Wise Security

Wise.io’s Secure Application Architecture

Wise.io runs on Amazon Web Services (AWS), an architecture trusted by enterprise-grade firms in the Fortune 100, from the financial to the e-commerce sectors. AWS accepts responsibility for lower-level security which includes facilities, network, hardware, and the host OS. Wise.io ensures that the guest operating system, application software, and security controls run on the AWS stack.

DigiCert Seal

Wise.io’s implementation on AWS includes the following approaches:

  • Encrypt Data in Transit: HTTPS for applications and SSL database connections to protect sensitive data transmitted to and from applications.

  • Encrypt Sensitive Data at Rest: Strong 256-bit encryption of static data at rest

  • Connecting via TLS 1.1 & 1.2 using DigiCert’s High Assurance EV Root CA and the DigiCert High Assurance CA-3

Physical Infrastructure

Wise.io’s physical infrastructure is hosted and managed within Amazon’s secure data centers and utilize the Amazon Web Service (AWS) technology. Amazon continually manages risk and undergoes recurring assessments to ensure compliance with industry standards. Amazon’s data center operations have been accredited under:

  • ISO 27001

  • SOC 1 and SOC 2/SSAE 16/ISAE 3402 (Previously SAS 70 Type II)

  • PCI Level 1

  • FISMA Moderate

  • Sarbanes-Oxley (SOX)

Network Security

  • Firewalls are utilized to restrict access to systems from external networks and between systems internally.

  • Our infrastructure provides DDoS mitigation techniques to prevent attacks and report on events.

  • Managed firewalls prevent IP, MAC, and ARP spoofing on the network and between virtual hosts to ensure spoofing is not possible. 

  • Port scanning is prohibited and every reported instance is investigated by our infrastructure provider. 

For additional information, see: https://aws.amazon.com/security