Incredible Reach. Significant Impact. Proven Success.

StateRAMP Website

StateRAMP Authorized

Geographic Solutions’ Virtual OneStop^® (VOS Sapphire^®) software suite has achieved StateRAMP Authorization, reaffirming its commitment to data security and compliance.

StateRAMP, a nationally recognized risk authorization management program, provides a standardized approach to assessing cloud products. Achieving StateRAMP Authorization through this third-party assessment and review demonstrates Geographic Solutions’ dedication to meeting the highest security and compliance standards. This achievement also reflects the company’s commitment to delivering a secure and reliable solution that government agencies and organizations can confidently rely on to safeguard their data and operations.

VOS Sapphire^® effectively manages all federally funded partner programs under the Workforce Innovation and Opportunity Act, labor exchange, case management, job aggregation, labor marketing information, service and fund tracking, human services, federal reporting, and unemployment insurance benefits.

Flagship products/modules within the Virtual OneStop^® software suite include VOS Sapphire^®, Virtual LMI^®, Virtual OneStop Reentry Employment Opportunities (VOS REO)^®, America’s Labor Market Analyzer (ALMA)^®, America’s Virtual OneStop^®, Virtual Career Center^®, Reemployment Exchange (REX)^®, and the Geographic Solutions Unemployment System (GUS)^®.

HITRUST Website

HITRUST e1 Certified

Geographic Solutions attained a HITRUST e1 certification for its Virtual OneStop product suite.

HITRUST’s assessment and certification process gives organizations — and their stakeholders, customers, and regulators — the confidence they’re looking for in their risk management and compliance programs.

The HITRUST CSF^®, the foundation of the HITRUST Assurance Program is the HITRUST framework – a comprehensive, flexible, and efficient approach to compliance and risk management that has been adopted on a global scale. Organizations, big and small, local and global, trust the HITRUST Framework (HITRUST CSF) as the highest standard.

AICPA Website

SOC1 Type II, SOC2 Type II, and SOC3 Certified

Geographic Solutions undergoes SOC audits annually. The audit reviews and assesses the broad range of controls we set to verify that our personnel, facilities, systems, and software operate securely and effectively for Geographic Solutions’ services. Geographic Solutions is currently SOC1 Type II, SOC2 Type II, and SOC3 certified.

Service Organization Controls (SOC1^®) Type 2 are a series of accounting standards that measure the security and control of information for a service organization.

A service auditor's examination performed in accordance with the Statement on Standards for Attestation Engagements (SSAE) represents that a service organization has been through an in-depth audit of its control objectives and control activities, including controls over information technology and related processes.

The SSAE is a widely recognized auditing standard developed by the American Institute of Certified Public Accountants (AICPA).

SOC2 Type 2 is an audit of the information security controls of the organization based on the NIST 800-53 controls. This audit focuses on the information security control alignment, which directly results in an adequate baseline for information security here at Geographic Solutions.

SOC3 summarizes the material of SOC2 and excludes details and results of the testing performed during the audit. Results of the SOC3 are suitable for public viewing.

ISO Website

ISO 27001:2022 Certified

Geographic Solutions carries certifications for International Organization for Standards: ISO/IEC 27001:2022 (adherence with 27017:2015, 27018:2019, 27701:2019, 22301:2019, 20000-1:2018, 9001:2015)

ISO Standards are internationally agreed upon by global experts in making a product, managing process and delivering services or supplying materials that come from a unified body and wisdom of people with expertise in their subject matter to ensure solutions conform to industry best practices globally.

The ISO/IEC 27001 standard provides companies of any size and from all sectors of activity with guidance for establishing, implementing, maintaining and continually improving an information security management system.

Conformity with ISO/IEC 27001 means that an organization or business has put in place a system to manage risks related to the security of data owned or handled by the company, and that this system respects all the best practices and principles enshrined in this International Standard.