Sustaining security to strengthen your trust
A world with ever-evolving cyber threats demands an ever‑advancing security strategy. Nuance does everything necessary to secure customer data, stay ahead of cyber threats, and maintain resilient systems.
A mission of safety and security
Nuance Global Security's mission is to ensure customers and employees are kept safe and secure. We achieve this with a defense‑in‑depth strategy driven by highly trained security professionals through corresponding controls, a robust security infrastructure, and the latest cyber intelligence tools. All to keep your information private—and our networks and systems up and running.
Our defense‑in‑depth strategy in action
Nuance Global Security is organized by four mission‑critical groups:
With rigor, diligence, and constant focus, we protect our customers and employees, keep data private, continue to instill confidence—and work to secure your trust.
Chief Information Security Officer
A comprehensive approach to risk
Governance, Risk, and Compliance (GRC) aligns capabilities, policies, assessments, metrics, and controls to reliably maintain data security, manage risk, and ensure compliance with industry security standards across every part of our business. Our approach includes:
Our industry certifications
The GRC team works to achieve and maintain security certifications for various Nuance products and services with industry organizations, frameworks, and standards bodies—creating assurances and safeguards that support customer requirements. Our certifications include:
Securing the cloud
Nuance is a cloud‑centric company and has partnered with top‑tier cloud providers, including Microsoft® Azure™ as our cloud computing service, to offer best‑in‑class security practices and a highly available and redundant infrastructure to our customers.
Where proactive meets preventative
Our Cyber Fusion Center (CFC) takes preventative and proactive measures to protect our networks, systems, and data from threats while adhering to security policies, standards, and controls across our infrastructure. All so you can trust the Nuance solutions you use every day. The CFC comprises:
Systems Security Engineering (SSE) Program
Nuance products and services have security built in, not bolted on later. We analyze, test, and review products at any technology stack and every lifecycle stage—from inception through design, build, deployment, and decommissioning—while implementing risk‑based control objectives and applying industry best practices. SSE ensures we:
Security Operations Center (SOC)
Augmenting Nuance’s 24x7 Global Operations Centers, SOC is staffed by a team of certified security researchers and analysts who monitor and analyze cyber threat intelligence from trusted global sources, protect our networks and systems against online threats, and rapidly respond to any potential security events.
Protecting Nuance with rigor
Nuance Global Protection Services is dedicated to preserving the health and well‑being of our workforce, maintaining the integrity of our facilities, preventing unauthorized physical access, and safeguarding data, assets, and intellectual property through:
Resilience against emerging threats
Nuance maintains business continuity and service availability by developing and implementing organization‑wide plans and processes that prepare us to be ready at a moment’s notice. This includes ensuring our data centers reside in resilient environments with failover and redundancy capabilities that can withstand adverse conditions, unexpected events, and physical and environmental threats.
Nuance Vulnerability Disclosure Program
Our top priority is maintaining the trust and confidence that our customers place in us—and we welcome input from security researchers in detecting potential vulnerabilities.
Visit our Vulnerability Disclosure Program (VDP) to learn more about our VDP Policy and how best to disclose vulnerabilities to us.
Report ethics concerns with confidence
The Nuance Ntegrity Helpline is integral to our corporate compliance and ethics program. It enables anyone to anonymously and confidentially report concerns regarding potentially unethical or unlawful conduct—on a secure, independently governed server. For vulnerability disclosure please refer to the Nuance Vulnerability Disclosure Program.
Visit the Nuance Ntegrity Helpline or call (866) 384-4277 to make a confidential report.