Security is part of everything we do at Bond. It has to be.

From the first product designs to the first product launch, security has been a pillar of our platform. Bond's environment is designed for more than compliance, it's designed to keep data safe using the highest security certifications such as SOC2 and PCI.

Bond's Information Security Management System (ISMS) employs numerous controls to ensure the security and safety of our platform. We modeled our systems and processes after NIST 800-53 requirements, including the following:

Comprehensive, 24x7x365 Security Operations Center (SOC) for security event collection, correlation, monitoring and alerts
Continuous vulnerability management and automated penetration testing
Recurring manual penetration testing for all system components
Peer reviews for all code, automated code scans of Bond's code as well as third-party libraries
Mandatory, industry-standard encryption at all stages of transmission and storage
Mandatory user controls, such as background checks, security and awareness training
Centralized endpoint management
Mandatory multi-factor authentication and Role-Based Access (RBAC)
Tokenization of sensitive data elements

Bond protects customer trust with well-engineered security protocols to ensure that banks, brands, and developers can take fintech into the future, securely.