Transmitting data over the internet with cloud based solutions is a necessity. At Financial Apps, we ensure that data remains safe and secure. Whenever our system sends transmissions via the internet, end-to-end encryption using SSL/TLS (Currently TLS1.2) is required. In addition, data is also encrypted at rest governed by encryption rotation schedules. SSL certificates are updated on a regular basis or in the event of a security advisory from external security centers.
Industry-leading solutions are utilized to restrict access to systems from external networks and between systems internally. All network traffic is internally routed, with each system assigned firewall security groups in addition to host-based firewalls to limit inbound and outbound connections. Our infrastructure provides the latest techniques to mitigate DDoS attacks with managed firewalls to prevent spoofing, sniffing and port scanning.
24/7 Physical Security
Data center facilities are housed in nondescript locations and are monitored 24 hours a day, 7 days a week. Physical access is strictly controlled both at the perimeter and at building ingress points by a professional security staff utilizing video surveillance, intrusion detection systems, and other electronic means.
All of our systems undergo regular, independant security audits by security experts to ensure that our platform, applications and infrastructure adheres to industry best practices and compliances. System components undergo penetration tests and vulnerability assessments to assess the security of our applications and platform. Any recommendations or improvements are promptly implemented.