Wise.io runs on Amazon Web Services (AWS), an architecture trusted by enterprise-grade firms in the Fortune 100, from the financial to the e-commerce sectors. AWS accepts responsibility for lower-level security which includes facilities, network, hardware, and the host OS. Wise.io ensures that the guest operating system, application software, and security controls run on the AWS stack.
Wise.io’s implementation on AWS includes the following approaches:
Encrypt Data in Transit: HTTPS for applications and SSL database connections to protect sensitive data transmitted to and from applications.
Encrypt Sensitive Data at Rest: Strong 256-bit encryption of static data at rest
Connecting via TLS 1.1 & 1.2 using DigiCert’s High Assurance EV Root CA and the DigiCert High Assurance CA-3
Wise.io’s physical infrastructure is hosted and managed within Amazon’s secure data centers and utilize the Amazon Web Service (AWS) technology. Amazon continually manages risk and undergoes recurring assessments to ensure compliance with industry standards. Amazon’s data center operations have been accredited under:
SOC 1 and SOC 2/SSAE 16/ISAE 3402 (Previously SAS 70 Type II)
PCI Level 1
Firewalls are utilized to restrict access to systems from external networks and between systems internally.
Our infrastructure provides DDoS mitigation techniques to prevent attacks and report on events.
Managed firewalls prevent IP, MAC, and ARP spoofing on the network and between virtual hosts to ensure spoofing is not possible.
Port scanning is prohibited and every reported instance is investigated by our infrastructure provider.
For additional information, see: https://aws.amazon.com/security