Cyver Core is SOC2 Type II Certified
Cyver Core implements rigorous, multi-layer security methodology, processes, and software to ensure our data and that of our customers remains safe. Our goal is to mitigate and prevent security incidents of any kind, using a combination of secure design principles, access management, automated scanning, regular pentesting, and good security policy to bring everything together.
Our data security is verified externally by a third-party auditor and we are fully SOC2 complaint and certified.
What is SOC2 Certification?
SOC2 is a security and compliance standard with guidelines to help organizations protect sensitive data from unauthorized access, security incidents, and other vulnerabilities. SOC 2 addresses the security and availability of criteria within its scope including security, availability, processing integrity, confidentiality, and privacy. This ensures that the overall security and reliability of the system is tested by a third-party auditor.
How Do We Achieve SOC2 Certification?
To maintain SOC2 compliance, Cyver Core completes an annual third-party audit, as well as regular reviews of our systems and processes to ensure client data remains secure.
Cyver Core works with a compliance manager, SecureFrame as well as a third-party auditor.
How Does Cyver Core Protect Your Data?
Cyver uses security policies to manage how our customers and employees access data and our platform. These controls are based on:
- NIST Cyber Security Framework
- GDPR ISO 27001
- Secure Controls Framework
- SOC2
This series of controls means we are able to provide a high level of security. Some of the methodology we use to secure our platform and our data include:
- Secure development
- Infrastructure and network security
- Access and control management
- Employee training and management
- Device and password management
- Regular pentesting and ongoing DAST
We regularly test and audit our infrastructure and our platform to identify potential issues and reduce risks. If you’d like to know more, request our security whitepaper.