#mrx Archives - Marketing Systems Group

Protecting the integrity of customer data and ensuring its reliability has always been in our DNA. In the constantly changing landscape of cyber threats, organizations need a robust set of processes and specialized individuals to ensure that new risks are monitored, and systems are adapted accordingly.

To that end, we are proud to announce that Marketing Systems Group recently achieved ISO 27001 certifications. ISO 27001 is an international standard that details requirements for establishing, maintaining, and updating an information security management system (ISMS).

This standard requires systematic examination of information security risks, design and implementation of controls and risk treatments, as well as adoption of a management process to continuously meet ongoing security needs.

How Do We Implement This?

As we see it, information security has two parts that must be executed in tandem:

Implementing information protection
Monitor the implementation and improve as new threats surface

Implementing security controls around information is a lot like measures we take to physically secure our home and family.

You Would Do the Following:

You would look for a home in a nice neighborhood.
Keep an eye out and control your visitors and what they do in your home. In essence, who plays in the sandbox with our kids and what do they play?
You would install a home monitoring system so that you are made aware of any threats.
You would educate yourself and your kids on staying safe, communicating their activities, and set rules on what is allowed and what is not.
You would create a “Plan B” that will allow you to find a safe way out in case of an emergency.

We follow a similar model when it comes to protecting information:

A nice neighborhood – We ensure that our data resides in data centers that have proper security controls in place.
Who plays in the sandbox – We ensure that all vendors and partners, in specific the ones who deal with our data have similar controls in place by conducting risk analysis with them on regular intervals. We also ensure that proper access controls are in place.
Monitoring – All our environments are monitored 24/7 and we have dedicated and trained staff in charge of security and threat monitoring.
Continuous education – We provide continuous training to all our staff members on information security and risks. We also conduct simulated threat assessments to understand preparedness by our staff members.
Plan B – We develop disaster and business continuity plans that account for how we would recover and communicate with stakeholders to get back on our feet to continue providing services to our customers.

4 Steps for Continuous Improvement (PDCA):

Plan – As part of our operating procedure, we retrospect problems and collect useful information to evaluate security risk and root cause. We then define policies and procedures that can be used to address root causes of problems. Next, we develop methods to establish continuous improvements to information security management capabilities.
Do – We implement the developed security policies and procedures based on best practices.
Check – We monitor effectiveness of ISMS policies and controls and evaluate tangible outcomes as well as behavioral aspects associated with the ISM processes.
Act – We continuously improve by means of documenting results, sharing knowledge, and using feedback loops to address future iterations of the PCDA model implementation of policies and controls.

Certified, Authorized, and Compliant

SOC 2 Type II Certification – Our cloud data centers are SOC 2 Type II certified for the trust principles of Security, Availability, and Confidentiality.

ISO 27001Certifications – Marketing Systems Group achieved ISO 27001 certifications. For more information about ISO 27001, check out the ISO website.

All certificates and reports can be provided upon request.

In a previous blog we introduced you to one of Marketing Systems Group’s newer products, Advanced Cellular Frame (ACF). This time, we will discuss how the frame is compiled and the key advantages it brings you compared to traditional RDD by itself.

Let’s start with a few key facts. When we do a traditional RDD sample of a county or group of counties, the telephone numbers within that frame are defined using rate center geography. The RDD frame has zero bearing on your ability to place numbers geographically outside of a rate center geography. It’s just not built for that capability.

With ACF, we have a better ability to actually place numbers within the correct geography, because we have more known information about more of the numbers (approximately 45% of them).

The Power of Split Frames

ACF can split an RDD frame into two pieces:

The listed / matched phone numbers we have information about for a particular geography
Everybody else, including unlisted / unmatched

The listed component we can put precisely within whatever target geography you’re doing, if it’s a ZIP Code, county or a CBSA.

The unlisted or unmatched numbers get pulled in using the old traditional rate center methodology, but we pull only the unlisted ones. All listed and matched numbers are excluded from this component.

A County-level Example

To illustrate how this all works, check out our Coffee Quip videos, specifically episode #3 featuring Subject Matter Expert David Malarek. There you will see him explain a case involving Multnomah County Oregon, home to the city of Portland.

The ACF frame does a better job targeting an RDD sample within Multnomah county. Dave shows how you can take the listed and unlisted portions and create a split frame, in which you can sample the listed’s independent of the unlisted’s or unmatched.

The ACF RDD universe is about 1.5 million numbers. About one-third of them are listed. We know they are in Multnomah county. The balance of the records (993,000) are coming from the rate centers that best fit Multnomah county geography.

But remember, rate center geography does NOT conform to any census geography we are accustomed to. It doesn’t conform to counties or city boundaries. Rate center geography is really just based on where the telephone companies run their wire lines.

This means you will have some over coverage and some under coverage, because you could miss a spot within the county or flow into adjacent counties outside the county.

With a split frame, you get the two components of ACF RDD that best fit Multnomah county.

How We Address the Migration Problem with ACF

Now we hit the biggest advantage of ACF: how it addresses migration — people who have a cell phone in one part of the country then move to another part of the country but keep the old cell number tied to the old rate center geography.

For the “known” listed cellular telephone numbers, ACF allows us to identify people who have migrated from other parts of the country into Multnomah County, Oregon. Conversely, we can exclude from the frame everybody who moved out of Multnomah County.

If you had defined the frame by rate center and just did a traditional cellular RDD sample, a huge chunk of those listed numbers would actually be outside the county. And you would be excluding 27% of the numbers inside Multnomah county from your sample frame. Not good.

Simply put, ACF does a better job in terms of getting the people who really live in your target geography into the sample frame and leaving out the people who’ve left.

What About Lower-level Geographies?

ACF is great for smaller geographies, especially city limits not easily defined by rate center, which tend to be fairly large. Rate centers might serve four or five dozen different communities; whereas with ACF (at least for the listed portion) you can pinpoint a town or city you want to sample and exclude the other towns around it.

You can see why we are so excited about Advanced Cellular Frame; it enriches the sample and empowers you to target smaller geographies with more precision.

For more details, check out Coffee Quip episode #3, with Subject Matter Expert David Malarek or click here.