enforces strict internal controls to protect customer data during support interactions, diagnostics, and service delivery. Whether the data is shared for troubleshooting or resides in the cloud, our disciplined procedures ensure it is isolated, traceable, and handled in full compliance with regulatory expectations.
- Minimized Data Scope: We request only the minimum data needed for support and handle it in isolated environments secured by role-based access.
- Temporary and Controlled Access: Diagnostic data is used only during issue resolution and is permanently deleted afterward, no backups or residual storage retained.
- Support for Regulated Customers: For ITAR-regulated customers, data is accessed only by verified U.S. citizens and transmitted via encrypted upload portals.
Software-as-a-Service Cloud Controls Built for Compliance
FactoryLogix Online is hosted in Microsoft Azure Commercial Cloud or Azure Government Cloud for ITAR customers giving you modern scalability with built-in regulatory safeguards. Multifactor authentication, role-based access, and continuous monitoring protect every login. Any temporary data copied for troubleshooting is erased immediately after the issue is resolved.
- Commercial & Government Cloud Options: Your cloud environment is aligned with your region and regulatory load, standard Azure for Non-ITAR, U.S-only Azure Gov for ITAR.
- Tight Administrative Access: Only trained Aegis staff with a business need can reach customer environments; every action is logged for audit readiness.
- No Lingering Diagnostics: Working files created during support are used once, then permanently deleted leaving no residual copies behind.
Tailored Protections Based on Classification
Aegis aligns every support interaction with your customer classification. Non-ITAR data is always treated as confidential. ITAR data receives additional safeguards, U.S-citizen access only, secure Azure Gov hosting for SaaS, and a locked-down upload vault for on-prem exchanges. The result is a clear, auditable chain of custody for every file.
- Non-ITAR (SaaS or On-Premises): Data stays private: on-prem stays on your network; SaaS stays in standard Azure regions. Only the right people see it, and support files are wiped after use.
- ITAR – SaaS: Cloud data lives in a U.S-only Azure region. Only cleared Aegis employees in the United States provide help, and every access is logged.
- ITAR – On-Premises: Files are uploaded through a secure portal visible only to cleared U.S. staff, used solely to fix the issue, then permanently removed.
Data Retention, Training & Response
Beyond access controls and encryption, Aegis enforces day-to-day practices that keep protection active long after deployment. Strict data-retention rules, mandatory security training for every employee, and a documented incident-response plan ensure your information is handled, stored, and if an issue arises, remediated in a fully controlled, accountable way.
- Data Retention, Training & Response: Support files are kept only as long as they’re needed to resolve an issue, then permanently deleted eliminating lingering copies that could put your IP at risk.
- Company-Wide Security Training: Every Aegis employee with access to customer data completes mandatory security-awareness coursework and policy sign-offs, reinforcing best practices across all roles.
- Documented Incident Response: Aegis maintains a step-by-step plan to detect, contain, resolve, and report potential security events quickly, minimizing impact and ensuring full transparency.
