VisiFI Security and Compliance Standards

Ensuring peace of mind with the highest systems and data security

Our collaboration with Deda.Cloud, VisiFI’s cybersecurity sister company, reinforces our commitment to operational excellence and security best practices. We continually enhance risk mitigation tools to be best-in-class for systems and data protection.

ComplianceIcons_Reverse-01

Security

ComplianceIcons_Reverse-02

Reliability

ComplianceIcons_Reverse-03

Partnership

Cloudflare is a web performance and security company leader that provides a range of services to support VisiFI’s external web applications (such as digital banking) and help them perform faster and more securely. It is a cloud-based platform acting as a security buffer between VisiFI solutions and the internet, ensuring solutions are protected via:

  • Content Delivery Network (CDN): A globally distributed network of servers that caches website content, allowing websites to load faster and with less latency for users worldwide.
  • Web Application Firewall (WAF): A security solution that provides protection against common web-based attacks, such as SQL injection, cross-site scripting (XSS), and other types of malicious traffic.
  • DDoS Protection: A service that protects websites from Distributed Denial of Service (DDoS) attacks, which are designed to overload a website with traffic and make it unavailable to users.
  • SL/TLS Encryption: A service that provides SSL/TLS encryption for websites, ensuring data transmitted between a website and its users is protected and secure.

Rapid7 offers a cloud-native solution that provides visibility, analytics, and automation capabilities to the DEDA.CLOUD Security team. This “One platform, no compromise” solution enables our analysts to detect any potential threats within the environment and analyze indicators of compromise. The analysts will continue to investigate until the threat has been contained and remediated. “The system gathers logs and security events from every system in our infrastructure and provides a comprehensive view with automated tools to assist our security analysis. With a 24/7 SOC (Security Operations Center) that constantly monitors through the Rapid7 console, we can investigate any “red flags,” identify real threats or “false positives,” and take immediate action to correct and mitigate the attack- always 24/7/365.

CrowdStrike provides advanced anti-virus systems and threat intelligence services to organizations. Their solution utilizes artificial intelligence and machine learning to help organizations detect, prevent, and respond to cyber threats such as malware and hacking, thus reducing the risk of data breaches and other security incidents. We offer this as an invisible shield and additional layer of protection built into our advanced security protocols.

VisiFI is proud of our continued work to manage risk and ensure our policies and processes are effective at keeping client data secure.  Completing an annual SOC 2 Type II audit highlights VisiFI’s continued commitment to deliver secure, best-in-class solutions and safeguards that protect and secure our clients’ data.  

SOC 2 Type II 

VisiFI’s SOC 2 Type II audit is performed and reported upon by CPA firm, KirkpatrickPrice, every year. The audit specifically tests VisiFI’s reporting controls that relate to Security, Availability, Confidentiality, and Processing Integrity.

VisiFI Enterprise Strengths Identified during SOC 2 Audit:

  • Executive Leadership is fully and strategically committed to the security of their platform service offering.
  • VisiFI has current momentum for improvement and continued plans to mature.
  • VisiFI has a strong focus on vulnerability management to mitigate potential risk.

Security and Compliance are Shared Responsibilities 

Our system is designed to keep data safe. However, security is a two-way street, and both VisiFI and its customers are responsible for operating securely.  

As a VisiFI customer, you inherit all the best practices of our policies, architecture, and operational processes built to satisfy the requirements of industry standards and best practices.  

As a VisiFI customer, you are also responsible for the use and management of the system and the data added to it.  

When these two elements work together properly, you can be confident in the security measures designed to protect your valuable data.  

Compliance Results in Confidence

Audits are challenging and our team takes pride in the continued work done to earn compliance with SOC 2.  VisiFI is committed to providing secure services, and these compliance efforts make us confident we’re doing what we need to do to make that happen!

SOC 2

Take a moment to hear a message from our trusted independent auditor, KirkpatrickPrice. Discover how the internal controls and processes endorsed by KirkpatrickPrice uphold VisiFI’s commitment to customer experience, education, and security.