Enterprise Grade Security and Compliance
Built for trust and security—our enterprise-grade protection keeps your data safe, encrypted, and fully compliant.
Certified trust at a glance
ISO 27001 Compliant
SOC2 Compliant
PDPL Compliant (in progress)
Holistic Data Protection for Continuous Compliance
Access & Identity Controls
With Role-based Access controls & Principle of Least privilege limit access to what exactly the user needs. Inactive accounts automatically get deleted after 90 days minimizing insider risks.
See Live Uptime Status
Secure Cloud Infrastructure
All your data is hosted on GCP(Saudi) and AWS (Bahrain) with next-gen web application firewalls. Our continuous vulnerability assessments and quarterly penetration tests protects your data from any modern security threats.
See Live Uptime Status
Business Continuity & Disaster Recovery
Jisr performs regular full and incremental backups within Saudi Arabia, as well as annual DR drills. We can guarantee that your HR operations stay online - even in the event of a region-wide outage.
See Live Uptime Status
Application Security Lifecycle
We have automated vulnerability scanning in addition to secure code testing before every launch. Any bugs are caught even before release, ensuring data protection from potential breaches.
See Live Uptime Status
Continuous Monitoring & Incident Response
To keep your HR data safe, Jisr uses a managed Security Operations Center (SOC) that monitors the platform 24/7. This proactive protection helps reduce cyber threats and ensures your data stays secure at all times.
See Live Uptime Status
Data Portability & Ownership
Transport all your data on demand with a one-click excel export. Jisr offers a transparent data deletion workflow at the end of your contract. Your data is yours - migrate, delete, or archive data whenever you choose.
See Live Uptime StatusTrusted by 4500+ Leaders in Saudi Arabia
Single Sign‑On (SSO)
Multi‑Factor Authentication (MFA)
Frequently Asked Questions
Is Multi-Factor Authentication (MFA) available on Jisr?
Yes. MFA is available and adds an extra layer of security to your account, helping you protect sensitive HR and payroll data by requiring two-step verification during login.
Where is my company’s data physically stored?
All production data lives on encrypted servers in the GCC (either Google Cloud Platform Saudi Arabia or AWS Bahrain). Keeping data in‑region supports local compliance requirements and reduces latency for Gulf‑based customers.
How does Jisr keep my team online during an outage or cyberattack?
Our Business Continuity & Disaster Recovery (BCDR) strategy combines hourly incremental backups, nightly full backups, and geographically separate replicas. We run a full‑scale DR test every year to prove we can meet our sub‑4‑hour Recovery Time Objective (RTO).
What compliance frameworks has Jisr achieved?
Jisr is independently audited for ISO 27001, SOC 2 Type II, and GDPR alignment. These attestations confirm our controls for information security, availability, and privacy are best‑in‑class
Can we integrate Single Sign‑On (SSO) with our identity provider?
Absolutely. Jisr supports SAML 2.0 and OpenID Connect, so you can plug in Okta, Azure AD, Google Workspace, or any standards‑based IdP and let employees sign in with one click.
How are vulnerabilities discovered and fixed?
Every code change passes automated SAST/DAST scans in our CI/CD pipeline. We layer that with quarterly penetration tests by CREST‑certified partners and weekly vulnerability management sweeps. Any critical finding is patched within 24 hours.
Can we export all of our data if we ever leave Jisr?
Yes. Admins can generate a full, structured Excel export (or via API) at any time—no hidden fees, no support ticket required. Your data stays yours, always.
Want to see our security protocols in action?
Take a closer look at how Jisr keeps your company data protected—through advanced encryption, strict access controls, and full regulatory compliance.