Rigorous Third Party Independent Assessment To Validate Company’s Security Posture
SEATTLE, WA – December 28, 2016 – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment, today announced that Behavox, the specialist AI enterprise software company offering compliance solutions for capital markets, has begun its audit towards achieving the Cloud Security Alliance’s (CSA) Level 2 Security, Trust & Assurance Registry (STAR) Attestation, a rigorous third party independent assessment of the security of a cloud service provider.
Schellman & Company, LLC (Schellman), a leading provider of compliance and audit services, is conducting the examination of the entirety of Behavox’s compliance platform.
“This is an important certification for Behavox and we are pleased to be working with the CSA which has set the worldwide industry standard for cloud transparency and security,” said Erkin Adylov, CEO of Behavox. “With its rigorous approach to audit, the additional requirements beyond other standards such as SOC2, and the ability to gain this attestation through a credible third party audit arbiter like Schellman, our customers can be assured that we have the most stringent security controls and policies for cloud environments. With membership comes the need for continuous update and annual testing – there is no better evidence of our commitment to the highest standards of data security.”
The Behavox system provides multiple layers of defence for any regulated financial institution. At its core is the comfort that an institution’s entire data set (structured and unstructured): is held in a real-time accessible archive; is searchable; can be easily controlled (escalated; used for reporting; data retention); is presented holistically (for surveillance and other purposes); provides a full audit trail and a complete picture of every recorded interaction between an employee and another individual to facilitate discovery, trade reconstruction, full historic analysis of a contested situation.
“We look forward to helping Behavox and their team on their journey towards full compliance” said Jim Reavis, CEO of the CSA. “In adhering to the industry’s most stringent security controls, Behavox is set to join an elite class of cloud providers capable of effectively and securely meeting enterprise-level security needs.”
The CSA STAR program is the industry’s most powerful program for security assurance in the cloud and encompasses the key principles of transparency, rigorous auditing, harmonization of standards, with continuous monitoring.
Behavox has published its CSA STAR Self-Assessment documenting the extent to which its security controls and procedures are already compliant with the CSA’s required standards – the path to full compliance and third party audit confirmation is the next logical step for the business in 2017.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, certification, events and products. CSA’s activities, knowledge and extensive network benefit the entire community impacted by cloud — from providers and customers, to governments, entrepreneurs and the assurance industry — and provide a forum through which diverse parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Behavox is an enterprise compliance software company providing holistic employee surveillance solutions. Our solutions allow Senior Management, Risk & Compliance Officers to detect cases of market abuse, insider threat, collusion and reckless behavior in real time. Through the combination of cutting-edge technology, thought leadership and industry collaboration, we have created a Risk and Compliance ecosystem which transforms the way that firms conduct surveillance and supervise risk within their business. We provide an effective and scalable solution that delivers compliance with finance regulations such as Dodd Frank, MAR, FCPA, SMR & MIFID II. By linking structured internal communication (voice, email, chat etc) data with other internal unstructured data (GPS, browser history etc), users can discover, visualize and quantify relationships between people, organizations and content. In addition to this, the Behavox machine learning algorithms compare this data to a series of proprietary scenarios developed by our regulatory experts, which can also be configured to meet existing and future institutional policies.
Kari Walker for the CSA
[Cloud Security Alliance Research News]