Cloud security at Capriza is our highest priority. As a Capriza customer, you will benefit from an architecture designed to meet the requirements of the most security-sensitive organizations.
Capriza has been audited by the Standards Institution of Israel (SII - www.sii.org.il) and found to comply with the requirements of ISO 27001:2013 standard. Capriza adopted and adheres to NIST standards across our service operation.
Capriza leverages AWS for the service infrastructure and inherits the strength of AWS Security. The Capriza Operations team includes a 24/7 NOC team, that among other responsibilities, actively monitors the system for security events.
The following diagram illustrates ApproveSimple's data flows and security controls:
The ApproveSimple architecture ensures that data is secured both at rest and in transit. All data in transit leverages the NIST-compliant AES-256 encryption algorithms over HTTPS.
Data at rest in the cloud is securely stored and protected by database encryption, along with access controls and audit logs.
Data stored by the app is encrypted with an AES256 key securely stored in the device keystore. See App Security for more information.
Capriza supports the SAML 2.0 standard and is certified to interoperate with numerous SSO, Identity Management and Federation Service products. Capriza can also be deployed via a variety of EMM solutions. Capriza is a member of the AppConfig community and supports the AppConfig standard.
The ApproveSimple solution offers worldwide distributed cloud services using a global acceleration CDN for optimized access from mobile devices. At the Connector endpoint, the solution provides both customer-dedicated cloud-based servers deployed on multiple regions around the globe, as well as private servers to be installed within an on-premise network.
Capriza maintains a number of sophisticated monitoring systems and log collection tools.
Using various methods, these tools are designed to monitor the health and availability of all infrastructure components and processes including networks, systems and services.
These tools provide a high security posture and reduce the risk profile of your environment.