top of page
pexels-dan-nelson-3949100.jpg

Cybersecurity 

pexels-thisisengineering-3862132.jpg
AICPA-SOC2-Type2-logo-375px.png
ISO 27001-LMS.png

The YOSS Platform proudly maintains SOC 2 Type 2 certification and ISO 27001:2022 certification, demonstrating our ongoing commitment to the highest standards of security and data protection. These rigorous, independent audits ensure that our information security measures are in line with the stringent requirements of today’s data landscape. SOC 2 Type 2 focuses on managing customer data based on five "trust service principles"—security, availability, processing integrity, confidentiality, and privacy. ISO 27001:2022 provides a systematic approach to managing sensitive company information so that it remains secure, covering people, processes, and IT systems by applying a risk management process.

Securely Operating in the Cloud

The YOSS Platform is housed in the cloud using modern infrastructure provided by Amazon Web Services (AWS). AWS provides a secure, robust, and resilient cloud infrastructure on which The YOSS Platform functions.
Be confident knowing your staff’s data is secure. All data housed within The YOSS Platform is monitored around the clock and is stored in encrypted, redundant, US based datacenters. Your data is encrypted in transit and in rest.
Our servers and databases are located on private subnets and are only accessible via the internet via load balancers on the public subnet.
Strategic backup strategies are also provided by AWS and are regular, redundant, and tested.

Partnering with Professionals

We believe in the power of collaboration. In addition to YOSS's exhaustive team of professionals, our firm engages with third-party, independent cybersecurity professionals who regularly consult, test, and implement industry leading cybersecurity processes. This third-party team conducts at least annual penetration testing and provides training to our team.
This training not only includes resources for development, but general security training for all YOSS team members including phishing exercises and regular cybersecurity training.

pexels-anna-shvets-5325103.jpg
bottom of page